Northern Trust - Chicago, IL
posted about 2 months ago
Full-time - Principal
Chicago, IL
10,001+ employees
Real Estate
About the position
The Principal - Cyber Security Engineer: Zero Trust Management Consultant role at Northern Trust is a senior consulting position focused on implementing Zero Trust security methodologies. The consultant will work closely with application developers, network architects, and engineering teams to enhance the security of Northern Trust's and its clients' resources. This role requires a deep understanding of network security solutions and the ability to provide expert guidance in a high-stakes environment.
Responsibilities
- Review and identify gaps in existing metadata accuracy related to Zero Trust initiatives.
- Consult with data stewards to update or create processes to enhance metadata usability.
- Create Zero Trust frameworks and guidelines for architecture and engineering teams to leverage.
- Review existing network architecture to determine placement and configurations of existing controls.
- Identify ways to circumvent existing controls and recommend enhancements through configuration updates or solution placement.
- Suggest products or services to further information security objectives.
- Provide training on Zero Trust concepts and best practices to application owners, Project Managers, Security Champions, and other IT Teams.
- Participate in vendor Proof of Concepts to determine usability and interoperability with existing controls.
Requirements
- A minimum of 10+ years of experience in network security solutions consulting within a global enterprise scale organization (5,000-50,000 users).
- Considerable first-hand experience in design engineering and building resilient and scalable security solutions, ideally within finance or investment banking.
- Strong understanding of Layer 2, Layer 3 & Layer 4-7 network and security technologies, and how various solutions combine to provide a Zero Trust infrastructure.
- Knowledge of cybersecurity principles, global financial services business models, and regional compliance standards.
- Understanding of risk and compliance concepts and how to translate these into effective security solutions.
- Experience with automation and orchestration, including scripting against an API.
- Familiarity with various testing tools, networking technologies, and techniques to understand complex technical problems.
Nice-to-haves
- Expert knowledge in NGFW platforms and management tools.
- Experience with Network Access Control and Application Delivery & Load balancers.
- Knowledge of public and private cloud security.
- Experience in workflow automation, routing and switching, WAN optimization, DNS, IPAM, and DHCP.
- Familiarity with Check Point, Fortinet, Tufin, Forescout, Cisco ISE, F5, Netscaler, Infoblox, Microsoft Active Directory, CyberArk, Azure log analytics, Akamai CDN, Illumio, Zscaler, Python, PowerShell, Ansible, Terraform, Azure and AWS native firewall and load balancing.
Benefits
- Flexible and collaborative work culture.
- Opportunities for career growth and movement within the organization.
- Commitment to assisting the communities served by the company.
