This is a Non-Employee Contingent Worker Role providing services for TIAA’s family of companies and will be employed by TIAA's preferred 3rd Party Supplier. As a Non-Employee CW, perform a variety of moderately complex business planning, support, and project-related duties. Demonstrates an exceptional standard of quality and holds themselves accountable to achieving excellent results.

This role will sit onsite, likely in a hybrid capacity, at the location(s) listed in this posting.

The anticipated term of this engagement will be 11 months. This term could be extended based on company business needs.

Sr Info Sec Threat Hunting Specialist
The Information Security Threat Hunting Specialist determines and reports threats or hidden events within the enterprise network. Under limited supervision, this job uses defensive measures and information collected from a variety of sources to protect the company's data, information systems and networks. This job also works to improve the existing protection systems by continually monitoring both the internal control environment and the external threat environment. This specialist will identify potential data leaks and determine if an incident constitutes a violation of policies and standards.

Key Responsibilities and Duties

Determines potential threats, anomalous or malicious activities to network resources by examining and analyzing network traffic.
Reviews and conducts cost/benefit evaluation of cloud solutions compared to virtual private networks, dedicated hosting, and in-house solutions.
Determines the technical feasibility of adopting external cloud based IT platform and infrastructure services within the organization.
Leads the identification of portions of the organization's IT platform/infrastructure with the highest potential return for cloud deployment.
Implements the organization's global strategies and initiatives to enhance Information Technology plans, operations and procedures.
Verifies Intrusion Detection System (IDS) alerts as they occur.
Researches and analyzes various source data sets and identified malicious activities to analyze the root cause and network weaknesses.
Discovers current weaknesses and exploitation methods, along with the residual effects on IT systems and information through root-cause analysis.
Reviews reports and documents regarding security incidents details and outcomes.
Participates in troubleshooting problems and recommending vulnerability conditions.
Partners with security architecture, network engineering and desktop delivery on implementing and improving security controls.
Monitors internal and external threat environments on a continual basis to best protect the organization's assets.

Educational Requirements

University (Degree) Preferred

Work Experience

3+ Years Required; 5+ Years Preferred

Physical Requirements

Physical Requirements: Sedentary Work

Career Level
7IC

Sr. Cyber Threat Intelligence Analyst (Technical)

TIAA has an opportunity for a Sr. Cyber Threat Intelligence Analyst. The analyst who is hired into this role will manage the cyber threats specific to financial services such as banking, capital markets, and insurance and would need to have considerable experience in at least one of these industries.

We are seeking a candidate who will utilize their knowledge, skills, and abilities to identify, analyze and mitigate cyber threats that impact TIAA. This role will require you to create Threat Intelligence reports to share with relevant stakeholders and senior leadership. This role will conduct research, analyze, and report on cyber defense, technology, cyber threat actors and groups, and related political and economic conditions. In addition, this role will collaborate with both industry specialists and peer analysts, develop, and maintain both short- and long-term research projects, create completed intelligence for tactical and executive audiences, and present the findings through briefings and external engagements.

Key Responsibilities and Duties

Discover, identify, and report regularly on significant cyber threats and risks to businesses, governments, and other organizations presented by cyber threat actors and groups originating in global regions.
Knowledge of zero-day vulnerabilities and writing a report for vulnerabilities along with mitigations/ remediations.
Develop and produce intelligence reports focused on intricate fraud events, threats and trends.
Research and analyze cyber-threat actors, groups, and events to report on threatening tactics, techniques, and procedures (TTPs), behaviors, motivations, sponsorship, and influencing factors.
Develop and produce strategic intelligence reports focused on industry-level analysis of developing cybersecurity threats, complex geopolitical events, conditions, impacts and trends.
Participate in the drafting and dissemination of finished tactical and operational threat intelligence products (reports, briefings, etc.).
Analyzing the likelihood that an emerging threat will impact the organization and identify gaps of weaknesses.
Provide requirements to influence threat mitigation strategies.
Develop documentation in support of response processes and/or procedures.
Manage intelligence/data from vendor, consortium, and law enforcement partners to be consumed for intelligence development.
Analyze internal risk and security controls to identify existing weaknesses.
Consolidate cyber threat intelligence feeds and sources.
Provide threat intelligence support to cybersecurity teams during security incidents.
Maintain, develop, and continuously evaluate cyber threat intelligence sources to increase effectiveness and timeliness of creating actionable threat assessments.
Respond to client requests for information (RFIs) and participate in the drafting and production of company threat assessments.
Engage and develop relationships with peers among TIAA to determine client and industry intelligence requirements, reporting use cases, and feedback on intel products.
Interact with (verbal and written) with executives and stakeholders in non-technical terms while accurately encompassing risk, impact, likelihood, containment remediation activities, and threat actor techniques, tactics, and procedures.
Monitor and analyze the ever-changing cyber threat landscape.
Basic knowledge of SIEM (Security Information and Event Management) tools.
Ability to run IOCs (Indicators of Compromise) within SIEM platforms for threat detection and investigation.
Familiarity with APIs for data integration and automation.
Experience working with Python, Docker containers, and cron jobs.
Strong knowledge of the cyber threat landscape and OSINT techniques.
Proficiency in using MITRE ATT&CK, Diamond Model, and Cyber Kill Chain
This position will require weekend shift once quarterly.

Start Date: 06-Oct-2025

End Date: 30-Sep-2026

Travel Required: Yes

Anticipated Posting End Date:

2025-09-05

Base Pay Range: $43.75/hr - $53.37/hr

Actual base salary may vary based upon, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location.

_____________________________________________________________________________________________________

Equal Opportunity

We are an Equal Opportunity Employer. TIAA does not discriminate against any candidate or employee on the basis of age, race, color, national origin, sex, religion, veteran status, disability, sexual orientation, gender identity, or any other legally protected status.

Read more about your rights and view government notices here.

Accessibility Support

TIAA offers support for those who need assistance with our online application process to provide an equal employment opportunity to all job seekers, including individuals with disabilities.

If you are a U.S. applicant and desire a reasonable accommodation to complete a job application please use one of the below options to contact our accessibility support team:

Phone: (800) 842-2755

Email: accessibility.support@tiaa.org

Privacy Notices

For Applicants of TIAA, Nuveen and Affiliates residing in US (other than California), click here.

For Applicants of TIAA, Nuveen and Affiliates residing in California, please click here.

For Applicants of TIAA Global Capabilities, click here.

For Applicants of Nuveen residing in Europe and APAC, please click here.