Sr. Manager, Cyber Security Engineering - Privileged Access Management (PAM)

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

The function of the Senior Manager, Privilege Access Management (PAM) role will be to implement a robust operating Privileged Access Management (PAM) framework for Northern Trust. The role will ensure formulation and execution of strategic roadmaps related to 1st line of defense PAM practices. The role will also be responsible for executing PAM policy, standards and control adherence leveraging the CyberArk platform and serve as principal partner in strengthening and maintaining productive alliances with 2nd and 3rd line of defense challenge teams. Additionally, this position will manage a team that will align with business, technology, information security and other corporate teams to establish and strengthen adoption of PAM practices, standards and controls. As a leader in PAM, the selected candidate will partner with architecture, engineering, and program teams to ensure that PAM strategy and roadmaps are in alignment with other PAM capabilities and towers of work.

MAJOR DUTIES

1. Demonstrate advanced proficiency in CyberArk PAM solutions, including CyberArk Enterprise Password Vault (EPV), Privileged Session Manager (PSM), Conjur, Endpoint Privilege Manager (EPM)
2. Drive the development and enforcement of PAM policies and procedures, ensuring alignment with industry best practices
3. Lead Technical discussions, providing guidance and solutions for complex PAM challenges
4. Implement and maintain robust monitoring mechanisms for privileged access activities using CyberArk tools
5. Drive remediation of privileged accounts that are non-compliant as per the defined standard
6. Manage credential onboarding within defined SLA
7. Lead integration of platforms and applications with CyberArk platform
8. Conduct regular analysis of access logs and session recordings to identify and mitigate potential security risks
9. Develop and implement incident response procedures specific to privileged access incidents within the CyberArk platform
10. Lead investigations into security incidents involving privileged accounts, ensuring timely resolution and lessons learned for continuous improvement
11. Lead L2 support and day-to-day operations of PAM solutions
12. Provide recommendations for enhancements or optimizations to the CyberArk platform based on operational needs
13. Implement automation where possible to enhance efficiency in PAM operations.
14. Drive PAM metrics and analytics collection and reporting to all levels of NT leadership
15. Manage and mentor a team of technical professionals, ensuring high level of expertise in CyberArk PAM

LEADERSHIP KNOWLEDGE / SKILLS

1. Strong team management skills. Conducts performance management and career development processes, and staffing and disciplinary actions.
2. Leads resource planning and metrics
3. Develops periodic goals, organizes the work, sets short-term priorities, monitors all activities, and ensures timely and accurate completion of the work.
4. Operates independently; has in-depth knowledge of business unit / function
5. As PAM subject area expert, provides comprehensive, in-depth consulting and leadership to team and partners at a high technical level
6. Carries out activities that are large in scope, cross-functional and technically difficult
7. Role is balanced between high level operational execution and development, and execution of strategic direction of business function activities
8. Responsible for direct interaction with different committees and/or management
9. Strategic in developing, implementing and administering programs within functional areas

QUALIFICATIONS

1. Broad understanding of identity and access management, with expert knowledge in Privileged Access Management
2. Understanding of PAM related regulatory requirements for all global regions
3. Strong aptitude to develop and maintain internal and external business relationships and to leverage those relationships in pursuit of day-to-day goals and responsibilities
4. Excellent consultative skills
5. Excellent oral and written communication skills are required
6. In-depth Functional / Industry Knowledge is required
7. Knowledge of information security, network management, operating systems, software development, database systems and information technology concepts needed to effectively manage the group
8. Analytical and problem solving skills are required
9. Leadership and organizational skills are required to develop periodic goals and to manage and motivate team members towards the goals set
10. A College or University degree and/or relevant proven work experience is required
11. Industry certification such as CISSP, CISM, CISA, Cisco, SANS, etc. is preferred