Sr Lead, Cyber Security Engineer

About Northern Trust :

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity.

With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

Role description

The Sr. Lead, Security Engineer plays a crucial role in ensuring the security, compliance, and resilience of cloud environments, with a focus on supporting Policy as Code (PaC) and Infrastructure as Code (IaC) practices.

This role involves implementing security controls, utilizing security tooling for Cloud Security Posture Management (CSPM), and collaborating with application developers’ security champions.

As a technical leader you will also mentor junior Engineers

Responsibilities

Design, implement and support security measures for cloud platforms (3rd Party, Open Source, native), with a specific emphasis on Azure and AWS

Develop PaC and IaC maintaining security policies and procedures aligned with industry-standard frameworks such as CIS and NIST 800-53

Utilize and Implement CSPM tools such as Wiz and Defender to continuously assess, monitor, and enforce security controls

Work closely with security champions in various business units, providing guidance and support for their specific security needs

Contribute to cloud security roadmap to further enhance cloud security practices

Conduct regular security assessments, audits, and reviews of cloud configurations

Investigate and respond to security incidents, conducting root cause analysis and implementing corrective actions

Mentor junior team members

Skills

Minimum of 3 years working in public cloud as an engineer or developer role

Minimum of 5 years working as an Engineer, Developer, or Architect in Information Technology preferably Cyber Security

Software Developer Experience (Python, GOLang, Java, etc. ) is a plus

Strong understanding of cloud security principles and the integration of security into development workflows

Experience and familiarity with at least 2-3 Cloud service provider security services of Azure (e.g., Defender for Cloud, Sentinel, Key Vault) and AWS (e.

g., Config, CloudTrail, Macie, etc.)

Strong hands-on experience codifying PaC (e.g., Rego) and using IaC provision tools (e.g., Terraform, ARM)

Familiarity with Git-based version control CICD processes and technologies (e.g., GitHub Actions, GitHub Package Repository)

Experience and familiarity with privileged access management and identity systems (e.g., Azure Entra, Okta, Ping) is a plus

Hands-on experience with integrated testing tools

Effective written and verbal communication skills to collaborate with cross-functional teams

Desired certifications such as Azure Security Engineer Associate certification, and AWS-certified security Specialty, CISSP and CCSP

Working with Us :

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at .

We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.