Cyber Risk Associate

Associate - Infrastructure Security - IN
Professionals in this group engineer, implement and monitor security measures for the protection of physical IT systems, networks and information for the organization infrastructure.

Key Responsibilities and Duties
- They Identify and define system security requirements, networking threats, storage requirements and design computer security architecture.
- They also develop detailed cyber security designs and prepare and document standard operating procedures and protocols to maintain infrastructure security.

Educational Requirements
- University (Degree) Preferred

Work Experience
- 2+ Years Required; 3+ Years Preferred

Physical Requirements
- Physical Requirements: Sedentary Work

Career Level
6IC

**Job Description**:
Position Summary: Describe below the primary purpose and function of this job

The Infrastructure Security Analyst will support the IT Infrastructure Configuration security Assessment program for Cloud with streamlining and improving service delivery. Professionals in this group engineer, implement and monitor security measures for the protection of physical/virtual IT systems, networks and information for the organization infrastructure.

As part of the IT Infrastructure Configuration Mgmt. team, you will be responsible for:

- overseeing and maintaining the security posture of cloud environments by actively monitoring configurations, defining and assessing technology security baselines
- identifying potential vulnerabilities
- implementing security controls, and ensuring compliance with industry standards across all cloud services
- utilizing automated tools to proactively remediate issues, participating in automated assessment initiatives
- collaborate with development teams to embed security best practices throughout the cloud infrastructure.
- reporting identified technology risks, and
- supporting break remediation efforts in accordance with priorities set by the organization.

Key Duties & Responsibilities: List up to 5 key duties and responsibilities, management responsibilities and time spent (if applicable)

Mandatory Skills
- Drive IT Infrastructure Configuration assessment execution across various CLOUD technologies and platforms (e.g., Cloud - AWS/GCP/Azure, Containers, SaaS/PaaS)
- Partner with Infrastructure Manager with identifying scanning tool capabilities and provide recommendations to streamline and improve automated assessment capabilities.
- Engage with Internal Stakeholders to drive initiatives through completion.
- Analyze assessment results and coordinate with Remediation team to ensure proper closure of control gaps.
- Define Baseline technology controls based on documented IT standards and industry best practices (CIS/NIST) in partnership with various IT control partners and technology teams.
- Consult with Baseline Owners to complete technology assessment requests in a timely manner.
- Develop and maintain technology assessment capabilities by leveraging available data and automation.
- Develop, maintain, and manage tool metrics for accuracy.

Basic skills
- Strong understanding of cloud security principles and best practices across major cloud platforms (AWS, Azure, GCP)
- Expertise in vulnerability scanning tools and methodologies
- Proficiency in scripting languages (e.g., Python) for automation and data analysis
- Knowledge of security standards and compliance frameworks (e.g., NIST, CIS, ISO 27001)
- Experience with cloud security configuration management tools (e.g., Terraform, CloudFormation)
- Excellent communication and collaboration skills to work with cross-functional teams
- Cybersecurity certifications like CISSP, CISA, or AWS Certified Security Specialty are preferred
- Identify and define system security requirements, networking threats, storage requirements and design computer security architecture.
- develop detailed cyber security designs and prepare and document standard operating procedures and protocols to maintain infrastructure security.

Business or Industry Expertise: Describe the degree of knowledge and understanding required of TIAA’s business and industry, commercial environment and of competitors products and services.

5 - 10 years of relevant work experience

Job Requirements And Qualifications: Indicate the minimum and preferred education and experience for the job and any licenses and certifications required

Required Education:
BA/BS

(add “other” details here)

Preferred Education:
BA/BS

(add “other” details here)

Required Experience:
5-10 years

4 - 7 years of relevant work experience

Preferred Experience:
5-10 years

(add “other” details here)

Skills and Abilities:
**Required Skills**:

- Bachelor’s Degree
- Excellent knowledge and experience in Cloud services of AWS, Azure and GCP.
- Experience in security baseline documentation of cloud services of AWS, Azure and GCP using CIS/NIST.
- Excellent knowledge in scanning tools like Wiz, Sysdig, Tenable Nessus SC, Bigfix, Qualys