UNIX/Linux Security Engineering Architect

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

UNIX/Linux Security Engineering Architect

Job Overview:
We are seeking an experienced and skilled Senior UNIX/Linux Security Engineer to join our global UNIX/Linux Engineering team. The ideal candidate will
be responsible for designing, implementing, and maintaining robust security measures for our complex UNIX and Linux environments and services across
multiple data centers and cloud platforms worldwide.

Key Responsibilities:
Security Architecture and Design:
Design and implement secure UNIX/Linux architectures that align with industry best practices and compliance requirements
Develop and maintain security standards, policies, and procedures for UNIX/Linux systems
Collaborate with cross-functional teams to ensure security is integrated into all aspects of the IT infrastructure
System Hardening and Configuration Management:
Develop and implement system hardening guidelines for various UNIX/Linux distributions
Manage and maintain secure configurations using tools like Ansible, Puppet, or Chef
Implement and manage centralized configuration management systems
Vulnerability Management:
Conduct regular vulnerability assessments and penetration testing on UNIX/Linux systems
Analyze and prioritize vulnerabilities, coordinating remediation efforts with system administrators
Implement and manage automated vulnerability scanning tools
Access Control and Identity Management:
Design and implement robust access control mechanisms, including multi-factor authentication
Manage and maintain centralized identity and access management systems for UNIX/Linux environments
Implement and maintain privileged access management solutions
Security Monitoring and Incident Response:
Design and implement comprehensive security monitoring solutions for UNIX/Linux systems
Develop and maintain security information and event management (SIEM) use cases and alert rules
Participate in incident response activities, performing root cause analysis and implementing corrective measures
Compliance and Auditing:
Ensure UNIX/Linux systems comply with relevant industry standards and regulations (e.g., SOX, PCI DSS, HIPAA, GDPR)
Conduct regular security audits and assessments of UNIX/Linux environments
Prepare and maintain documentation for compliance and audit purposes
Security Tools and Automation:
Evaluate, implement, and manage security tools specific to UNIX/Linux environments
Develop and maintain scripts and automation processes to enhance security operations
Continuously research and evaluate new security technologies and methodologies
Capacity Planning and Performance Optimization:
Monitor system performance and capacity, ensuring security measures do not negatively impact operations
Optimize security configurations for high-performance and high-availability environments
Training and Knowledge Sharing:
Provide technical guidance and mentoring to junior team members
Develop and deliver security awareness training for system administrators and other IT Teams
Stay current with the latest security threats, vulnerabilities, and mitigation techniques

Required Qualifications:
Bachelor's degree in computer science, Information Security, or related field
7+ years of experience in UNIX/Linux system administration and security
In-depth knowledge of various UNIX/Linux distributions (e.g., Red Hat, CentOS, Ubuntu, SUSE)
Strong understanding of network protocols, firewalls, and security technologies
Experience with configuration management tools (e.g., Ansible, Puppet, Chef)
Proficiency in scripting languages (e.g., Bash, Python, Perl)
Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and their security features
Knowledge of relevant security frameworks and standards (e.g., NIST, CIS)
Professional certifications such as CISSP, RHCE, LPIC, or equivalent
Preferred Qualifications:
Master's degree in Information Security or related field
Experience in large-scale, multi-datacenter environments
Knowledge of containerization technologies (e.g., Docker, Kubernetes) and their security implications
Familiarity with DevSecOps practices and tools
Experience with SIEM solutions and log analysis tools

Understanding of regulatory compliance requirements in multiple jurisdictions
This position requires a detail-oriented individual with excellent problem-solving skills, the ability to work in a fast-paced environment, and strong
communication skills to interact with various stakeholders across the organization.

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.

We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.