Principal, Security Architecture
Northern Trust
- Chicago, IL
- Permanent
- Full-time
- Guides the development, specification and communication of application or infrastructure architectures used by multiple business or application systems.
- Provides extensive, in-depth, technical consultation to the clients, partners, and IT Management to develop plans and directions to assure the integration of corporate business area requirements.
- Acts as cybersecurity expert for cloud migration projects/programs
- Thoroughly understands decision process issues of technology choice, such as design, data security, client server communication, etc.
- Partner with Management in the building of new and on-going vendor relationships
- Evaluates and selects from existing and emerging technologies those options best fitting business/project needs
- Promotes sharing of expertise through consulting, presentations, and documentations, etc.
- Experienced, functional expert with technical and/or business knowledge and functional expertise
- Carries out complex initiatives involving multiple disciplines and/or ambiguous projects
- Displays a balanced, cross-functional perspective, liaising with the business to help improve efficiency, effectiveness, and productivity
- Strategic in developing, implementing, and administering programs within functional areas
- Provides guidance to team members, fostering an environment that encourages employee participation, teamwork, and communication
- Bachelor's degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience.
- Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies.
- Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff.
- Five years of experience in the Information Security role. Three years of experience with cloud and/or technologies
- CISSP, CSSP, CCNP/CCIE Security, or Cloud security certification preferred
- Strong collaboration skills and a analytical ability
- In-depth knowledge of various cybersecurity frameworks, standards, and SSDLC
- Experience working with tools related to Privilege access management, Threat hunting, data protection, encryption, Authentication/Authorization, Vulnerability management systems, Cloud Security Posture Management.
- Hands on experience working with IPS/IDS, Network load balancer, next generation firewalls, Z-Scaler, and networking technologies
- Experience in securing the cloud networking and hybrid configurations
- Experience working with Microsoft Azure, AWS, hybrid, and multi-cloud systems
- Knowledge related to WAF, App Proxy, and CDN
- In-depth understanding related to SEIM and strong experience related to Microsoft Defender, Entra, KQL, APIM, endpoint protection, scripting, CoPilot
- Hands on experience with various operating systems including Windows, Linux, Unix, and MAC
- Ability to establish security patterns related to cloud/ hybrid architecture and work with various tech teams to assist with the implementation as needed
- Very good understanding of zero-trust architecture and working experience with relevant tools/technologies
- Knowledge related AI/ML, DevSecOps, CI/CD Pipeline, IaC, and relevant tools
- Very good understanding of concepts related to docker, container, serverless computing, and Kubernetes
- Experience working with teams that handle infrastructure components including Storage systems, directory services, and virtualization
- Must be able to represent the team in technical discussions and drive towards deliverables with minimal guidance