Overview
On Site
Full Time
Skills
Information Security
Cyber Security
Organizational Skills
Risk Assessment
Incident Management
Effective Communication
Risk Management
Artificial Intelligence
Critical Thinking
Collaboration
Integrated Circuit
Internal Communications
IC
SAP BASIS
Job Details
TIAA is seeking a Senior Third-Party Cyber Risk Analyst to support their Enterprise Cybersecurity program. This role will conduct third party risk assessments covering cyber security, identify information security risks, document issues, identify remediation action plans, and collaborate with internal partners and third parties to drive cyber risk from the firm.
This role will be a key member of our Governance & Risk organization within our Cybersecurity team. The ideal candidate will have Cybersecurity experience, possess an in-depth understanding of Third-Party Cyber Risk Management practices and experience performing third party risk assessments. This role requires communications skills, both oral and written, with interpersonal, team and organizational skills.
Key Responsibilities and Duties
Educational Requirements
Work Experience
Physical Requirements
Career Level
7IC
We are an Equal Opportunity Employer. TIAA does not discriminate against any candidate or employee on the basis of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other legally protected status.
Read more about your rights and view government notices .
This role will be a key member of our Governance & Risk organization within our Cybersecurity team. The ideal candidate will have Cybersecurity experience, possess an in-depth understanding of Third-Party Cyber Risk Management practices and experience performing third party risk assessments. This role requires communications skills, both oral and written, with interpersonal, team and organizational skills.
Key Responsibilities and Duties
- Conduct 3rd Party Cyber Risk Assessments to ensure our vendor's security policies and controls are aligned to TIAA standards.
- Identify gaps through the assessment, recommend mitigation strategies, Document issues in the Issue Management System, and drive mitigation efforts in collaboration with the internal and external partners.
- Develop and maintain effective relationships and demonstrate effective communication skills to collaborate with representatives of the Lines- of-Business, technology areas, risk partners, and vendors in performing their role.
- Contribute to our efforts to transform the Third-Party Cyber Risk Management program leveraging AI and technical capabilities to reduce risk across our Third-Party ecosystem.
- Apply critical thinking to situations where incomplete / imperfect information is available.
- Collaborate with security teams to investigate and respond to security incidents that may impact our vendor ecosystem.
Educational Requirements
- University (Degree) Preferred
Work Experience
- 3+ Years Required; 5+ Years Preferred
Physical Requirements
- Physical Requirements: Sedentary Work
Career Level
7IC
We are an Equal Opportunity Employer. TIAA does not discriminate against any candidate or employee on the basis of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other legally protected status.
Read more about your rights and view government notices .
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.