Chief Security Architect

Chief Security Architect

Position Summary

Northern Trust is hiring a Chief Security Architect to be a member of the Enterprise Architecture (EA) team. EA is responsible for developing a technology strategy designing core capabilities that will enable Northern Trust to be more secure, agile, resilient, and scalable while reducing technology sprawl and enabling execution on its business strategies. Your role will be to assist in modernizing Northern Trust's systems by creating and enforcing security guidelines for all applications and systems.

As Chief Security Architect you will develop and maintain a security architecture that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers. This is an exciting opportunity to modernize a world-renowned leader in banking and be a part of a diverse, dynamic, and highly capable team.

Major Duties

• Develops security strategy plans and roadmaps based on sound enterprise architecture practices
• Develops and maintains security architecture artifacts (e.g., models, templates, standards and procedures) that can be used to leverage security capabilities in projects and operations
• Determines baseline security configuration standards for operating systems (e.g., OS hardening), network segmentation and identity and access management (IAM)
• Develops standards and practices for data encryption and tokenization in the organization, based on the organization's data classification criteria
• Drafts security procedures and standards to be reviewed and approved by executive management and/or formally authorized by the chief information security officer (CISO)
• Excellent communication skills, especially storytelling, or "narrative" combined with visual and presentation development

Experience

• Bachelor's or master's degree in computer science, information systems, cybersecurity or a related field.
• 10+ years of experience in security, engineering or development including experience with public cloud and solutions in large enterprises
• Experience in using architecture methodologies such as SABSA, Zachman and/or TOGAF
• Direct, hands-on experience or strong working knowledge of managing security infrastructure - e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology
• Verifiable experience reviewing application code for security vulnerabilities.
• Experience securing CI/CD pipelines
• Direct, hands-on experience or a strong working knowledge of vulnerability management tools
• Documented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and services.
• Experience designing the deployment of applications and infrastructure into public cloud services
• Experience regularly interfacing with C-suite executives
• Experience advocating security strategy, implementation, and adoption to employees at all levels of the organization
• Strong working knowledge of full-stack IT infrastructure and IT service management

Preferred Certifications

One or more of the following certifications is preferred, but not required:

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Information Systems Security Architecture Professional (ISSAP)
• Information Systems Security Engineering Professional (ISSEP)
• Cloud Solutions/security certifications for Azure/AWS