Mover and Shaker: Julie Moog, Director, Business Information Security Office, TIAA-CREF

Although situations at work will arise where there may not be a clearly defined solution, you can succeed if you do your homework and surround yourself with others who can help you. Julie Moog, TIAA-CREF, learned this advice while progressing in her career. “You have to be willing to take on big unknowns and new opportunities. If you face challenges head on and come to the table prepared, you will come out on top.”

Moog began her career as an intern with Ernst and Young’s technology risk services department, which then translated into her first full-time role post-graduation. She spent the next five years there handling a myriad of responsibilities from internal audit to regulatory compliance to vendor management for several financial services firms. The work often had to be completed quickly and under pressure since she was with the clients for a brief amount of time. “I loved being a consultant because it gave me deep insight into the financial services sector and provided an excellent base from which to launch my career. You have to be a problem solver with quick turnarounds but high-quality work,” Moog says.

Her decision to leave EY presented her with an important learning moment. Leaving a first job that had been such a positive experience is always challenging because it is all that you know. “You may waver over whether you are making the right choice,” she says, “but in hindsight it was the best thing that I could have done.”

Moog then became an information risk manager within the investment bank side of JP Morgan Chase, supporting emerging markets for the Americas. The new role entailed frequent travel to South America and fascinating new learning experiences dealing with international regulators and requirements.

She was given the opportunity to oversee a strategic front office application that the firm was deploying across their fixed income, currencies and commodities platforms. She helped design and implement the controls, before walking international regulators through the control suite that they had developed. Moog then moved into the corporate risk management team where she was the global lead of application assessment services, rolling out solutions firm-wide.

Tackling New Challenges

From there she went to work at TIAA-CREF within the IT risk management team. She created the BISO (Banking Information Security Office) organization, acting as a liaison between information security and both technology and business partners. The goal of the BISO is to work with senior technology leaders and their business partners to understand risk and cybersecurity topics, from regulatory requirements to the types of services provided by the greater team.

This past December, Moog was promoted to the Information Security Officer for TIAA-CREF’s Trust Company in addition to continuing to head the IT BISO organization. “It’s a great opportunity and challenge that I’m looking forward to,” she says, adding that although she had been in the risk space and security officer role for many years, she never had this level of responsibility. Moog is responsible for the strategic direction of the entire program and reports to the board of directors. “I’ve worked closely in the past with the CIO and CTO but I have never shared in the boardroom on a day-to-day basis. This elevated level of responsibility is an exciting new phase for my career.”

Mentoring and Sponsorship

Although she hasn’t had a formal sponsorship arrangement, Moog has benefitted from informal relationships over the years, starting at EY where there was a strong community of women in all different phases of their careers. “I continue to leverage that network in seeking advice on career and personal choices,” she says adding, “You have to view any mentoring or networking relationship as a two-way street.”

To create a strong community in her current role, Moog and her co-chair launched TIAA-CREF’s Information Security Women’s Leadership Group in 2015. The group’s objective is to build strong women leaders within the cybersecurity team. The group offers education and training, community outreach and networking opportunities. “We wanted a way to engage with each other since we’re in different locations,” she says.

The group has had a successful first year, focusing on both technical hard skills and soft skills for employees, as well as planning a variety of events that are open to everyone in the company. In addition, they organized a Cyber School Challenge for 600 students in the Charlotte area that discussed cyber bullying and issues around creating a positive digital footprint – a program which they intend to expand this year.

Balancing Career and Home Successfully

While there were many moms who worked in the community where she grew up, her own mom stayed at home while Moog and her siblings were in school. When Moog entered the workforce as an intern, she remembers noticing the women who held the title of partners. “Something clicked in me, because I had never really thought about where my career could take me. It was eye-opening to get that long-term perspective that women can succeed in both their personal and professional lives.”

Moog’s father was the primary breadwinner, but she recalls that he was still present in their lives, prioritizing the importance of being home for dinner and coaching teams for her and her siblings. “His work/life balance and work ethic both really stood out to me. He excelled professionally and maintained a high-quality, ethical career path and choices, but was still present in our lives,” Moog says.

As she is newly establishing her family, she strives to emulate his path. “Your career is important but family always comes first and in our fast paced, 24/7 society you can sometimes lose sight of that.” Outside of work, Moog has one focus – her son William who is 18 months. “My husband and I are consumed, and we love every second of it.”