Northern Trust
Info Security, Purple Team - Associate Specialist (Finance)
Northern Trust provides innovative financial services and guidance to corporations, institutions and affluent families and individuals globally. With over 130 years of financial experience and nearly 20,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.
Working with Us:
As a Northern Trust partner, you will be part of a flexible and collaborative work culture, which has a strong history of financial strength and stability. Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company that is committed to strengthening the communities we serve!
We recognize the value of inclusion and diversity in culture, in thought, and in experience, which is why we are honored to receive the following awards in 2021:
•Gender Equality Index Member, Bloomberg
•Top Financial & Banking Company, Black EOE Journal, Hispanic Network Magazine, Professional WOMAN'S Magazine
We'd love to learn more about how your interests and experience could be a fit with one of America's best banks and most sustainable companies! Build your career with us and apply today.
Northern Trust Cybersecurity Coordination Center (NTC3) is looking for a Senior Info Security Professional to join our Purple Team as part of a growing IT Security Governance/Engineering Organization.
The Purple Team is a group that enhances existing Red and Blue capabilities.
Purple Team members will simulate focused attack techniques as part of their operations to immediately test effectiveness of detection and prevention controls.
These attacks will be designed using information from varied sources including;
•Threat intelligence on the Techniques, Tactics, and Procedures (TTP's) used by threat actors most likely targeting Northern Trust
•Vulnerabilities
•Red Team test results/readouts
•External testing results
Responsibilities:
•Collects Intelligence on latest TTP's and supports Threat Actor emulation efforts.
•Identifies latest TTP's by most likely Threat Actors to Target NT, and prioritizes these TTP's for future exercises.
•Provides After Action Review and feedback/recommendations to Incident Response Team post exercise.
•Provides feedback/recommendations; Assesses and Prioritizes detection/alerting
•Recommendations and feedback on hardening efforts and Security Controls, Network Architecture.
•Conduct continuous exercises to enhance existing detections
•Benchmark Northern Trusts' prevent/detect controls against MITRE attack Framework.
•Acts as a Fusion between Vulnerability Management, Incident Response Team, Threat Technologies and wider technology teams.
Required Skills & Experience:
•In depth technical background in cyber security or infrastructure related role;
•Red or Blue Team experience required; experience on both teams or Purple team preferred
•At least one of the following: Networking Security, Pen Testing, Scripting Tools, Automation skills
•Experience with any of the following tools preferred: Azure Sentinel, Splunk, Qualys, Qradar, Exabeam
•Prior implementation experience of security platforms including SIEM technologies, preferably Azure Sentinel
•Excellent communication skills including verbal, written and non-verbal
•Demonstrated analytical skills that includes problem solving and risk mitigation
•Excellent negotiation and conflict management skills
•Prior experience managing a team where performance management includes constructive feedback and identifying developmental opportunities to team members