Lead Engineer

The Engineering job designs information systems that are appropriate for users' needs and consistent with the overall design of the organization's information systems architecture. Under limited supervision, this job is responsible for the installation, configuration and maintenance of the organization's operating systems.

Key Responsibilities and Duties

• Formulates system scope through research and fact-finding to develop or modify moderately complex information systems.
• Evaluates and implements changes to existing system logic difficulties and documentation as necessary.
• Reviews flow charts, models, and procedures and feasibility studies to design possible system solutions.
• Reviews technical documentation to guide system users and to assist with the ongoing operation, maintenance, and development of the system.
• Collaborates with system analysts, engineers, and programmers to design systems and to determine project limitations and capabilities, performance requirements, systems performance standards, and interfaces.
• Identifies and documents all system constraints, implications and consequences of various proposed system changes.
• Educates end users on system designs and functionalities through creation of training materials and conducting demos.
• Evaluates the efficiency and effectiveness of application operations and troubleshooting problems.

Educational Requirements

• University (Degree) Preferred

Work Experience

• 5+ Years Required; 7+ Years Preferred

Physical Requirements

• Physical Requirements: Sedentary Work

Career Level

8IC

Job Description

Please work with your HR and Compensation Business Partners to finalize ALL job descriptions.

TIAA Corporate Job Title: Senior Associate

TIAA Functional Title : Cloud Security Specialist

Business Area: GIS - CPM – Security Technology

To be filed out by Compensation:

Job Code:

Job Tier: Sr Associate

Job Family:

FLSA:  

Position Summary:  Describe below the primary purpose and function of this job

TIAA is a unique financial partner. With an award-winning track record for consistent performance, TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. TIAA has $1 trillion in assets under management (as of 9/30/2018) and offers a wide range of financial solutions, including investing, banking, advice and guidance, and retirement services.

The Cloud Security Specialist will be responsible for providing technical leadership to the cloud security,  engineering functions. This function is part of the Cloud Product Management team within Global Infrastructure Services.

Key Duties & Responsibilities:  List up to 5 key duties and responsibilities, management responsibilities and time spent (if applicable)

• Develop governance frameworks, guiding principles, security controls and detailed security design of solutions specific to public cloud (AWS, Azure, GCP).
• Actively assess existing cloud implementations, identify security issues and implement fixes.
• Lead security design and control implementation for container platforms including OpenShift, EKS, Kubernetes, Docker, etc.
• Lead the design effort for security solutions and champion them through the architectural portions of the SDLC process
• Serve as a security architecture subject matter expert (SME) for the firm.
• Provide engineering and architecture expertise for security tools such as PaloAlto Prisma Cloud, Tenable, Crowdstrike, F5-ASM, Akamai Kona, etc.
• Lead the design, integration, and rollout of Application Security tools into the CI/CD pipeline.
• Lead the implementation of a tools driven and automated approach to deliver key security management processes by leveraging existing toolsets.
• Strong influence and negotiating skills with the ability to overcome resistance to execute against strategic plans
• Excellent command of Cybersecurity/DevSecOps organization practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies

Management/Leadership Responsibility:  Is management of people a primary focus of the role?  If so, how many direct and indirect employees are managed?  Do any of them manage a function or process?

• Ability to lead/coach experienced technologists having diverse skills in cyber security
• Ability to mentor and guide the team members on day to day functions and career growth

Budget Responsibility: Does the position have responsibility for Revenue, Operating (expense) Budget, etc.?  If so, what is the scope?

•  NIL

Impact:

Nature of Impact - To what degree does this job affect the business (i.e., through interactions with customers, making decisions, defining or setting strategy, etc.)?

NIL

Area of Impact - What is the breadth of the impact that this job has, either positive or negative (i.e., affects own team, department, function, business unit, geography, entire business, etc.)?

 Business Unit

Problem Solving:  What is nature and complexity of the problems or decisions encountered? Are analytical skills needed?

Functional Knowledge:  What knowledge of concepts, process, principles or procedures is needed within discipline; SME?

• Experience with Information security concepts, IT Risk management principles/best practices, & assessment methodologies.

Business or Industry Expertise:  Describe the degree of knowledge and understanding required of TIAA’s business and industry, commercial environment and of competitor’s products and services.

Finance industry with experience in Cyber Techology or Cloud Security teams

Interactions / Interpersonal Skills:  Describe the nature and level of interactions this job has with others, both internally and externally.  Explain any specific interpersonal skills necessary to successfully perform this role (i.e., negotiation skills, represents business at external events or to governmental bodies, etc. ).

Job Requirements And Qualifications:  Indicate the minimum and preferred education and experience for the job and any licenses and certifications required

Required Education:

Technical

Btech, MTech, BE

Preferred Education:

Technical

• Equivalent in computer science, management information systems or     equivalent discipline from an accredited college or university

Required Experience:

5-10 years

• Information Technology experience

Preferred Experience:

1-3 years

• Minimum 2 years’ of IT Security, DEvSecOps IT Risk and/or policy compliance related experience

Skills and Abilities:

• Bachelor's degree in information security, computer science, engineering, or equivalent experience
• Minimum 7 years of IT engineering work experience, with 3+ years in Cloud Security technologies preferred
• Experience with cloud security strategy, cloud provider ecosystems in one of the cloud (Amazon AWS/ Microsoft Azure/GCP).
• Hands-on experience in Docker and Kubernetes platform services.
• Experience with cyber technologies such as Data Loss Prevention (DLP), Malware detection, User behavior analysis (UBA), and Endpoint Detection and Response (EDR) tools.
• Experience with Networking technologies, Zero trust Models and technologies will be good to have
• Experience with application security assessment tools (such as Checkmarx, BURP Enterprise, NowSecure, etc)
• Experience with risk modeling tools and methodologies; and knowledge of various architecture frameworks (e.g., TOGAF, etc.)
• Excellent communication skills, including demonstrated proficiency in clearly communicating technical concepts to non-technical audiences in business terminology.
• Experience in managing and leading technical teams
• Experience in translating business requirements into technical designs and presenting to senior level stakeholders
• Certifications such as AWS certified Security Professional, Google Certified Solution & security professional.

Required Licenses/Certifications:

Other

CISA or CRISC or CISSP or CEH