TIAA Sr Info Security Analyst - Audit & Compliance Support in Charlotte, North Carolina
As long as there are people who make the world a better place, we'll keep making a difference for them. Since 1918, it has been TIAA's mission to serve those who serve others. It is this mission and the values we embrace that make us a different kind of financial services organization.
When you work here at TIAA, you're not just in it for yourself. You are part of something bigger. A collective mission to make a difference - a collective mission we make our own.
To be difference makers.
For more information about TIAA, visit our website at https://www.tiaa-cref.org/public/about-us/who-we-are-at-tiaa-cref .
This position will support the execution of the IT Regulatory Engagement Service Offering, which is responsible for acting as a central point of contact for IT regulatory related activities and Cybersecurity internal and external audit activities. The primary responsibility will be reviewing common audit and regulatory requests and working with Cybersecurity SMEs and technology to enhance the artifact gathering process. This includes creating a repository for commonly requested documents and automating or creating re-usable reports for the most commonly requested artifacts.
KEY RESPONSIBILITIES AND DUTIES:
Assist with identification of most commonly requested IT regulatory and Cybersecurity audit artifacts. Assist with creating the strategy for gathering these artifacts more efficiently and implement the strategy. Support coordination of Cybersecurity audit requests and state and federal regulatory compliance related activity involving Information Technology (regulatory examinations, related preparations, etc.) as needed.
At least 3 years of experience working within the Information Security / Cybersecurity or Information Technology fields, or auditing those areas.
Experience with at least one of the following areas: security administration and access management, networks, computer and data breach incident management, data protection and security, third party supplier/vendor management, secure software development, technology policies and standards, IT risk management and controls, or technology operations and compliance.
Experience with Federal Financial Institutions Examination Council (FFIEC) guidance, GLBA, Sarbanes-Oxley, FINRA and other relevant laws and regulations, as well as knowledge of and experience with industry-recognized information security-related standards such as ISO2700x, NIST, COBIT, PCI-DSS.
Experience managing projects or managing multiple tasks is required.
Proficiency with Microsoft Office (MS Excel, MS PowerPoint, etc.).
Strong business relationship management, risk tracking, and business-focused risk remediation guidance are required.
Working knowledge of common TIAA Cybersecurity systems, technologies, procedures and processes.
Working knowledge of TIAA IT Policy and Standards.
Experience supporting or conducting Cybersecurity or Information Technology audits, or supporting regulatory requirements and examinations, especially in the financial industry.
CISA, CISSP, CRISC certifications a plus, as is PMP. Other desired competencies include organizational and writing skills, ability to influence and a problem solving / analytical approach.
Equal Employment Opportunity is not just the law, it’s our commitment. Read more about the Equal Employment Opportunity Law at http://www1.eeoc.gov/employers/upload/eeocselfprint_poster.pdf .
If you need assistance applying due to being visually or hearing impaired, please email Careers Help .
This organization is an equal employment opportunity (EEO) employer, dedicated to maintaining a work environment free of bias, harassment, discrimination and retaliation. As an EEO employer, this organization expressly prohibits discrimination, harassment, and retaliation on the basis of race, creed, ethnicity, color, age, religion, sex, sex stereotype, pregnancy (including childbirth, breastfeeding or related medical conditions where applicable), sexual orientation, gender, gender identity, gender expression, transgender, marital status, national origin, ancestry, physical or mental disability, requesting a reasonable accommodation based on mental or physical disability, medical condition (as defined by applicable law), genetic history and information, citizenship status, military or veteran status, or any other status protected by federal, state, or local law or ordinance or regulation (collectively referred to here as “protected characteristics”).
- ©2016 Teachers Insurance and Annuity Association of America (TIAA), 730 Third Avenue, New York, NY 10017
Job: Information Technology
Primary Location: NC-Charlotte
Req ID: 1714654