Principal, Cyber Security Engineer
Northern Trust•Chicago, IL
About The Position
The Principal, Cyber Security Engineer plays a crucial role in ensuring the security, compliance, and resilience of cloud environments, with a focus on supporting Policy as Code (PaC) and Infrastructure as Code (IaC) practices. This role involves implementing security controls, utilizing security tooling for Cloud Security Posture Management (CSPM), and collaborating with application developers’ security champions. As a technical leader you will also mentor junior Engineers.
Requirements
- Minimum of 3 years working in public cloud as an engineer or developer role
- Minimum of 5 years working as an Engineer, Developer, or Architect in Information Technology preferably Cyber Security
- Strong understanding of cloud security principles and the integration of security into development workflows
- Experience and familiarity with at least 2-3 Cloud service provider security services of Azure (e.g., Defender for Cloud, Sentinel, Key Vault) and AWS (e.g., Config, CloudTrail, Macie, etc.)
- Strong hands-on experience codifying PaC (e.g., Rego) and using IaC provision tools (e.g., Terraform, ARM)
- Familiarity with Git-based version control CICD processes and technologies (e.g., GitHub Actions, GitHub Package Repository)
- Hands-on experience with integrated testing tools
- Effective written and verbal communication skills to collaborate with cross-functional teams
Nice To Haves
- Software Developer Experience (Python, GOLang, Java, etc.…) is a plus
- Experience and familiarity with privileged access management and identity systems (e.g., Azure Entra, Okta, Ping) is a plus
- Desired certifications such as Azure Security Engineer Associate certification, and AWS-certified security – Specialty, CISSP and CCSP
Responsibilities
- Design, implement and support security measures for cloud platforms (3rd Party, Open Source, native), with a specific emphasis on Azure and AWS
- Develop PaC and IaC maintaining security policies and procedures aligned with industry-standard frameworks such as CIS and NIST 800-53
- Utilize and Implement CSPM tools such as Wiz and Defender to continuously assess, monitor, and enforce security controls
- Work closely with security champions in various business units, providing guidance and support for their specific security needs
- Contribute to cloud security roadmap to further enhance cloud security practices
- Conduct regular security assessments, audits, and reviews of cloud configurations
- Investigate and respond to security incidents, conducting root cause analysis and implementing corrective actions
- Mentor junior team members
Benefits
- retirement benefits (401k and pension)
- health and welfare benefits (medical, dental, vision, spending accounts and disability)
- paid time off
- parental and caregiver leave
- life & accident insurance
- other voluntary and well-being benefits
- discretionary bonus program that may include an equity component
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Principal
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
