at Northern Trust Company in Chicago, Illinois, United States
Job Description
About Northern Trust:
Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.
Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.
Job Description
We are seeking a highly skilled Tech lead with deeper expertise in various security products, authentication, authorization, access management, governance. As a key member of Workforce Authentication and Authorization team you lead a team to play a vital role in ensuring the secure implementation of various solutions (Hybrid and Cloud).
Requirements/Responsibilities -
- Lead Identity centric Workforce Security solutions team to develop authentication and access management solutions
- Drive the development of identity solutions , access patterns , modern security protocols , practicing Zero trust , least privileged, defense in depth principles
- Review and provide feedback on Identity and access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management
- In-depth knowledge and experience on Entra ID, EPM, Sentinel, Azure, AWS Security
- Knowledge on Okta, PingFederate, Entitlement management solutions
- Strong knowledge on Identities management on Azure AD with OAuth, OIDC, SAML, SSO, MFA, Conditional access policies, MFA, Kerberos, LDAP, Identity Federations etc.
- Experience in providing security solutions for Java based Micro services, React based frontends and Android/iOS based mobile applications on the Azure
- Hands-of experience in JWT, session handling, Code signing, Certificate authentication, TLS/SSL, API Security, Application registration, application integration scenarios etc.
- Awareness of API Management , Firewalls, DLP, VPNs, DNS, Azure Defender, MCAS, Sentinel, WAFs , Application Gateways, NSGs, App Proxy, Radius clusters, CDN etc.
- Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure smooth remediation of toxic combinations, high risk entitlements etc.
- Understanding and application of threat modeling concepts and methodologies
- Understanding of Applications security, OWASP standards, security best practices, browser compatibilities/storages/cookies
- Acts as Workforce cybersecurity expert to in solutions spanning end user computing, proxy solutions, MFA , SSO , conditional accesses , Passwordless, Yubikey, bio-metric solutions, identity and governance scenarios , Secrets Management, automation, role based access control, Privileged identity management, Just in time accesses etc.
- Participates in solutions to support- token handling , OIDC / OAuth flows , authorization patterns, identity federation , cloud architectures, cryptograpgy , cloud native services, cloud security etc.
- Deeper understanding on Cloud Security areas such as Policies, RBAC, activities, identities, privileged access management etc
- Ability to support operations in troubleshooting complex identity scenarios with hands-on experience on Sentinel/KQL/Audit logs etc.
- Good understanding of concepts related to docker Security, container orchestrations/Kubernetes
Qualifications
- Bachelor's degree in computer science...
Equal Opportunity Employer - minorities/females/veterans/individuals with disabilities/sexual orientation/gender identity
