TIAA Bank Information Security Engineer Senior in JACKSONVILLE, Florida

Information Security Engineer Senior

Location: United States, Florida, Jacksonville

Field: Technology

TIAA Bank

Post Date: Feb 01, 2019

PRIMARY CHARACTERISTICS

The Senior Information Security Engineer will be an important part of a rapidly growing Information Security Team and will be responsible for security monitoring, network and applications security, systems access control, identity and access management, penetration and vulnerability assessment, analysis and reporting, forensics and investigation.

ESSENTIAL FUNCTIONS

  • Providing advanced operations and engineering support for critical security systems and services including Windows and Linux servers, endpoint security, computer forensics, vulnerability/penetration assessment/mitigation, and security event management (SIEM)

  • Perform mitigation of network and application risks to ensure that all information systems, products and services meet information security standards

  • Responsible for identity and access management (IAM) systems and privileged accounts management

  • Provide information security support services while collaborating with program managers, engineers, developers, risk manager, and audit

  • Participate in implementation of information security monitoring and reporting

  • Perform regular information security procedure reviews and system attestations to ensure accuracy and compliance for internal and external audit

  • Serve as initial escalation point for information security team, providing outstanding customer service through timely, high quality issue resolution

  • Assess the appropriateness and effectiveness of security measures and recommend enhancements

  • Responsible for timely incident response and investigation requests

  • Write and contribute to project plans, author network security engineering level documentation, and develop detailed test plans

  • Support the information security program mission by completing related tasks as needed.

KNOWLEDGE, SKILLS, AND ABILITIES REQUIREMENTS

  • Strong understanding and working knowledge of networking and web technologies, identity and management (IAM) systems, forensics, incident response, and investigation

  • Proven ability to share knowledge, resolve conflicts, create consensus, and lead complex projects

  • Proven ability to plan, test, and implement security controls

  • Comprehensive knowledge of IDS/IPS, NextGen and applications firewalls, VPN, DLP, data encryption, SIEM, vulnerability and penetration testing, Windows / Linux and database security

  • Ability to react quickly in a fast paced, rapidly changing environment

  • Strong ability to take ownership of assigned tasks and responsibilities

  • Must display high level of critical thinking in order to weigh alternatives and present solutions that are consistent with requirements

  • Ability to participate in 24 X 7 rotation duties

TRAINING AND EXPERIENCE

  • BS in technology-related or information security-related curriculum required

  • Minimum of 5 years of experience providing network, applications, and systems security administration services in a mission critical environment required

  • Experience implementing network, applications, and systems security and incident response operational policies and procedures at an enterprise level required

  • Understanding of advanced security protocols and standards, including a demonstrated ability to perform complex analysis and producing information security metrics preferred

  • Knowledge of information security frameworks and industry regulations (NIST, ISO, CoBIT, PCI, SOX)

  • Knowledge of US banking security regulations (OCC / FFEIC, GLBA) preferred

  • Network and systems security certifications preferred (CCSP and/or GIAC’s GCWN, GCUX, GCIH, GPEN).

Pre-Employment Screening May Include:

  • Credit Check

  • Criminal Background Check

  • Fingerprinting

  • DMV Check

  • Past Employment Verification

  • Social Security Verification

Note: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all duties, responsibilities, and skills required of personnel so classified, and they may change at any time.

TIAA, FSB is an equal opportunity employer. No associate or applicant for employment will be discriminated against on the basis of race, creed, ethnicity, color, age, religion, sex, sex stereotype, pregnancy (including childbirth, breastfeeding or related medical conditions where applicable), sexual orientation, gender, gender identity, gender expression, transgender, marital status, national origin, ancestry, physical or mental disability, requesting a reasonable accommodation based on mental or physical disability, medical condition (as defined by applicable law), genetic history and information, citizenship status, military or veteran status, or any other status protected by federal, state, or local law or ordinance or regulation.

TIAA, FSB is not seeking assistance or accepting unsolicited resumes from search firms for employment or contractor opportunities. Regardless of past practice, all resumes submitted by search firms to any employee at TIAA, FSB via e-mail, the Internet, or directly to hiring managers at TIAA, FSB in any form without valid written search agreements executed by the VP, Talent Acquisition for that specific position will be deemed the sole property of TIAA, FSB, and no fee will be paid in the event the candidate is hired by TIAA, FSB as a result of the referral or through other means.

TIAA, FSB will not discharge or in any other manner discriminate against associates or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another associate or applicant. However, associates who have access to the compensation information of other associates or applicants as a part of their essential job functions cannot disclose the pay of other associates or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by TIAA, FSB, or (c) consistent with TIAA, FSB's legal duty to furnish information.

Additional Information

  • Requisition ID: 1717544