TIAA Senior Info Security Governance & Risk Specialist in Jacksonville, Florida
Sr Info Security Gov & Risk Specialist
The Senior Information Security Governance & Risk Specialist identifies and manages potential information security risks to the environment by conducting control assessments, vendor due diligence and creating remediation action plans to mitigate cybersecurity risks. Under limited supervision, this job identifies potential future risks by assessing network traffic, following information security and risk industry trends, and consistently monitoring different environments to minimize possible risk exposure for the organization.
Key Responsibilities and Duties
Completes cybersecurity risk assessments and maturity assessments to identify inherent risk and implemented security controls.
Works with technology and risk partners to create remediation action plans to mitigate cybersecurity risks and govern action plans through until completion.
Drives the remediation of control gaps based on priorities set by the organization.
Creates reports and documents regarding potential risks in different environments based on research findings and industry trends.
Improves cyber engagement across the organization by providing cyber security inputs to appropriately secure technologies and strategic initiatives.
Conducts control assessments to determine how prepared the current network resources are to protect from potential risks.
Tests Information Assurance safeguards and employs Computer Network Defense tools and approved practices to protect networks.
Coaches and reviews the work of lower level professionals.
3 Years Required; 5 Years Preferred
University (Degree), Preferred
- Physical Requirements: Sedentary Work
- University (Degree)
Sr Info Security Gov & Risk Specialist will be a support liaison across all 3LOD, Regulatory Support and Advocacy Team, Cybersecurity, and other business partners to successfully address current, and prepare for future audits and examinations. Ensure the effective monitoring of audit/examination activities, and to identify and escalate issues to senior management in real-time. Role will assist with overseeing the respective program activities (Regulatory, Audit, and Issues Management) to ensure quality and SLAs are met.
Monitors the full lifecycle of corresponding risk issues and management action plans (MAPs) identified—from identification, evidence collection, to closure, to validation.
Control of management information submissions; including the gathering and packaging of artifacts through coordination and scheduling meetings with key participants/SMEs.
Provide assessment and assistance to the business lines’ preparedness for the examination process; includes coaching/training business lines on examination protocol.
Coordinate and review examination response as part of quality control process. Must be able to manage issues; provide visibility and escalation, when needed.
Provides input to strategic decisions that affect the functional area of responsibility. Prepare reports for senior/executive management teams, detailing Issues, MAPs, examinations, audit information that may impact the Cyber’s regulatory compliance.
Experience with Audit preparation activities including evidence gathering and submission, ensure successful management action plan (MAP) implementation, management reporting.
Experience with Information Security frameworks and industry regulations (NIST, ISO, CoBIT, NYDFS, SOX, FFIEC)
Professional certifications including, but not limited to any of the following: CISA, CISM, CISSP, CRISC, etc.
Experience using Archer or GRC tool
Effective leadership skills with the ability to create empowered teams including knowledge sharing, documentation, timeliness and proactive planning
Strong interpersonal skills to lead projects with excellent influencing and problem resolution skills
Experience in partnering with Business, Audit, Regulatory Support, Legal, Risk, and Compliance partners
Potential Salary: $109,600.00 USD
Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).
TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.
TIAA requires all U.S. employees to be fully vaccinated against COVID-19 and provide documentation of full vaccination, unless you qualify for an accommodation as determined by TIAA consistent with applicable law.
Benefits and Total Rewards
The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary (https://www.tiaa.org/public/pdf/benefits-at-a-glance.pdf) .
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law here (https://www.dol.gov/general/topics/posters) .
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here (https://www.tiaa.org/public/tiaa-nuveen-privacy) .
For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here (https://www.tiaa.org/public/tiaa-nuveen-ca-privacy) .
For Applicants of Nuveen residing in Europe and APAC, please click here (https://www.tiaa.org/public/nuveen-eu-uk-privacy) .
For Applicants of Greenwood residing in Brazil (English), click here (https://www.tiaa.org/public/support/privacy/applicants-greenwood-privacy) .
For Applicants of Greenwood residing in Brazil (Portuguese), click here (https://www.tiaa.org/public/support/privacy/applicants-greenwood-portuguese-privacy) .
For Applicants of Westchester residing in Brazil (English), click here (https://www.tiaa.org/public/support/privacy/applicants-westchester-privacy) .
For Applicants of Westchester residing in Brazil (Portuguese), click here (https://www.tiaa.org/public/support/privacy/applicants-westchester-portuguese-privacy) .