TIAA Associate in Pune, India
TIAA GBS India was established in 2016 with a mission to tap into a vast pool of talent, reduce risk by insourcing key platforms and processes, as well as contribute to innovation with a focus on enhancing our technology stack.TIAA GBS India is focused on building a scalable and sustainable organization , with a focus on technology , operations and expanding into the shared services business space.
Working closely with our U.S. colleagues and other partners, our goal is to reduce risk, improve the efficiency of our technology and processes and develop innovative ideas to increase throughput and productivity.
Senior, Info Security
Defines, enhances, and implements information security architecture, while ensuring consistent and effective information security administration procedures and processes.
Key Responsibilities and Duties
Designing security models, reviewing and approving security configuration and installation of firewall, VPN, routers, IDS scanning technologies, and servers.
Overseeing security awareness programs; educating and communicating to staff about information security polices, procedures, and practices.
Monitoring industry security updates, technologies and best practices to improve security management.
Participating in the development of hardware/software/network security procedures and guidelines that support information security policies.
2 Years Required; 3 Years Preferred
University (Degree), Preferred
- Physical Requirements: Sedentary Work
The primary objective for the Security Orchestration & Log Onboarding ( SOLO ) Team is the following: The SOLO team helps protect TIAA and our participants by managing multiple CyberSecurity Splunk environments including Splunk Enterprise Security (ES), as well as through the continued efforts focused on log parsing and normalization, security log health monitoring, and use case content development. The SOLO team interprets, parses, and creates detection content from the available security logging sources to ensure that cybersecurity operations has clear and actionable data to make informed decisions on and assist in maintaining and improving TIAA's security posture as it pertains to our visibility into our enterprise security systems, appliances, workstations, servers, users, and applications for both on premise and cloud based solutions.
Core functions: Understanding security log sources, Creating content for the security information and event management system (SIEM). Support log onboarding of critical security log sources. Support security orchestration, automation and response. Help support and lead building security solutions related to the Security Operations team.
Review new security log data sources. Size, understand and create log parsing.
Develop new SIEM content (Splunk ES) including correlations, dashboards, reports, and alerts that appropriately characterize the importance of events of interest found in the TIAA operational environment
Document and develop tools to assist Security Operations personnel in log collection and review
Develop metrics and trends that demonstrate the log platform's health and operational state
Provide business requirements to peer teams within TIAA that relate to the governance, development, and sustainability of logging related to security-relevant events
Support for security operations for potential crisis situations, with 24x7 availability as needed
Participate in information security audits, ensuring the technical compliance with related (e.g. PCI, SOX, etc) regulatory requirements
Ensure breadth and depth of coverage within the SIEM environment for all security solutions deployed at TIAA; ensure that technologies are properly being leveraged to provide detective capabilities of security events
Maintain operational effectiveness of SIEM content rules, accepting requests from Security Operations and elsewhere in the business (within the governance framework) to tune and implement rules to meet emerging threats
Collaborate with others inside of IT Risk and Information Security, as well as elsewhere in the business, to ensure excellence
Define, document, and implement appropriate delivery, parsing, reporting, and retention of security-relevant log information
3+ years in information technology and/or information security
1+ years Information Security
1+ Years building solutions to support Information Security
1+ Year working with Security Operations Centers
Strong Problem Solving skills
Proficiency with Regex
Proficiency in Python
Proficiency with Windows & Linux
5+ years experience in information technology
2+ years experience in information security
Experience in managing, engineering, or developing content for centralized logging solutions. (Splunk, ArcSight, ELK, Graylog, etc)
1+ years SIEM (Splunk ES) content development experience
Familiarity with a broad range of security technologies and how they function, as well as non-security devices and how their log outputs can indicate security incidents
1+ years in log review, analysis, and design of searches / alerts to bring actionable intelligence from logs
Understanding of Splunk engineering a plus
Excel or other data processing & visualization skills
Basic understanding of one or more of the following: Shell scripting, Perl, or other scripting
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
For residents of California, please click here (https://www.tiaa.org/public/tiaa-nuveen-ca-privacy) to access the TIAA CA Applicant Privacy Notice.
For residents of the EU / UK, please click here (https://www.tiaa.org/public/nuveen-eu-uk-privacy) to access the EU / UK Pre-employment Notice.
For all other residents, click here (http://www.tiaa.org/public/tiaa-nuveen-privacy) to access the Applicant Privacy Notice.
TIAA started out over 100 years ago to help ensure teachers could retire with dignity. Today, many people who work at not-for-profits rely on our wide range of financial products and services to support and strengthen their financial well-being.