TIAA Lead Incident Response Specialist, Cybersecurity in Virtual, Florida
TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.
KEY RESPONSIBILITIES AND DUTIES:
Lead Info Sec Incident Response Specialist
The Lead Information Security Incident Response Specialist investigates and analyzes all response activities related to cyber incidents within the network environment or enclave. This job ensures all networks and systems within the organization are monitored and analyzed to identify and deter potential threats. This job also works across lines of business to inform key team members of cyber threat findings relevant to their business function.
Key Responsibilities and Duties
Analyzes cyber threat information from a variety of IT Security tools, including intrusion detection system alerts, firewall and network traffic logs and host system logs.
Conducts strategic assessments on systems and networks to determine potential cyber threat opportunities.
Analyzes, and reports all events and anomalies in accordance with IT Security directives, including initiating, responding, and reporting discovered events.
Provides tactical analyses and suggestions for network operations within the organization.
Performs digital forensic tasks to consistently monitor all designated networks, enclaves and systems.
Lends technical assistance to other incident response and security operation teams, including vulnerability assessments and intrusion detection.
Coaches, reviews and delegates work to lower level professionals.
5 Years Required; 7 Years Preferred
University (Degree), Preferred
- Physical Requirements: Sedentary Work
- University (Degree)
5 years information security experience.
Experience investigating incidents and events in AWS and Azure.
Creating security content in various cloud environments
Strong knowledge of common operating systems, with experience performing endpoint investigations and forensic examinations.
Experience with enterprise information security data management and log aggregation tools.
Experience performing root cause analysis, impact, and remediation in support of suspected intrusion or malware related incidents.
5-8 years information security experience team lead and mentoring experience is preferred.
Deep and applied technical knowledge and experience in handling security incidents, to include endpoint forensics, network forensics, malware analysis, reviewing raw log files, data correlation, and analysis of disparate data sources (i.e. firewall, network flow, IDS, system logs).
Able to proactively perform duties and responsibilities with minimal guidance.
Strong verbal and written communication skills, with equally strong multi-tasking and documentation skills.
In-depth analysis and incident response experience in AWS and Azure.
Bachelor's degree in computer science, information technology, or related field is preferred, but not required.
Industry-recognized information security certifications are preferred, but not required.
Experience creating new security alerts, reports, or other monitoring capabilities.
Experience with performing malware analysis (static properties and dynamic) and reverse engineering.
Solid experience in scripting languages such as (or similar to) Python, PERL, and Ruby.
Previous experience in other information security roles, such as penetration testing, vulnerability management, threat intelligence, content development, or risk management.
Minimum Pay: $109,300.00
The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary (https://www.tiaa.org/public/pdf/benefits-at-a-glance.pdf) .
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law here (https://www.dol.gov/general/topics/posters) .
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
For residents of California, please click here (https://www.tiaa.org/public/tiaa-nuveen-ca-privacy) to access the TIAA CA Applicant Privacy Notice.
For residents of the EU / UK, please click here (https://www.tiaa.org/public/nuveen-eu-uk-privacy) to access the EU / UK Pre-employment Notice.
For all other residents, click here (http://www.tiaa.org/public/tiaa-nuveen-privacy) to access the Applicant Privacy Notice.
TIAA started out over 100 years ago to help ensure teachers could retire with dignity. Today, many people who work at not-for-profits rely on our wide range of financial products and services to support and strengthen their financial well-being.