Principal, Cyber Sec Eng (SOD/RBAC)

About The Position

Requirements

• Broad understanding of identity and access management, with expert knowledge in identity governance and administration
• Understanding of identity related regulatory requirements for all global regions
• Strong aptitude to develop and maintain internal and external business relationships and to leverage those relationships in pursuit of day-to-day goals and responsibilities
• Excellent consultative skills
• Excellent oral and written communication skills are required
• In-depth Functional / Industry Knowledge is required
• Knowledge of information security, network management, operating systems, software development, database systems and information technology concepts needed to effectively manage the group
• Analytical and problem solving skills are required
• Leadership and organizational skills are required to develop periodic goals and to manage and motivate team members towards the goals set
• A College or University degree and/or relevant proven work experience is required

Nice To Haves

• Industry certification such as CISSP, CISM, CISA, Cisco, SANS, etc. is preferred

Responsibilities

• Implement the strategic technology and operational objectives for the identity governance and administration (IGA) tower of the Northern Trust (NT) IAM Organization
• Serve as a people manager for the IGA function, aligning its capabilities to business and technology team objectives
• Responsible for developing and implementing advanced IGA functions, including Role Based Access design and implementation and Segregation of Duties and Toxic Combination identification and remediation
• Responsible for defining, maintaining and enhancing rule-set ownership for SOD and RBAC
• Define and operationalize identification and remediation of toxic combinations for both centralized and de-centralized applications
• Define and operationalize process for creating new roles and on-going role verification
• Design and oversee the implementation of access control mechanisms to ensure secure, timely and controlled access to systems, applications and data
• Enforce IGA Tower standards and controls across NT, whether applications and platforms are centrally or de-centrally managed
• Establish sustainable model for SOD and RBAC processes and procedures
• Responsible for responding to audit and regulatory inquiries in partnership with other IAM, IT and Risk leadership teams
• Develop metrics and reports to measure and track effectiveness of SoD and RBAC policies and controls that are provided to all levels of NT leadership
• Work closely with IT security, compliance and audit teams to ensure IAM policies and controls meet regulatory requirements and industry standards
• Stay up-to-date with industry trends and emerging technologies related to IAM, SoD and RBAC, and apply best practices to improve the organization's IAM program

Benefits

• Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits.
• Northern Trust also provides a discretionary bonus program that may include an equity component.