Principal, Cyber Security Engineer
Role details
Job location
Tech stack
Job description
The Principal, Cyber Security Engineer plays a crucial role in ensuring the security, compliance, and resilience of cloud environments, with a focus on supporting Policy as Code (PaC) and Infrastructure as Code (IaC) practices. This role involves implementing security controls, utilizing security tooling for Cloud Security Posture Management (CSPM), and collaborating with application developers' security champions. As a technical leader you will also mentor junior Engineers, * Design, implement and support security measures for cloud platforms (3rd Party, Open Source, native), with a specific emphasis on Azure and AWS
- Develop PaC and IaC maintaining security policies and procedures aligned with industry-standard frameworks such as CIS and NIST 800-53
- Utilize and Implement CSPM tools such as Wiz and Defender to continuously assess, monitor, and enforce security controls
- Work closely with security champions in various business units, providing guidance and support for their specific security needs
- Contribute to cloud security roadmap to further enhance cloud security practices
- Conduct regular security assessments, audits, and reviews of cloud configurations
- Investigate and respond to security incidents, conducting root cause analysis and implementing corrective actions
- Mentor junior team members
Requirements
- Minimum of 3 years working in public cloud as an engineer or developer role
- Minimum of 5 years working as an Engineer, Developer, or Architect in Information Technology preferably Cyber Security
- Software Developer Experience (Python, GOLang, Java, etc....) is a plus
- Strong understanding of cloud security principles and the integration of security into development workflows
- Experience and familiarity with at least 2-3 Cloud service provider security services of Azure (e.g., Defender for Cloud, Sentinel, Key Vault) and AWS (e.g., Config, CloudTrail, Macie, etc.)
- Strong hands-on experience codifying PaC (e.g., Rego) and using IaC provision tools (e.g., Terraform, ARM)
- Familiarity with Git-based version control CICD processes and technologies (e.g., GitHub Actions, GitHub Package Repository)
- Experience and familiarity with privileged access management and identity systems (e.g., Azure Entra, Okta, Ping) is a plus
- Hands-on experience with integrated testing tools
- Effective written and verbal communication skills to collaborate with cross-functional teams
- Desired certifications such as Azure Security Engineer Associate certification, and AWS-certified security - Specialty, CISSP and CCSP
Benefits & conditions
$137,400 - 233,600 USD
Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.
