Job Information

TIAA Lead Info Security Engineer in Charlotte, North Carolina

Lead Info Security Engineer

The Encryption & Key Management (EKM) Team within Cyber Security Org owns the Public Key Infrastructure (PKI), and is responsible for certificate lifecycle management, distribution, and key management. The deployed solutions have various integrations from provisioning certs & keys to protect data at rest and in-transit, to signing code binaries, identifying users and devices, etc.  

The Lead Security Engineer is expected to provide engineering support required to build and maintain internal and external PKI systems, libraries, and automation. They are expected to be self-starter, have a strong work ethic, leverage analytical and critical thinking and be resourceful in working as part of a global team. The role requires interfacing with other business units so the candidate must have strong verbal and written communication skills. 

Key Responsibilities and Duties

  • Participates in key ceremonies

  • Provides engineering support for critical EKM systems and services including on premise and cloud-based PKI/CLM servers, HSMs, and KMS.

  • Ensures the execution of enterprise EKM standards and best practices while onboarding new uses cases and configuring existing systems.

  • Reports identified gaps in encryption/CLM implementation and mis/unclassified data discovered through testing, peer discussions and evaluation procedures.

  • Partners with application teams to design, develop, and implement encryption system integrations with the goal of protecting company/client data based on data classification.

  • Documents system configurations and new operational procedures.

Educational Requirements

  • University (Degree) Preferred

Work Experience

Required skills:

  • 5+ years of experience working as a Security Engineer

  • 3+ years of experience with public key infrastructure (PKI)

  • 3+ years of experience with at least one scripting language (Python, PowerShell, Golang, Ruby, Bash, Perl, etc.) 

  • Experience working with Certificate Lifecycle Management, Hardware Secure Module, and Key Management Services

  • Experience with X.509, RSA and general certificate management processes

Preferred Skills :

  • BA or BS degree in Computer Science, Cyber Security, or other related information technology field of study 

  • Security certifications such as CISSP, CCSP, CRISC, AWS Security, SANS, etc. 

  • Experience supporting either Venafi, KeyFactor, or AppViewX

  • Experience working with code signing solutions

  • Experience with Active Directory Certificate Services

  • Experience working in multi-Cloudenvironments 

  • Experience with databases, and SQL queries (DBMS preferred)

  • Experience with automation tools such as Ansible or Terraform

  • Experience with issue tracking systems, preferably Jira

  • Experience with enterprise authentication and web security

  • Experience with change management processes

  • Ability to plan work, estimate and deliver autonomously and equally partner with other engineers and operations staff

  • Experience developing and maintaining automated solutions

  • Experience with secure coding techniques and IT security principals in general

  • Experience with networking concepts 

Physical Requirements

  • Physical Requirements: Sedentary Work

Career Level



Base Pay Range: $104,300/yr. - $173,900/yr.

Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).

Company Overview

TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.

Benefits and Total Rewards

The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary ( .

Equal Opportunity

We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.

Read more about the Equal Opportunity Law here ( .

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:

Phone: (800) 842-2755


Privacy Notices

For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here ( .

For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here ( .

For Applicants of Nuveen residing in Europe and APAC, please click here ( .

For Applicants of Greenwood residing in Brazil (English), click here ( .

For Applicants of Greenwood residing in Brazil (Portuguese), click here ( .

For Applicants of Westchester residing in Brazil (English), click here ( .

For Applicants of Westchester residing in Brazil (Portuguese), click here ( .

TIAA started out over 100 years ago to help ensure teachers could retire with dignity. Today, many people who work at not-for-profits rely on our wide range of financial products and services to support and strengthen their financial well-being.