at Northern Trust Company in Chicago, Illinois, United States
Job Description
About Northern Trust:
Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.
Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.
Description -
- Guides the development, specification and communication of application or infrastructure architectures used by multiple business or application systems.
- Provides extensive, in-depth, technical consultation to the clients, partners, and IT Management to develop plans and directions to assure the integration of corporate business area requirements.
- Acts as cybersecurity expert for cloud migration projects/programs
- Leads various Security initiatives
- Thoroughly understands decision process issues of technology choice, such as design, data security, client server communication, etc.
- Partner with Management in the building of new and on-going vendor relationships
- Evaluates and selects from existing and emerging technologies those options best fitting business/project needs
- Promotes sharing of expertise through consulting, presentations, and documentations, etc.
- Experienced, functional expert with technical and/or business knowledge and functional expertise
- Carries out complex initiatives involving multiple disciplines and/or ambiguous projects
- Displays a balanced, cross-functional perspective, liaising with the business to help improve efficiency, effectiveness, and productivity
- Strategic in developing, implementing, and administering programs within functional areas
- Provides guidance to team members, fostering an environment that encourages employee participation, teamwork, and communication
Qualifications -
- Bachelor's degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience.
- Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies.
- Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff.
- Five years of experience in the Information Security role. Three years of experience with cloud and/or technologies
- CISSP, CSSP, or Cloud security certification preferred
- Strong collaboration skills and a analytical ability
Requirements/Responsibilities-
- Good understanding of various cybersecurity frameworks, standards, and SSDLC
- In-depth knowledge related to threats modeling and relevant frameworks. Hands-on experience with threat modeling process and tools
- Proficiency in threat modeling methodologies (e.g., STRIDE, DREAD, PASTA) and tools (e.g., Microsoft Threat Modeling Tool, OWASP Threat Dragon).
- Experience working with tools related to Threat hunting, data protection, Security Posture Management, and Attack surface management.
- Ability to establish security patterns related to cloud/ hybrid architecture and work with various tech teams to assist with the implementation as needed
- Knowledge related to WAF, App Proxy, and CDN
- Past experience in SAST, DAST, open source scanning and penetration testing is...
Equal Opportunity Employer - minorities/females/veterans/individuals with disabilities/sexual orientation/gender identity
