About Northern Trust

As a global leader in innovative wealth management, asset servicing, asset management and banking services, Northern Trust (Nasdaq: NTRS) is proud to guide the world’s most successful individuals, families, corporations and institutions.

Since 1889, we have aligned our efforts with our three guiding Principles That Endure: Service, Expertise, and Integrity. Together, they reflect the three cornerstones of business conduct which we strive to instill in our employees, whom we call partners, and to provide to our clients and the communities we serve worldwide.

With more than 135 years of financial experience and over 24,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

The Senior Principal Network Security Engineer is the highest-level individual contributor responsible for leading the design, engineering, and delivery of complex, multi-team network security initiatives. This role owns end-to-end technical execution for enterprise perimeter, internal segmentation, and application delivery controls, with deep hands-on expertise in Check Point firewalls and F5 load balancers. The engineer serves as a technical authority, driving architecture decisions, mentoring engineers, and ensuring operational resiliency through automation, rigorous troubleshooting, and incident mitigation.

• Designing, Securing and building scalable, resilient enterprise-wide network
• Define and monitor - network security standards / Controls across on prem, hybrid and Private cloud networks through new generation firewalls / IDS/IPS, Micro segmentation and VPN’s
• Monitor and mitigate the network and security incidents across global events on prem, hybrid and private networks
• Ensure Audit and regulatory compliance requirements are implemented across network segmentations, firewalls, VPN’s and at perimeter security devices
• Check Point Firewalls (policy design, NAT, VPN, threat prevention, logging/telemetry, upgrades and migrations)
• F5 Load Balancers (LTM/ASM/APM as applicable; iRules; TLS profiles; health monitoring; high availability)
• Network routing and switching (BGP/OSPF, VLANs, VRFs, QoS, high-availability designs)
• Wireless networking (enterprise Wi‑Fi architectures, security controls, segmentation, troubleshooting)
• Secure web proxy platforms (forward proxy, TLS inspection, policy enforcement, troubleshooting)
• Enterprise network security initiatives (segmentation, zero trust patterns, control hardening, resiliency improvements)

• Lead the engineering delivery of complex network security and application delivery projects involving multiple teams, vendors, and stakeholders.
• Architect, implement, and operate Check Point firewall solutions including policy lifecycle management, NAT strategy, VPN solutions, and threat prevention capabilities.
• Design and engineer F5 load balancing solutions with strong understanding of traffic management, TLS, application health, and high availability.
• Develop and maintain automation for network security operations (e.g., configuration management, policy deployment, compliance validation, telemetry and reporting).
• Act as the senior escalation point for critical incidents—debug, mitigate, and resolve high-severity outages and security events across network/security domains.
• Establish engineering standards and reference architectures for firewalling, load balancing, routing/switching, wireless, and proxy capabilities.
• Drive continuous improvement: reduce toil, improve MTTR, implement reliability patterns, and proactively address technical debt.
• Partner with security engineering, infrastructure, application, and cloud teams to deliver secure-by-design solutions and ensure change safety.
• Conduct deep root-cause analysis (RCA) and produce actionable post-incident improvements, runbooks, and automation enhancements.
• Mentor senior engineers and provide technical leadership through design reviews, architecture boards, and operational readiness assessments.
• Monitor and manage information system security incidents, troubleshoot,  investigate and implement countermeasures and mitigate the risk. 
• Plan the Network recovery / DR / resilience from malware / attacks, unauthorized access, and policy breaches;
• Engage, interact and coordinate with third-party Network / Telecom/ service providers during security incidents.
• Analyze Network security trends and changes in threat and compliance environment and develop and executes plans for compliance and mitigation of risk

• Extensive, hands-on engineering experience with enterprise network security, including deep expertise in Check Point firewalls and F5 load balancers.
• Demonstrated success leading complex, cross-functional technical initiatives from design through implementation and operational handoff.
• Advanced knowledge of routing and switching, including dynamic routing (BGP/OSPF), redundancy, and troubleshooting at scale.
• Strong understanding of wireless networking and secure web proxy concepts, including policy enforcement and traffic inspection.
• Proven automation skills (required): scripting and/or infrastructure-as-code to integrate with CI/CD pipelines and ITSM workflows.
• Significant experience troubleshooting and resolving critical incidents, including packet-level analysis and performance triage.
• Ability to produce clear technical documentation: design artifacts, standards, runbooks, and post-incident reports.
• Excellent communication and stakeholder management skills; able to influence architecture decisions and drive alignment.

• Relevant industry certifications with major network/security vendors (e.g., Check Point CCSA/CCSE/CCSM, F5-CA/F5-CSE, Cisco CCNP, Palo Alto PCNSE, Fortinet NSE, etc.).
• Advanced certifications such as CCIE Security, CCDE, CISSP, or equivalent is highly desired.
• Experience with modern security patterns (e.g., zero trust segmentation, SASE concepts, secure access) and enterprise logging/telemetry platforms.
• Experience integrating network/security automation with ServiceNow and/or other ITSM systems.
• Experience with cloud networking and security controls (e.g., Azure/AWS/GCP) and hybrid connectivity patterns.
• Hands-on experience with tooling such as Ansible, Terraform, Python, Git, CI/CD, API-driven device management, and configuration compliance frameworks.

• Technical authority and systems thinking across security, network, and application delivery layers
• Incident leadership: calm execution under pressure, strong diagnostics, and mitigation mindset
• Automation-first approach: reduce manual effort, standardize delivery, and improve reliability
• Strong collaboration: leads through influence across engineering, operations, and security partners
• Ownership and accountability: drives outcomes end-to-end and follows through on improvements

• Lead a multi-phase Check Point firewall upgrade/migration program with minimal downtime and improved security posture.
• Engineer F5 traffic management enhancements for critical applications, including TLS modernization and health monitoring redesign.
• Build automation to validate firewall policy changes, generate compliance evidence, and roll back safely when required.
• Resolve a high-impact outage through packet capture, routing convergence analysis, and coordinated changes across multiple teams.

Working with Us

As a Northern Trust partner, you will be part of a flexible and collaborative work culture, which has a strong history of financial strength and stability. Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to an inclusive workplace and assisting the communities we serve.

Philanthropy is deeply rooted in Northern Trust’s history and is an essential element of our culture. Employees around the world give their time and talent to work for the greater good of their communities.

Reasonable Accommodation

Northern Trust is committed to working with and providing adjustments to individuals with health conditions and disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at [email protected], or alternatively you can discuss your individual requirements with the recruiter you are working with.

About Our Pune Office

The Northern Trust Pune office, established in 2016, is now home to over 3,000 employees. The office handles various functions, including Operations for Asset Servicing and Wealth Management, as well as delivering critical technology solutions that support business operations across the globe.

Our Pune team takes our commitment to service to heart. In 2024, they volunteered more than 10,000+ hours into the communities where they live and work. Learn more.