Job Cart (0)



Stay connected

Help us get to know you. We’ll provide you with recent TIAA news and also notify you when jobs that match your interests become available.

Sign Up

Lead Firewall Architect

Job ID: 1710086
Category: Information Technology
Location: Charlotte, NC
Broomfield, CO
Post Date: September 18, 2017


Since 1918, it has been TIAA’s mission to serve, our ability to perform and the values we embrace that make us a different kind of financial services organization. We’re dedicated to serving the financial needs of those in the academic, medical, cultural, governmental and research fields, and committed to helping make lifetime financial well-being possible for them.

By building a culture that allows all employees to contribute their unique talents and skills, we’re able to provide our customers with fresh ideas and distinct perspectives to help them achieve their goals. We believe a diverse and inclusive workforce is one of our greatest strengths and a key measure of our success*.

For more information about TIAA, visit our website.


TIAA’s Production Services & Architecture (PS&A) team is responsible for all architecture, engineering and infrastructure operations of our core technology assets as part of a streamlined, strategic approach that ensures low cost, high quality delivery from initial architectural decisions through engineering to long-term operational support.The PS&A team collaborates closely with our business-aligned partners in technology and with key stakeholders across the enterprise.
As a Lead Network Engineer you will participate in leading the architecture and engineering of TIAA’s enterprise security environment. In this role you will assume a lead role in leveraging applicable best practices for security design and enterprise business solutions. This role will be responsible for periodic on-call support in a 24/7 environment for complex production impacting technical issues. You will be accountable for leading problem management and resolution in the support of deployed technology and will acts as a subject matter expert on high severity production issues.


  • Generate conceptual, logical, and physical security architectures, documents, testing analyses, test plans, and risk assessments to ensure sound architecture that meets client needs
  • Implement defense-in-depth methodology for all new systems & services: defining the “depth” metric required for given systems to meet requirements
  • Work with various vendor solutions and design new security solutions that integrate with new and existing client environments
  • Use proven technologies to develop solution sets that expand services across the client base
  • Conduct network assessments that validate enterprise baselines and provide context for future network direction
  • Identify, evaluate, and design future security products based on business demands and technology direction
  • Integrate security architectures with cloud services vendors
  • Work with outsourced vendors to drive sound architectures, engineering designs, and configuration templates and drive technical accountability for network standards, baselines, architecture, and solutions engineering
  • Monitor trends and recommend future architecture strategies and roadmaps
  • Educate and mentor technology support staff as needed, including requisite training on technology and governance research
  • Stay current on infrastructure networking security best practices


Required Experience
  • Seven or more years of networking and firewall related experience
  • Palo Alto ACE Certification or equivalent experience preferred
  • Experience with Palo Alto and Cisco ASA platforms
  • Experience with layer 2 and layer 3 firewalls
  • General understanding of switching, virtual LAN switching, L2 bridging and STP, TCP/IP, OSPF, BGP, Cisco Nexus
  • Experience in a lead technical role and/or supervising a technology preferred
  • Prior experience participating in technology governance boards or councils preferred
  • Bachelor’s degree in Computer Engineering or a related field preferred

Equal Employment Opportunity is not just the law, it’s our commitment. Read more about the Equal Employment Opportunity Law.

If you need assistance applying due to being visually or hearing impaired, please email Careers Help.

This organization is an equal employment opportunity (EEO) employer, dedicated to maintaining a work environment free of bias, harassment, discrimination and retaliation. As an EEO employer, this organization expressly prohibits discrimination, harassment, and retaliation on the basis of race, creed, ethnicity, color, age, religion, sex, sex stereotype, pregnancy (including childbirth, breastfeeding or related medical conditions where applicable), sexual orientation, gender, gender identity, gender expression, transgender, marital status, national origin, ancestry, physical or mental disability, requesting a reasonable accommodation based on mental or physical disability, medical condition (as defined by applicable law), genetic history and information, citizenship status, military or veteran status, or any other status protected by federal, state, or local law or ordinance or regulation (collectively referred to here as ‘protected characteristics’).

*©2016 Teachers Insurance and Annuity Association of America (TIAA), 730 Third Avenue, New York, NY 10017