TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.
TIAA is a seeking a Cybersecurity Cloud Engineer/Architect to develop and secure our Cloud-based solutions and function overall as a technical security leader for traditional (i.e. on-premises) and evolving (i.e. cloud-based) security architecture and engineering. This position will directly contribute to the overall cloud architecture and engineering solutions, guiding the development of strategic and tactical security architecture efforts, designing and driving implementations to completion, and serve as subject matter expertise with the security vision and strategy around migration of cloud-based applications, across all types including Infrastructure, Platform, and Software as a Service (IaaS/PaaS/SaaS) and mobile. In this role, you will be designing and securing cloud products, recommending tools and capabilities based on emerging technologies in alignment with our technology and solutions on premise, Cloud-based, and hybrid resources. The Cloud Security Engineer/Architect will work with our business partners to ensure security, compliance, and standards of the cloud environment are met and provide technical knowledge of the security practices of key public cloud offerings to establish secure design patterns, and to architect integrations with our existing security policies.
This role reports directly to the Head of Cybersecurity Technology and requires a subject matter expert multifaceted information security experience, including deep technical knowledge on Cloud Technology. The role serves as a technical lead on best practices on Cloud controls covering required compliance requirements. The leader must be technical and collaborative with an ability to influence technology leaders to improve the security posture of this organization.
**KEY RESPONSIBILITIESAND DUTIES:**
+ Create a relevant strategy, roadmap and visionin Private and Public Cloud Development to support of the CybersecurityTechnology area
+ Provide high-level technical oversight for theimplementation and operation of Cloud technology strategy, security tools,technologies and
+ Experience with securing cloud-basedsolutions.
+ Possess deep and understanding of public clouddelivery models and infrastructure, e.g. Infrastructure as a Service (IaaS),Platform as a Service (PaaS), and Software as a Service (SaaS).
+ Experience implementing information securityand privacy controls in the cloud environment.
+ Experience with security management working inhybrid environment with applications being hosted internally and on cloudplatforms (Azure, AWS or Google).
+ Demonstrated experience in the evaluation,selection and decision making as it relates to cloud based security controls
+ Provide guidance and expertise for the designand deployment of security framework in new, legacy, and in environmentsundergoing transitions / upgrades
+ Perform security research on the latest new cloudsecurity solutions and technologies
+ Partner with other Cybersecurity leaders andbusiness partners to drive widespread adoption of best in class securitypractices
+ Work collaboratively and effectively withpeers, management and leadership teams
+ Act with a sense of urgency when securityissues or requirements arise
+ Partner with key IT service providers toensure industry standard platform, network and endpoint security posture
+ Recruit, retain, and develop highly qualifiedCybersecurity professionals
+ A minimum of a Bachelor's Degree in InformationSystems, Computer Science, Engineering.
+ 10 or more years' experience with at least twoof the following disciplines: security technologies, security operations,network architecture, security architecture, authentication platforms, andindustry standard frameworks
+ 3 or more years of experience with public andprivate cloud technology.
+ 1+ year working on Cloud Provider Service(AWS, GCP, Azure, other) related projects
+ 3 or more years of experience in cloud-baseddevelopment
+ 5 or more years of related experienceincluding software installation and maintenance experience
+ 5 or more years of direct people managementexperience as a leader in the Cyber Security space.
+ Experience in cloud delivery, security anddeployment models for Infrastructure as a Service (IaaS), Platform as a Service(PaaS), and Software as a Service (SaaS) offerings
+ Experience architecting, developing and maintainingcomprehensive security solutions for Cloud hosting environmentsTechnical knowledge in some ofthe following domains in a cloud or on-premise context routing/switching,stateful or next gen firewalls (NGFW), distributed denial of service (DDoS) mitigation,web application firewalls, intrusion detection / prevention systems (IDS/IPS),network segregation, security information and event management (SIEM),deceptive technologies, and other threat and vulnerability managementcapabilities
+ Experience delivering solutions in a hybridcloud environment that spans public clouds and on-premises data centers tovirtualize infrastructure and environments
+ Define strategiesand develop tooling for configuration management, containerization, and buildautomation
+ Experience with container strategies andorchestration (Docker and Kubernetes)
+ Experience with automation technologies tobuild, deploy and integrate both infrastructure and applications (e.g.,Terraform, Ansible)
_Equal Employment Opportunity is not just the law, it's our commitment. Read more about the._
_If you need assistance applying due to being visually or hearing impaired, please email._
_We are an Equal Opportunity/Affirmative Action Employer. We will consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other legally protected status._
+ **Requisition ID: 1720392**
**Post Date:** Jul 09, 2019 Associated topics: forensic, identity, identity access management, iam, information technology security, malicious, phish, protect, security officer, violation
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.