TIAA Lead Info Sec Incident Response Specialist in Helana, Montana
The TIAA Detection & Response Team is seeking an experienced security analyst to participate in the day-to-day operations of its incident response team. The incumbent will be responsible for analyzing security events, investigating potentially compromised endpoints, and driving security incidents to resolution. In addition, the incumbent will be responsible for proactively hunting and analyzing unidentified threats in the environment. Other duties will consist of operationalizing new – and tuning existing – security alerts and use cases, assisting in developing and training junior staff, and working with business partners to identify and close gaps in visibility.
Proposed Key Duties and Responsibilities
• Build and maintain operation and configuration documentation including diagrams and flow charts.
• Participate in change management activities while adhering to established environmental control processes.
• Attend daily standups, technical project meetings, and leverage team leads to maintain application and infrastructure configurations, uptimes, and metrics.
• Gather, develop, and deploy requirements both functional and technical in nature as defined by customers, stakeholders, and control owners.
• Participate in disaster recovery and on-call schedules as necessary.
• Track and remediate escalated incident tickets for supported security toolsets.
• Participate as a contributing member of initiatives and projects under the supervision of an engineering lead.
• Execute defined cloud security strategies and roadmaps as defined by senior team members.
5+ years information security experience.
Experience in handling security incidents, which may include endpoint forensics, network forensics, malware analysis, reviewing raw log files, data correlation, and analysis of disparate data sources (i.e. firewall, network flow, IDS, system logs).
5+ years information security experience team lead and mentoring experience is preferred.
In-depth analysis and incident response experience in AWS and Azure.
Bachelor's degree in computer science, information technology, or related field.
Industry-recognized information security certifications.
Experience creating new security alerts, reports, or other monitoring capabilities.
Experience with performing malware analysis (static properties and dynamic) and reverse engineering.
Previous experience in other information security roles, such as penetration testing, vulnerability management, threat intelligence, content development, or risk management.
Potential Salary: $135,000.00 USD
Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location. In addition to base salary, the competitive compensation package may include, depending on the role, participation in an incentive program linked to performance (for example, annual discretionary incentive programs, non-annual sales incentive plans, or other non-annual incentive plans).
TIAA is the leading provider of financial services in the academic, research, medical, cultural and government fields. We offer a wide range of financial solutions, including investing, banking, advice and education, and retirement services.
TIAA requires all U.S. employees to be fully vaccinated against COVID-19 and provide documentation of full vaccination, unless you qualify for an accommodation as determined by TIAA consistent with applicable law.
Benefits and Total Rewards
The organization is committed to making financial well-being possible for its clients, and is equally committed to the well-being of our associates. That’s why we offer a comprehensive Total Rewards package designed to make a positive difference in the lives of our associates and their loved ones. Our benefits include a superior retirement program and highly competitive health, wellness and work life offerings that can help you achieve and maintain your best possible physical, emotional and financial well-being. To learn more about your benefits, please review our Benefits Summary (https://www.tiaa.org/public/pdf/benefits-at-a-glance.pdf) .
We are an Equal Opportunity/Affirmative Action Employer. We consider all qualified applicants for employment regardless of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other protected status.
Read more about the Equal Opportunity Law here (https://www.dol.gov/general/topics/posters) .
TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.
If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:
Phone: (800) 842-2755
For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here (https://www.tiaa.org/public/tiaa-nuveen-privacy) .
For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here (https://www.tiaa.org/public/tiaa-nuveen-ca-privacy) .
For Applicants of Nuveen residing in Europe and APAC, please click here (https://www.tiaa.org/public/nuveen-eu-uk-privacy) .
For Applicants of Greenwood residing in Brazil (English), click here (https://www.tiaa.org/public/support/privacy/applicants-greenwood-privacy) .
For Applicants of Greenwood residing in Brazil (Portuguese), click here (https://www.tiaa.org/public/support/privacy/applicants-greenwood-portuguese-privacy) .
For Applicants of Westchester residing in Brazil (English), click here (https://www.tiaa.org/public/support/privacy/applicants-westchester-privacy) .
For Applicants of Westchester residing in Brazil (Portuguese), click here (https://www.tiaa.org/public/support/privacy/applicants-westchester-portuguese-privacy) .