Job Information

TIAA Lead Info Security Gov & Risk Manager in Jacksonville, Florida

The Lead Information Security Governance & Risk Manager supervises a team of professionals focused on the information security and identification of potential risks to the environment. While setting goals and objectives for team members for achievement of operational results, this job manages potential future risks by evaluating control assessments, vendor due diligence and security tools to monitor risk in different environments. This job also maintains proper assessment of network traffic, management of industry trends and the monitoring of different environments to minimize possible information security and risk exposure for the organization.

Key Responsibilities and Duties

  • Reviews security measures and operating software, including firewalls and data encryption programs, to protect systems and information infrastructure from potential risks to the environment.

  • Monitors network traffic and related applications and operating systems to identify potential threats, anomalous or malicious activities to network resources.

  • Reviews the development of processes to best monitor different environments using security tools to identify possible threats and risks to the organization's network environment.

  • Manages reports and documents drafted by team members regarding potential risks in different environments based on research findings and industry trends.

  • Evaluates control assessments are conducted to determine how prepared the current network resources are to protect from potential risks.

  • Manages Information Assurance safeguards and ensures employment of computer network defense tools and approved practices to protect networks.

  • Influences others outside of information security regarding policies, practices and procedures.

  • Oversees the improvement of cyber engagement across the organization by providing cyber security inputs to appropriately secure technologies and strategic initiatives

Educational Requirements

  • University (Degree) Preferred

Work Experience

  • 5+ Years Required; 7+ Years Preferred

Physical Requirements

  • Physical Requirements: Sedentary Work

Career Level


Lead Info Security Gov & Risk Manager

This role will be responsible for leading and managing the IT Policy and Standards framework as well as be responsible for ensuring standards are in compliance with required IT authoritative sources.

Key Responsibilities and Duties

  • Oversees and manages IT policies and standards framework, in compliance with required regulatory authoritative sources and industry frameworks

  • Work with control areas to recommend, develop, and implement changes to existing and proposed IT policies and standards

  • Facilitate the review, revision and dissemination of new and updated compliance standards and procedures

  • Communicate with relevant stakeholders to ensure awareness, preparedness, and compliance with necessary IT regulations

  • Manage and support the IT regulatory change management (RCM) process to identify, evaluate, and operationalize new and amended key rules or regulations that affect the technology environment;

  • Responsible for overseeing and executing the IT RCM playbook, mapping IT standards to authoritative sources and performing gap assessments

  • Manage, develop and review the work of less experienced team members

Required Qualifications

  • 3+ years combination of IT compliance and/or governance with a strong focus on standards and controls

  • 3+ years of practical working experience financial services IT compliance and operations, including the related industry rules and regulations (e.g. OCC, FRB, NYDFS, SOX, SEC and other pertinent IT/Cyber regulations)

Preferred Qualifications

  • Bachelor's degree

  • Lead and/or management experience, with strong interpersonal skills and the ability to work well in a team environment.

  • Experience defining and communicating IT policy, standards and controls across various stakeholders

  • Working knowledge and understanding of IT regulatory compliance concerns, data protection and industry standards, security and risk frameworks (NIST, COSO, COBIT, ISO2700X, CIS/SANS Top 20, etc.)

  • High ethical standards, strong critical thinking, detective, analytical, and problem-solving skills.

  • Autonomous, self-motivated, and flexible with the ability to adapt quickly to change or shifting priorities in a fast-paced environment.

  • Demonstrated skill in effectively communicating (verbal and written) results to varying levels of management, with a focus on collaboration and relationship management.

  • Familiarity with Archer eGRC and/or other GRC tools

Potential Salary: $145,425.00 USD

Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).

Company Overview

TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.

COVID-19 Vaccination

TIAA requires all U.S. employees to be fully vaccinated against COVID-19 and provide documentation of full vaccination, unless you qualify for an accommodation as determined by TIAA consistent with applicable law.

Benefits and Total Rewards

The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary ( .

Equal Opportunity

We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.

Read more about the Equal Opportunity Law here ( .

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:

Phone: (800) 842-2755


Privacy Notices

For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here ( .

For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here ( .

For Applicants of Nuveen residing in Europe and APAC, please click here ( .

For Applicants of Greenwood residing in Brazil (English), click here ( .

For Applicants of Greenwood residing in Brazil (Portuguese), click here ( .

For Applicants of Westchester residing in Brazil (English), click here ( .

For Applicants of Westchester residing in Brazil (Portuguese), click here ( .