Principal, Cyber Sec Eng (SOD/RBAC)

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.

Overview

The Principal, SOD/RBAC (Segregation/Separation of Duties & Role-Based Access Control) is responsible for implementing and overseeing a governance framework for SOD and RBAC at Northern Trust. This role is pivotal in formulating and executing strategic roadmaps for first-line IAM (Identity & Access Management) practices.

The role will be responsible for developing and implementing SoD and RBAC policies and controls to ensure compliance with regulatory requirements, industry standards, and best practices. Additionally, this position will manage a team that will be responsible for implementing advanced IGA functions, include RBAC and SOD. As an IAM leader, the selected candidate will partner with IAM architecture, engineering, operations and program teams to ensure that identity governance and administration strategy and roadmaps are in alignment with other IAM capabilities and towers of work.

Key Responsibilities

• Implement the strategic technology and operational objectives for the identity governance and administration (IGA) tower of the Northern Trust (NT) IAM Organization
• Serve as a people manager for the IGA function, aligning its capabilities to business and technology team objectives
• Responsible for developing and implementing advanced IGA functions, including Role Based Access design and implementation and Segregation of Duties and Toxic Combination identification and remediation
• Responsible for defining, maintaining and enhancing rule-set ownership for SOD and RBAC
• Define and operationalize identification and remediation of toxic combinations for both centralized and de-centralized applications
• Define and operationalize process for creating new roles and on-going role verification
• Design and oversee the implementation of access control mechanisms to ensure secure, timely and controlled access to systems, applications and data
• Enforce IGA Tower standards and controls across NT, whether applications and platforms are centrally or de-centrally managed
• Establish sustainable model for SOD and RBAC processes and procedures
• Responsible for responding to audit and regulatory inquiries in partnership with other IAM, IT and Risk leadership teams
• Develop metrics and reports to measure and track effectiveness of SoD and RBAC policies and controls that are provided to all levels of NT leadership
• Work closely with IT security, compliance and audit teams to ensure IAM policies and controls meet regulatory requirements and industry standards
• Stay up-to-date with industry trends and emerging technologies related to IAM, SoD and RBAC, and apply best practices to improve the organization's IAM program

Leadership & Skills

• Strong team management skills. Conducts performance management and career development processes, and staffing and disciplinary actions.
• Leads resource planning and metrics
• Develops periodic goals, organizes the work, sets short-term priorities, monitors all activities, and ensures timely and accurate completion of the work.
• Operates independently; has in-depth knowledge of business unit / function
• As an IAM subject area expert, provides comprehensive, in-depth consulting and leadership to team and partners at a high technical level
• Carries out activities that are large in scope, cross-functional and technically difficult
• Role is balanced between high level operational execution and development, and execution of strategic direction of business function activities
• Responsible for direct interaction with different committees and/or management
• Strategic in developing, implementing and administering programs within functional areas

Qualifications

• Broad understanding of identity and access management, with expert knowledge in identity governance and administration
• Understanding of identity related regulatory requirements for all global regions
• Strong aptitude to develop and maintain internal and external business relationships and to leverage those relationships in pursuit of day-to-day goals and responsibilities
• Excellent consultative skills
• Excellent oral and written communication skills are required
• In-depth Functional / Industry Knowledge is required
• Knowledge of information security, network management, operating systems, software development, database systems and information technology concepts needed to effectively manage the group
• Analytical and problem solving skills are required
• Leadership and organizational skills are required to develop periodic goals and to manage and motivate team members towards the goals set
• A College or University degree and/or relevant proven work experience is required
• Industry certification such as CISSP, CISM, CISA, Cisco, SANS, etc. is preferred

Salary Range:

$137,400 - 233,600 USD

Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We'd love to learn more about how your interests and experience could be a fit with one of the world's most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at [email protected] .

We hope you're excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.