CW - Sr Information Security Gov & Risk Specialist
7 days ago
This is a Non-Employee Contingent Worker Role providing services for TIAA's family of companies and will be employed by TIAA's preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to achieving excellent results.
This role will sit onsite, likely in a hybrid capacity, at the location(s) listed in this posting.
The anticipated term of this engagement will be 6 months. This term could be extended based on company business needs.CW-Cyber Security Analyst IIThe Information Security Analyst participates in the development, communication, implementation, enforcement and monitoring of security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure or destruction. Under general supervision, this job is responsible for performing tests and monitoring security controls that prevent IT-based crime, hacking, intentional or inadvertent modification, disclosure, or destruction of the organization's information systems and IT assets.
Key Responsibilities and Duties
- Designs, tests and implements secure operating systems, networks and databases for the organization.
- Performs difficult risk assessments and executes tests of data processing system to ensure functioning of data processing activities and security measures.
- Conducts auditing of passwords, network based and Web application based vulnerability scanning, virus management and intrusion detection.
- Conducts risk audits and assessments and provides recommendations for application design.
- Analyzes system access logs, ensuring only permitted individuals have access to company information.
- Monitors use of data files and regulates access to safeguard information in computer files.
- Monitors current reports of computer viruses to determine when to update virus protection systems.
- Reviews violations of computer security procedures and alerts managers of issues that arise.
- University (Degree) Preferred
- 2+ Years Required; 3+ Years Preferred
- Physical Requirements: Sedentary Work
6IC
Info Security Gov & Risk Specialist
Defines, enhances, and implements information security configuration controls, while ensuring consistent and effective information security administration procedures and processes.
Key Responsibilities and Duties
- Review industry configuration safeguards and monitor compliance for infrastructure assets: databases, workstations, network, middleware, servers, cloud services, and mobile
- Partners with multiple business stakeholders to drive work and monitor through completion
- Analyze internal information security controls and convert control criteria and their severity into functional compliance scanning results
- Create and support program governance documentation such as standard operating procedures, control assessments and training materials
- Monitor industry security updates, technologies and best practices to improve security management
- Generate metrics and reports in assigned functional business area to inform decisions on tactical issues that impact the business
- Perform QA/QC activities to drive configuration management program maturity
- Support remediation efforts through gap identification and action plan creation to operationalize scan results
- Participates in various tool testing and validation efforts for on-prem and cloud scanning
Required Qualifications
- Bachelor's degree in IT or Cybersecurity
- Experience with developing, customizing, reviewing and updating a wide range of enterprise security configuration baselines, with input from subject matter experts
- Experience interpreting and applying CIS Benchmarks, DISA STIGs, SRGs, and has an awareness of the National Vulnerability Database (NVD) and Common Vulnerability Enumeration (CVE)
- 1 year of direct experience working with teams in an agile and horizontal environment
- Experience with remediation activities within Cybersecurity
- Ability to translate the low-level security baseline requirements into security baselines
- Ability to work independently to anticipate needs, support a changing landscape and willingness to act with minimal supervision
Preferred Qualifications:
- Knowledge and understanding of technology operations/processes, as well as experience with evaluating technology-related risks and controls
- Experience in working with the NIST 800 Special Publication series and providing guidance for risk management and security control implementation, including and others.
- Experience with one or more of the following technologies: Networking (including CISCO or Palo Alto); Operating Systems (including Windows Server, RedHat, or Linux); Cloud Services (including GCP, AWS, and Azure)
- Ability to apply a technical skill set to research and document industry knowledge and best practices with established or newly released applicable security controls
- Written and verbal communication skills: articulate and effective communicator and presenter, able to describe complex problems in both technical and business terms
- Demonstrated experience learning new technologies
- Experience with an Agile methodology
- Knowledge of ServiceNow and Archer
Anticipated Posting End Date:
Base Pay Range: $30.91/hr. - $43.60/hr.Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location.
_____________________________________________________________________________________________________
Equal Opportunity
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law here.
Accessibility Support
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone:
Email:
Privacy Notices
For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here.
For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here.
For Applicants of Nuveen residing in Europe and APAC, please click here.
-
CW - Sr. Design Ops Specialist
3 weeks ago
Charlotte, North Carolina, United States TIAA Full timeThis is a Non-Employee Contingent Worker Role providing services for TIAA's family of companies and will be employed by TIAA's preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to...
-
CW - Sr. Design Ops Specialist
1 month ago
Charlotte, North Carolina, United States TIAA Full timeThis is a Non-Employee Contingent Worker Role providing services for TIAA's family of companies and will be employed by TIAA's preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to...
-
CW- Data Analyst II
4 weeks ago
Charlotte, North Carolina, United States Nuveen Full timeThis is a Non-Employee Contingent Worker Role providing services for TIAA's family of companies and will be employed by TIAA's preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to...
