Job Description

At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference.

The ideal candidate will be directly providing hands-on skills required to develop, configure, deploy and support security solutions for Endpoint Data Loss Prevention (DLP) technologies to include Windows, Macintosh, and 'nix operating systems; this includes but not limited to desktop, laptop, VDI, server and public and private cloud infrastructure platforms. The Sr. Cybersecurity Engineer is a member of the Enterprise Security Engineering team and actively partners/collaborates with all other functional areas within the Infrastructure and Cloud Services product teams (colleagues at NM) to ensure security is appropriately integrated within the products being delivered throughout the organization.

Candidate will be responsible for identifying, evaluating and reporting on information & technology risks in a manner that meets compliance/regulatory requirements; aligning to support the risk posture of the enterprise. This will be achieved by leveraging a partnership with Enterprise Information Risk and Cybersecurity to assure alignment of operational risk management practices & processes. Will assist leaders in prioritizing along with developing technologies & procedures to address information & technologies risks/security gaps. What youll do each day:

* Lead analysis, design engineering, configuration and implementation of endpoint security solutions for new and existing environments.

* Actively participate as a next-level troubleshooting resource above the traditional L1/2 engineer

* Understand technical issues and risks affecting the business and be able to communicate them to management and other business leaders.

* Keep abreast of endpoint security trends & standards; maintain a superior knowledge of capabilities and vendor product offerings in this space.

What kind of person should you be?

You pride yourself on problem-solving

You appreciate the data of our clients is of utmost importance to protect.

You have the ability to quickly learn unfamiliar/new products and technologies

You can handle stressful situations calmly

You recognize the importance of user experience and productive efficiency and seek the ability to balance these drivers with the cyber security protections for the endpoint

You suggest ideas for how security can be seamlessly integrated

You are self-motivated

You are able to work well independently or as part of a team

You consistently produce quality results

Integrity is very important to you

What skills do you need?

Bachelors degree in MIS, Computer Science, IT Engineering or a significant amount of directly-related work experience beyond the minimum required for the position

Minimum of 5-7 years relevant experience

Solid knowledge of endpoint security (DLP, antivirus, anti-malware, IDS/IPS, endpoint firewall, etc)

At a minimum, education and/or training in scripting languages; powershell, python, VB script, etc; hands on experience preferred.

Working knowledge in firewall, VPN, PKI, O365 security concept and theory with preference towards practical application at the operations and engineering level

Special focus on the data loss and data leakage technologies is key

Experience in large, complex network environments

Cloud - experience in public and private cloud security integrations with experience in continuous integration/continuous delivery methodology

Ability to identify security risks within the endpoint technologies and suggest mitigations

Solid understanding of information risks and IT general controls

Solid understanding of risk management frameworks

Solid written and verbal communications skills

Partners well with others; proven ability to foster collaboration among team members and across teams

Proven analytical abilities in decision making and problem solving

Proven ability to manage multiple priorities and the ability to deal with ambiguity

Solid ability to create and execute communication plans

Plus, to have:

Certified Risk and Information Systems Control (CRISC)

Certified Information Systems Security Professional (CISSP)

Certified Cloud Security Professional (CCSP)

Comp TIA+ certifications in the CySA, Security, Cloud, Server.

LI-POST

This job is not covered by the existing Collective Bargaining Agreement.

Required Certifications:

Grow your career with a best-in-class company that puts our clients interests at the center of all we do. Get started now!

We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.