Cloud Security Engineer

at  TIAA

This is a Non-Employee Contingent Worker Role providing services for TIAA’s family of companies and will be employed by TIAA’s preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to achieving excellent results.
This role will sit onsite, likely in a hybrid capacity, at the location(s) listed in this posting.
The anticipated term of this engagement will be 16 months. This term could be extended based on company business needs.
CW-Info Systems Engineer III
The Information Systems Engineer designs information systems that are appropriate for users’ needs and consistent with the overall design of the organization’s information systems architecture. Under limited supervision, this job is responsible for the installation, configuration and maintenance of the organization’s operating systems.

Key Responsibilities and Duties

• Formulates system scope through research and fact-finding to develop or modify moderately complex information systems.
• Evaluates and implements changes to existing system logic difficulties and documentation as necessary.
• Reviews flow charts, models, and procedures and feasibility studies to design possible system solutions.
• Maintaining relationships with stakeholders, addresses stakeholder requirements and providing clients consultations to shape the future success of EA.
• Reviews technical documentation to guide system users and to assist with the ongoing operation, maintenance, and development of the system.
• Providing EA support by directing teams in baseline, target and roadmap development, transition planning, system and security management and segment architecture.
• Collaborates with system analysts, engineers, and programmers to design systems and to determine project limitations and capabilities, performance requirements, systems performance standards, and interfaces.
• Identifies and documents all system constraints, implications and consequences of various proposed system changes.
• Educates end users on system designs and functionalities through creation of training materials and conducting demos.
• Evaluates the efficiency and effectiveness of application operations and troubleshooting problems.

Educational Requirements

• Bachelor’s Degree Required

Work Experience

• 3+ Years Required; 5+ Years Preferred

Physical Requirements

• Physical Requirements: Sedentary Work

Career Level
7IC

Role: Cloud Security Engineer (Multi-Cloud)

• Implement cloud security strategy, standards, procedures, best practices, and DevSecOps.
• Implement processes and technical controls supporting cloud security standards including integration of cloud services and workloads into corporate cybersecurity services.
• Collaborate with operations and engineering teams to implement and tune cloud-native security monitoring, tooling and reporting
• Implement CSPM tools such as wiz.io across multiple cloud platforms
• Define cloud security policies, standards, and best practices in a multi-cloud environment
• Promote awareness of corporate cybersecurity policy, standards and guidelines
• Design cloud-based network traffic flows to drive anomaly detection capability
• Mentor engineering and operations staff on unique cloud-based security controls
• Develop tools to improve cloud specific anomaly detection requirements
• Foster a culture of security by partnering with solutions architects & other business teams to balance key performance and security
• Perform regular reviews of cloud infrastructure for security, and cloud best practices.
• Develop threat models to identify risks and prioritize improvements to our architecture.
• Drive the adoption of Authentication and Authorization reference architectures for managing cloud infrastructure.
• Educate peers on applying the latest cloud native technologies when developing new services, systems and applications.
• Contribute to a secure/compliant cloud-native service catalog, repositories
• Maintain Compliance across our Production, Development and Corporate systems hosted in the public clouds
• Collaborate with engineering and operations teams toward implementing controls and processes that address identified gaps

Related Skills
Start Date: 09-Aug-2023
End Date: 31-Dec-2024
Travel Required: No
Base Pay Range: $76.23/hr. - $88.42/hr.
Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location.

Equal Opportunity
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law
here
.
Accessibility Support
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
Email:
accessibility.support@tiaa.org
Privacy Notices
For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click
here
.
For Applicants of TIAA, Nuveen and Affiliates residing in California, please click
here
.
For Applicants of Nuveen residing in Europe and APAC, please click
here
.
For Applicants of Greenwood residing in Brazil (English), click
here
.
For Applicants of Greenwood residing in Brazil (Portuguese), click
here
.
For Applicants of Westchester residing in Brazil (English), click
here
.
For Applicants of Westchester residing in Brazil (Portuguese), click
here

Key Responsibilities and Duties

• Formulates system scope through research and fact-finding to develop or modify moderately complex information systems.
• Evaluates and implements changes to existing system logic difficulties and documentation as necessary.
• Reviews flow charts, models, and procedures and feasibility studies to design possible system solutions.
• Maintaining relationships with stakeholders, addresses stakeholder requirements and providing clients consultations to shape the future success of EA.
• Reviews technical documentation to guide system users and to assist with the ongoing operation, maintenance, and development of the system.
• Providing EA support by directing teams in baseline, target and roadmap development, transition planning, system and security management and segment architecture.
• Collaborates with system analysts, engineers, and programmers to design systems and to determine project limitations and capabilities, performance requirements, systems performance standards, and interfaces.
• Identifies and documents all system constraints, implications and consequences of various proposed system changes.
• Educates end users on system designs and functionalities through creation of training materials and conducting demos.
• Evaluates the efficiency and effectiveness of application operations and troubleshooting problems

Role: Cloud Security Engineer (Multi-Cloud)

• Implement cloud security strategy, standards, procedures, best practices, and DevSecOps.
• Implement processes and technical controls supporting cloud security standards including integration of cloud services and workloads into corporate cybersecurity services.
• Collaborate with operations and engineering teams to implement and tune cloud-native security monitoring, tooling and reporting
• Implement CSPM tools such as wiz.io across multiple cloud platforms
• Define cloud security policies, standards, and best practices in a multi-cloud environment
• Promote awareness of corporate cybersecurity policy, standards and guidelines
• Design cloud-based network traffic flows to drive anomaly detection capability
• Mentor engineering and operations staff on unique cloud-based security controls
• Develop tools to improve cloud specific anomaly detection requirements
• Foster a culture of security by partnering with solutions architects & other business teams to balance key performance and security
• Perform regular reviews of cloud infrastructure for security, and cloud best practices.
• Develop threat models to identify risks and prioritize improvements to our architecture.
• Drive the adoption of Authentication and Authorization reference architectures for managing cloud infrastructure.
• Educate peers on applying the latest cloud native technologies when developing new services, systems and applications.
• Contribute to a secure/compliant cloud-native service catalog, repositories
• Maintain Compliance across our Production, Development and Corporate systems hosted in the public clouds
• Collaborate with engineering and operations teams toward implementing controls and processes that address identified gap