We're strong and growing. In a company with such a long and storied history, this may be the most exciting and important time to be a part of Northwestern Mutual. We're strong, innovative and growing.
We invest in our people. We provide opportunities for employees to grow themselves, their career and in turn, our business.
We care. We make a positive difference in our communities. Nationally, thousands have benefitted from our support of research and programs to fight childhood cancer. Each year, our Foundation, employees and financial representatives donate time, talent and financial support to causes they're passionate about.
At Northwestern Mutual, we believe relationships are built on trust. That our lives and our work matter. These beliefs launched our company over 160 years ago. Today, they're just a few of the reasons why people choose to build careers at Northwestern Mutual.

Primary Duties and Responsibilities

• Help mature the IRC organization and overall enterprise security posture by assessing control effectiveness against current and emerging threats while partnering with technology teams to ensure industry standard and best practice platform, network, and endpoint security.

• Support the overall IRC mission, strategy, and delivery of objectives.

• Build strong working relationships and work closely with technical and enterprise architecture teams to ensure that security is well integrated into the environment.

• Interpret and apply understanding of policy, process, architecture, regulatory, audit and compliance implications to assist the development of technical solutions or controls.

• Maintain a deep understanding and application of security concepts at a technical level across various domains.

• Provide architecture and roadmaps for incorporating infrastructure security devices, including IPS, SIEM, malware proxies, network and systems access controls, firewalls, authentication devices, enterprise monitoring systems, etc.

• Enable security and compliance by design to help mitigate threats while positioning for future expansion and business enablement.

• Ensure operational reliability and support of IT services delivered to customers and users are according to defined SLA metrics for confidentiality, integrity and availability from a design, architecture, and integration perspective.

• Analyze non-integrated and emerging technologies for business enablement and security compliance.

• Conceptualize possible future functional and non-functional requirements into architecture platform technical strategy and detailed design to meet business objectives.

• Provide guidance and direction to the overall technical strategy and roadmap by aligning cost-effective and reusable solutions while advancing the usage of new emerging trends and technical capabilities.

• Lead and mentor junior team members in building effective cross-functional relationships, developing technical expertise, and effectively providing guidance to partners.

• Create influential thought leadership vision and work products shaping our future.

Qualifications

• 10+ years' experience in some combination of the following disciplines with an emphasis on information security/security architecture specifically within identity and access management, network architecture, application architecture and design, common authentication protocols and frameworks, industry standard frameworks (NIST, ISO), Cloud, DNS, VPN, SOC, SIEM, Email security, Cryptography concepts.

• Experience operating in cloud, DevOps, and SaaS environments.

• A passion for cybersecurity and knowledge of the latest threats, trends and concerns.

• Subject matter expert for security processes across multiple domains and disciplines - on premise and cloud / SaaS based applications, data, infrastructure and mobile solutions.

• Demonstrated knowledge of common adversary tactics, techniques, and procedures (TTPs) (MITRE ATT&CK framework), Cyber Kill Chain, and other relevant cybersecurity frameworks.

• Must be highly collaborative, able to effectively interact and communicate with peers, management and leadership teams of varying technical levels, and act with a sense of urgency when security challenges or requirements arise.

• Experience leading and mentoring junior team members

• A minimum of a bachelor's degree in Information Systems, Computer Science, Engineering, or equivalent experience

• CISSP and/or SANS certification preferred

• CISSP-ISSAP, CCSP, GDSA, TOGAF Foundation, MS Certified: Cybersecurity Architect Expert; a plus

N ort hwester n Mutual pays on a geographic-specific salary structure and placement in the salary range for this position will be determined by a number of factors including the skills, education, training, credentials and experience of the candidate; the scope, complexity as well as the cost of labor in the market; and other conditions of employment. At Northwestern Mutual, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. Please note that the salary range listed in the posting is the standard pay structure. Positions in certain locations (such as California) may provide an increase on the standard pay structure based on the location. Please click for additional information relating to location-based pay structures.

We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.

If you work or would be working in California, Colorado, New York City, Washington or outside of a Corporate location, please click for information pertaining to compensation and benefits.