Sr Security Software Development Engineer

Sr Security Software Development Engineer leads the development strategy of the shared security services engineering team which is responsible for building horizontal enterprise level security solutions.

You will be responsible for defining what a well-architected enterprise solution looks like and for leading a team of engineers to build the solution. You will create workstreams and work closely with other senior engineers to deliver critical initiatives. You will identify opportunities to solve security problems in creative ways by leveraging your expertise in software development, application of AI solutions and scalable architecture.

Key Responsibilities and Duties

• Design and implement secure architectures for applications, APIs and cloud platforms including authentication mechanisms, encryption protocols, and security monitoring frameworks

• Conduct comprehensive security assessments through code reviews, threat modeling, and automated testing integration within CI/CD pipelines

• Establish and maintain security standards, best practices, and guidelines while educating development teams on secure coding practices

• Collaborate with cross-functional teams to integrate security throughout the software development lifecycle and ensure compliance with relevant regulations

• Identify opportunities and implement solutions to automate & enhance cyber security practices using Generative AI or Traditional AI mechanisms Improve operational efficiency of processes or software systems through automation

• Provide technical leadership & mentorship to junior engineers both within and outside the team

Educational Requirements

• Bachelor's Degree or Equivalent Experience Required

Work Experience

• 5+ Years Required; 7+ Years Preferred

Physical Requirements

• Physical Requirements: Sedentary Work

Career Level
9IC

Required Skills: 

• 5+ years of experience in software engineering or application security roles 

• 5+ years of proficiency in at least one major programming language (Java, Python, C#, Go) with demonstrated secure coding practices 

• 3+ years of hands-on experience with web application and API security using cryptographic methods, authentication/authorization frameworks (OAuth 2.0, OIDC), and/or secure key management 

• 2+ years of experience working with Agile software development practices 

• 2+ years of experience working on one or more cloud platforms such as AWS, Microsoft Azure, Oracle Cloud, Google Cloud Platform 

 

Preferred Skills: 

• 3+ years of full stack development experience using UI frameworks such as React JS, Next JS, Auth JS 

• Hands-on experience with web application and API security testing, vulnerability assessment, and remediation 

• Knowledge of security standards (NIST identity & security, OWASP Top 10), hardening standards, and implementing controls for regulatory frameworks (NY-DFS) 

• Ability to conduct effective threat modeling and security architecture reviews for complex software systems 

• Experience using open source Generative or traditional AI software solutions to improve operational efficiency 

Related Skills

Accountability, Adaptability, Business Continuity Planning, Cloud Computing Security, Collaboration, Communication, Compliance, Consultative Communication, Cybersecurity, Detail-Oriented, General Risk Management, Network Security, Prioritizes Effectively

Anticipated Posting End Date:

2025-04-25

Base Pay Range: $152,200/yr. - $253,600/yr.

Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location.  In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans). 

_____________________________________________________________________________________________________

Company Overview

Every worker deserves a secure retirement. For more than 100 years, TIAA has delivered it for millions of people. Founded to help educators retire with dignity, today weʼre a market-leading retirement company fueled by world-class asset management. But weʼre not just another legacy financial services firm. Weʼre fighting harder than ever before for our clients and the many Americans who need us.

Benefits and Total Rewards

The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary.

Equal Opportunity

We are an Equal Opportunity Employer. TIAA does not discriminate against any candidate or employee on the basis of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other legally protected status.

Read more about your rights and view government notices here.

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities. 

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team: 

Phone: (800) 842-2755

Email: accessibility.support@tiaa.org

Privacy Notices

For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here.

For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here.

For Applicants of TIAA Global Capabilities, click here.

For Applicants of Nuveen residing in Europe and APAC, please click here.