Principal – Cyber Security Engineer: Zero Trust Management Consultant - Northern Trust : Job Details

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.

Principal – Cyber Security Engineer: Zero Trust Management Consultant

Description of role and key responsibilities:

Reporting to the Sr. Director of Cyber Security, the Zero Trust Management Consultant is seen as a Subject Matter Expert in Zero Trust networking security. This is a consultation role with a primary focus of consulting with application developers, network architects, and engineering teams to better secure Northern Trust's and their client's resources by leveraging Zero Trust methodologies.

You will have experience working in a high impact, mission critical environments, where service matters, and exceeding expectations is the norm. You have a history of success, thrive in critical problem solving, and enjoy providing Subject Matter Expertise (SME) to teams working on critical projects.

Key responsibilities:

• Review and identify gaps in existing metadata accuracy as it relates to Zero Trust initiatives.
• Consult with data stewards to update or create processes to enhance metadata usability.
• Create Zero Trust frameworks and guidelines for architecture and engineering teams to leverage.
• Review existing network architecture to:
  • Determine placement and configurations of existing controls
  • Identify ways to circumvent existing controls
  • Recommend ways to enhance existing controls by way of configuration updates or solution placement.
• Suggest products or services to further information security objectives.
• Provide training on Zero Trust concepts and best practices to application owners, Project Managers, Security Champions, and other IT Teams.
• Participate in vendor Proof of Concepts for the purpose of determining usability and interoperability with existing controls.

Core Skills & Experience:

• A minimum 10+ years of experience of network security solutions consulting within a global enterprise scale organization (5,000-50,000 users) with both traditional datacenters and Cloud.
• Considerable first-hand experience of design engineering and building resilient and scalable security solutions, ideally within finance or investment banking.
• Strong understanding of Layer 2, Layer 3 & Layer 4-7 network and security technologies, and how various solutions combine to provide a Zero Trust infrastructure.
• Cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws.
• The concepts of risk and compliance and how to translate these into effective security solutions.
• Appreciation of automation and orchestration and will have experience of scripting against an API.
• Familiar with a variety of testing tools, networking technologies and techniques to enable an understanding of complex technical problems associated with the service, application and network hardware and software.

Technical Skills & Experience:

You will have expert knowledge and experience in several of the following areas and how they contribute to a Zero Trust Network Security framework:

• NGFW platforms and management tools
• Network Access Control
• Application Delivery & Load balancers
• Public and Private cloud security
• Workflow automation
• Routing and switching
• WAN Optimization
• DNS, IPAM and DHCP

It is desirable and advantageous to also have knowledge and experience of the following technology platforms:

• Check Point, Fortinet, Tufin
• Forescout, Cisco ISE
• F5, Netscaler
• Infoblox
• Microsoft Active Directory, CyberArk
• Azure log analytics
• Akamai CDN
• Illumio
• Zscaler
• Python, PowerShell
• Ansible, Terraform
• Azure and AWS native firewall and load balancing

Technical Certification:

It is desirable and advantageous to have certification or demonstrable working experience with the following:

• Check Point
• Zscaler
• F5
• Illumio
• CISSP
• CCSK
• ITILv3 foundation or higher

• Highly organized and have proven ability to operate well under pressure, working to tight deadlines
• Good problem management and customer service skills.
• A positive attitude and be capable of remaining positive even when under immense pressure.
• Able to work with global teams to deliver projects, often at pace and under challenging circumstances.
• High professional standards, who never accepts the status-quo; who challenges why things are done the way they are.
• Strong communicator, both written and verbal
• Discourages hero culture and ensures the team always comes before the individual, while ensuring the welfare of staff at all times.
• Acts with integrity and embraces the philosophy of treating our customers fairly (compulsory)
• Embraces the philosophy and principles of group IT
• Understands and applies Northern Trust's working practices, policies and procedures