TIAA Technology Risk Sr Associate in New York, New York
The Technology Risk Sr. Associate is responsible for supporting second line of defense credible challenge for information technology and cybersecurity people, processes and systems used to support enterprise functions and the relevant business areas.
Key Responsibilities and Duties
Work closely with manager to align on second line of defense challenge strategy, prioritization of work activities, status of execution of work assigned and obstacles encountered to ensure delivery timelines are achieved.
Support enterprise risk programs to help ensure appropriate execution and risk mitigation activities are occurring. These programs include Risk Control Self-Assessment (RCSA), Holistic Issue Management (HIM), Supplier Risk Management (SRM) and Business Continuity Management (BCM).
Responsible for working closely with first line of defense SMEs and risk partners to perform independent risk assessments, evaluate control effectiveness and align on risk mitigation actions required. Ensure adherence to relevant regulatory requirements (e.g. NY DFS, FFIEC) is achieved.
Promote proactive self-identification of issues with first line owners and provide support to their teams as needed, to ensure that appropriate issues and management actions are in place to mitigate the risk to an acceptable level.
Perform analytics on various data sources to support risk reporting, to identify potential control breaks and to determine if relevant risk appetite is breached.
Assist with the identification of new KRIs, KPIs or KCIs as needed, to ensure that metrics coverage for key control areas is sufficiently comprehensive.
Monitor key initiatives to confirm the status of control enhancements being implemented and to ensure updates to impacted RCSA control programs are addressed.
Review the root cause analysis (RCA) for major technology incidents to identify and highlight potential thematic concerns and identify instances where control strengthening is required.
Provide support to management for producing risk management committee materials, metrics reporting and other related analysis, as needed.
- University (Degree) Preferred
- 3+ Years Required; 5+ Years Preferred
- Physical Requirements: Sedentary Work
- 3 years’ experience in one or more of the following disciplines: IT Risk Management, IT Audit, Information Technology or Cybersecurity functional areas
5+ years’ experience in one or more of the following disciplines: IT Risk Management, IT Audit, Information Technology or Cybersecurity functional areas
Bachelor’s Degree in Information Technology (IT) or Cybersecurity.
Proficient in the use of tools to export data and/or create reports (e.g. Excel, Tableau, Archer GRC).
Knowledge and understanding of industry IT or security control frameworks
Experience performing Risk Assessments
Certifications: CISSP, CRISC, CISM, CISA or equivalent
Knowledge and understanding of various cloud service models (IaaS, PaaS, SaaS) and controls.
Knowledge and understanding of technology operations/processes, as well as experience with evaluating technology-related risks and controls
Knowledge and understanding off application development lifecycles and methodologies (e.g. Agile), as well as change management processes
Base Pay Range: $87,300/yr. - $145,500/yr.
Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).
TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.
Benefits and Total Rewards
The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary (https://www.tiaa.org/public/pdf/benefits-at-a-glance.pdf) .
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law here (https://www.dol.gov/general/topics/posters) .
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here (https://www.tiaa.org/public/tiaa-nuveen-privacy) .
For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here (https://www.tiaa.org/public/tiaa-nuveen-ca-privacy) .
For Applicants of Nuveen residing in Europe and APAC, please click here (https://www.tiaa.org/public/nuveen-eu-uk-privacy) .
For Applicants of Greenwood residing in Brazil (English), click here (https://www.tiaa.org/public/support/privacy/applicants-greenwood-privacy) .
For Applicants of Greenwood residing in Brazil (Portuguese), click here (https://www.tiaa.org/public/support/privacy/applicants-greenwood-portuguese-privacy) .
For Applicants of Westchester residing in Brazil (English), click here (https://www.tiaa.org/public/support/privacy/applicants-westchester-privacy) .
For Applicants of Westchester residing in Brazil (Portuguese), click here (https://www.tiaa.org/public/support/privacy/applicants-westchester-portuguese-privacy) .
TIAA started out over 100 years ago to help ensure teachers could retire with dignity. Today, many people who work at not-for-profits rely on our wide range of financial products and services to support and strengthen their financial well-being.