Job Information

TIAA Lead Info Security Governance & Risk Specialist in Chicago, Illinois

The Lead Info Security Governance & Risk Specialist is responsible for leading and supporting IT Risk Framework processes. This includes, but is not limited to, establishing and maintaining the framework used to identify, assess, and manage technology risk across IT resources (e.g. applications, servers, databases, etc.).

Key Responsibilities and Duties

  • Lead and support IT Risk Framework activities including management of risk content (i.e. IT Risk catalog, IT Risk Attributes, etc.), continually improving the ratings system, and executing model testing / validation activities.

  • Ensure that the components of the IT Risk Framework are documented well and communicated effectively to various stakeholders.

  • Provide support to the IT Risk Assessment teams and other stakeholders in support of the IT Risk Assessment program.

  • Identify and address the impact of changes to the threat landscape to the technology risk management program.

  • Identify and leverage internal and external data sources to automate the collection and analysis of IT Risk data.

  • Provide guidance to IT teams on the implementation of appropriate controls and track progress.

  • Participate in the development of metrics in support of IT Risk objectives.


  • 5 Years Required; 7 Years Preferred

  • University (Degree), Preferred

Physical Requirements

  • Physical Requirements: Sedentary Work

Preferred Education

  • University (Degree)

Career Level


Required Qualifications:

5 or more years of IT Risk, cyber security or IT Audit experience

Preferred Qualifications:

  • 7 or more years of IT experience

  • Working knowledge and understanding of regulatory compliance concerns, data protection/PII and industry standards, information security and IT risk frameworks/methodologies (i.e., COBIT, Risk IT, Val IT, ITIL, PCI-DSS).

  • Ability to independently lead IT Risk operations and projects

  • Bachelor’s degree

  • Experience working with a systems development lifecycle (SDLC)

  • Experience working with MS Excel, Word, PowerPoint and SharePoint

  • Experience working in Financial Services or other regulated industry

  • Certifications: CISA, CRISC and/or equivalent

  • Familiarity with Archer eGRC and/or other GRC tools

  • Excellent written and verbal communication skills

  • Strong problem solving, project management, and relationship management skills


Potential Salary: $138,500.00 USD

Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).

Company Overview

TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.

COVID-19 Vaccination

TIAA requires all U.S. employees to be fully vaccinated against COVID-19 and provide documentation of full vaccination, unless you qualify for an accommodation as determined by TIAA consistent with applicable law.

Benefits and Total Rewards

The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary ( .

Equal Opportunity

We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.

Read more about the Equal Opportunity Law here ( .

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:

Phone: (800) 842-2755


Privacy Notices

For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here ( .

For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here ( .

For Applicants of Nuveen residing in Europe and APAC, please click here ( .

For Applicants of Greenwood residing in Brazil (English), click here ( .

For Applicants of Greenwood residing in Brazil (Portuguese), click here ( .

For Applicants of Westchester residing in Brazil (English), click here ( .

For Applicants of Westchester residing in Brazil (Portuguese), click here ( .