TIAA Business Information Security Officer in New York, New York
TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.
KEY RESPONSIBILITIES AND DUTIES:
Business Information Security Officer
Acts as the conduit between the lines of business and Cybersecurity to ensure the business perspective is considered for security initiatives as well as ensuring that Cybersecurity has visibility into business initiatives. Defining, enhancing, and implementing information security architecture, while ensuring consistent and effective information security is applied through consulting and advising on required policies, standards, procedures and processes. Additionally the role requires for the effective delivery of Cybersecurity services, capabilities, and initiatives in alignment with business area interests and risk appetite.
Key Responsibilities and Duties
Communicating the specific needs of the business to Cybersecurity and acting as the principal point of contact within the line of business or organizational unit for cybersecurity related issues.
Identifying risks, and assisting the business in making informed technology risk decisions.
Participating in key initiatives and projects to ensure that cybersecurity controls are accounted for early within the project and software develop lifecycles.
Providing security design requirements and guidance based on IT Policy, Standards, Procedures and related programs
Monitoring industry security updates, technologies and best practices to improve security management.
Participating in the development of information security processes, procedures and guidelines that support information security policies.
Serve as a cyber security subject matter expert (SME), coordinating and providing multi-disciplinary knowledge, skills, and experience in security architecture, and security management roles and responsibilities.
Respond to line of business customer queries about the Cybersecurity program in support of the business initiatives.
- University (Degree) Preferred
- 5 Years Required; 7 Years Preferred
- Physical Requirements: Sedentary Work
Experience providing consulting or architectural reviews during IT or information security related projects and initiatives
Experience with prioritizing IT or information security risks for a line of business or technology area and partnering with the line of business or technology area to develop remediation action plans
Experience presenting to senior management and executives
Knowledge of investment companies, mutual fund distribution, National Association of Securities Dealers (NASD), FINRA and Securities Industries Rules and Regulations.
Must be able to pass the required certification of a FINRA Series 99 Operations Professional Qualification Exam.
Experience with cybersecurity and IT controls including identity and access management capabilities, data loss prevention solutions and intrusion detection/intrusion prevention technologies
Strong communication skills, both written and oral
Experience partnering with other financial institutions or other industry partners on cybersecurity best practices
Experience managing projects
Strong business relationship management, risk tracking, and business-focused risk remediation guidance
Proficiency with Microsoft Office (MS Excel, MS PowerPoint, etc.) and Archer
Working knowledge of common TIAA Cybersecurity systems, technologies, procedures and processes
Working knowledge of TIAA IT Policy and Standards
CISA, CISSP, CRISC certifications a plus, as is PMP
Experience with at least one of the following: Federal Financial Institutions Examination Council (FFIEC) guidance, GLBA, Sarbanes-Oxley, FINRA, ISO2700x, NIST, COBIT, PCI-DSS.
Other desired competencies include organizational skills, ability to influence and a problem solving / analytical approach
Potential Salary: $101,500.00 USD
Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).
The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary (https://www.tiaa.org/public/pdf/benefits-at-a-glance.pdf) .
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law here (https://www.dol.gov/general/topics/posters) .
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
For residents of California, please click here (https://www.tiaa.org/public/tiaa-nuveen-ca-privacy) to access the TIAA CA Applicant Privacy Notice.
For residents of the EU / UK, please click here (https://www.tiaa.org/public/nuveen-eu-uk-privacy) to access the EU / UK Pre-employment Notice.
For all other residents, click here (http://www.tiaa.org/public/tiaa-nuveen-privacy) to access the Applicant Privacy Notice.
TIAA started out over 100 years ago to help ensure teachers could retire with dignity. Today, many people who work at not-for-profits rely on our wide range of financial products and services to support and strengthen their financial well-being.