At Northwestern Mutual, we believe relationships are built on trust. That our lives and our work matter. These beliefs launched our company nearly 160 years ago. Today, they're just a few of the reasons why people choose to build careers at Northwestern Mutual.

We're strong and growing. In a company with such a long and storied history, this may be the most exciting and important time to be a part of Northwestern Mutual. We're strong, innovative and growing.

We invest in our people. We provide opportunities for employees to grow themselves, their career and in turn, our business.

We care. We make a positive difference in our communities. Nationally, thousands have benefitted from our support of research and programs to fight childhood cancer. Each year, our Foundation, employees and financial representatives donate time, talent and financial support to causes they're passionate about.

We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.

What's the role?

The Northwestern Mutual Cloud Team is seeking highly skilled Cloud Native Security Engineers that have a passion for delivering security solutions as code. Your role as a senior engineer is to architect, develop, test and operate the security solutions as well as provide support to the engineering, infrastructure, security and IT teams to continuously improve and protect our production architecture. This is a senior role on a fast growing team of security engineers and this role would provide the opportunity to guide & mentor junior members of the team.

Our current tech stack includes Azure, Linux, Ansible, Azure VM, Azure Application Service Environment, AKS, VM Scale set, Kubernetes, Spring, Node.js, Java8, iOS, and Python.

Responsibilities

• Codify traditional security processes to take humans out of the equation making security consumable as a service
• Work across multiple Security Epics such as IAM, Logging and Monitoring, Infrastructure Security, Data Protection, and Incident Response
• Build security guardrails into the CI/CD pipeline to stop security misconfigurations and vulnerabilities before they happen, creating a tight feedback loop between security and development teams
• Build Cloud Native Detective and Responsive controls that enforce the security baseline at scale
• Build VM Image and Docker Image lifecycle management systems to integrate with the vulnerability scanning solutions to provide image rehydration based on vulnerability scanning assessments 
• Build automation to actively audit the infrastructure for security misconfigurations
• Provide security expertise on system, network, encryption, authentication, and governance
• Developing secure design patterns for cloud architectures developed in public or private cloud environments.
• Research emerging trends and technologies to assess the threats they may face
• Support vendor and partner security assessments

Qualifications

• Hands on experience with Azure services such as Virtual Network, Azure Virtual Machine, Azure SQL, Azure AD, Azure Key Vault, Azure Application Gateway, Azure Functions, Azure Application Insights, Azure Monitor/ Azure OMS, Cosmos DB, Service Bus, Azure Storage and Azure Security Center.
• Knowledge of Infrastructure as Code, Mutal/Immutable Infrastructure, and continuous integration/deployment practices
• Proficient in at least one programming language (C#, Python, Java, NodeJS)
• Experience in version control systems such as Git, GitLab, etc.
• Experience administering and hardening Linux and Windows systems
• Familiarity with security issues associated with containers, distributed systems, and large-scale web application
• Willingness to continuously learn and share learnings with others
• Ability to work in a fast-paced, rapidly changing environment
• Very strong verbal and written communication skills
• Minimum 3 years working with web-scale environments
• Minimum 2 years working in a security capacity

Benefits

• Fully stocked snacks, beer fridge, cold brew kegs, frequent catered lunches, company dodgeball team, and whiskey hours
• Tuition reimbursement, commuter plans, and paid time off
• Highly competitive compensation that includes base salary plus bonus
• Medical/Dental/Vision plans, Matching 401(k), pension program