-
CW- Data Analyst II
3 weeks ago
Charlotte, North Carolina, United States Nuveen Full timeThis is a Non-Employee Contingent Worker Role providing services for TIAA's family of companies and will be employed by TIAA's preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to...
-
Senior Information Security Analyst
3 weeks ago
Charlotte, North Carolina, United States EverBank Full timeSr Information Security AnalystThe Sr Information Security Analyst drafts, communicates, implements, enforces and monitors the organization's security controls to protect technology assets from intentional or inadvertent modification, disclosure or destruction. Under limited supervision, this job works independently to manage and monitor the organization's...
-
Charlotte, North Carolina, United States Bank of America Full timeJob Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.This job is responsible for assessing the bank's technologies, applications, and...
-
Vulnerability Identification Assurance Sr Specialist
2 months ago
Charlotte, North Carolina, United States Bank of America Full timeJob Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.This job is responsible for assessing the bank's technologies, applications, and...
-
Director of Information Security
1 week ago
Charlotte, North Carolina, United States Insight Global Full timeEnpro is currently seeking a Director of Information Security to join our Information Security Team. The ideal candidate will be an information security expert with extensive technical experience building and optimizing information security programs. In this role, the Director of Information Security will lead a team in building and maturing security...
-
Information Security Engineer 3
3 weeks ago
Charlotte, North Carolina, United States Randstad USA Full timejob summary: Randstad Digital is hiring and we're looking for someone like YOU to join our team If you are seeking a new opportunity, looking to grow in your career, or you know someone who is - we want to hear from you Take a look at the below opportunity, or feel free to visit to view and apply to any of our open roles.location: Charlotte, North Carolina...
-
Information Security Engineer 3
1 month ago
Charlotte, North Carolina, United States Randstad USA Full timejob summary: Randstad Digital is hiring and we're looking for someone like YOU to join our team If you are seeking a new opportunity, looking to grow in your career, or you know someone who is - we want to hear from you Take a look at the below opportunity, or feel free to visit to view and apply to any of our open roles.location: Charlotte, North Carolina...
-
Information Security Analyst
2 months ago
Charlotte, North Carolina, United States Motion Recruitment Full timeOutstanding long-term contract opportunity A well-known Financial Services Company is looking for a Information Security Analyst in Charlotte, NC or Chandler, AZ (Hybrid).Work with the brightest minds at one of the largest financial institutions in the world. This is long-term contract opportunity that includes a competitive benefit package Our client has...
-
Information Security Analyst
3 weeks ago
Charlotte, North Carolina, United States Motion Recruitment Full timeOutstanding long-term contract opportunity A well-known Financial Services Company is looking for a Information Security Analyst in Charlotte, NC or Chandler, AZ (Hybrid).Work with the brightest minds at one of the largest financial institutions in the world. This is long-term contract opportunity that includes a competitive benefit package Our client has...
-
CW - Senior Experience Designer
3 weeks ago
Charlotte, North Carolina, United States TIAA Full timeThis is a Non-Employee Contingent Worker Role providing services for TIAA's family of companies and will be employed by TIAA's preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to...
-
CW - Senior Experience Designer
1 month ago
Charlotte, North Carolina, United States TIAA Full timeThis is a Non-Employee Contingent Worker Role providing services for TIAA's family of companies and will be employed by TIAA's preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to...
-
Sr Business Control Specialist
2 months ago
Charlotte, North Carolina, United States Bank of America Full timeJob Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our...
-
Sr Business Control Specialist
3 weeks ago
Charlotte, North Carolina, United States Bank of America Full timeJob Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.One of the keys to driving Responsible Growth is being a great place to work for our...
-
Senior Information Assurance Specialist
1 week ago
Charlotte, North Carolina, United States Hearst Full timeJob Description Hearst Technology, Inc, Information Security Office seeks a Senior Information Assurance Specialist for their Security Operations Team. This role is responsible for strengthening Hearst's cybersecurity posture through analysis, research, and security control validation. The scope of the position's responsibilities includes analyzing security...
-
Business Information Security Officer/BISO
1 week ago
Charlotte, North Carolina, United States Hispanic Technology Executive Council Full timeAt Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates...
-
Information Security Analyst
2 months ago
Charlotte, North Carolina, United States Motion Recruitment Full timeOutstanding contract opportunity A well-known Financial Services Company is looking for a Information Security Analyst in Charlotte NC (Hybrid). Work with the brightest minds at one of the largest financial institutions in the world. This is long-term contract opportunity that includes a competitive benefit package Our client has been around for over 150...
-
Information Security Analyst
3 weeks ago
Charlotte, North Carolina, United States The Judge Group Inc. Full timeLocation: Charlotte, NCSalary: $41.00 USD Hourly - $44.00 USD HourlyDescription: nformation Security AnalystJob Overview: As an Information Security Analyst, you will participate in low to moderately complex initiatives and identify opportunities for process improvements within Information Security Analysis. Your role involves reviewing and analyzing...
