Principal, Cyber Sec IT Risk

In this role at Northern Trust, you will be responsible for providing technical expertise and support in risk assessments to clients, IT management, and staff. You will participate in the evaluation, development, implementation, and monitoring of information technology security policies and procedures. Your role will involve establishing and communicating common goals and directions for the team, as well as serving as a resource for guidance to less experienced staff. Key Responsibilities: - Lead risk and control assessments for core cyber security domains including vulnerability management, threat management, third-party security due diligence, and identity and access management. - Provide technical expertise to assist in the development and maintenance of cyber security standards aligned with industry best practices. - Coordinate the remediation of cyber security findings from various sources. - Assist in developing and implementing cyber security trainings for technical domains. - Participate in cyber incident responses to provide guidance on cyber security risks and control assurance. - Influence behaviors to resolve conflicts, clarify goals, and foster a strong technology risk management culture within the information security organization. Qualifications Required: - 12+ years of technical or audit experience in core cyber security fields such as vulnerability management, Pen-Testing, IAM, Data Protection, IH / IR, AppSec, Network Security, System Administrator, GRC. - Expert knowledge of performing risk management based on NIST 800-53. - Experience in determining vulnerability risk impact on key objectives and critical processes, and linking risk management programs to inform business strategies. - Excellent analytical ability, consultative skills, and communication skills. - Bachelor's degree in Computer Science or a related discipline, with technical experience in security aspects of multiple platforms, operating systems, software, communications, and network protocols, or equivalent combination of education and work experience. - Applicable industry standard certification(s) preferred. Joining Northern Trust means being part of a flexible and collaborative work culture where greater achievements await. You will work in an organization that values financial strength and stability, encouraging movement within the organization and providing accessible senior leaders. As a company committed to assisting the communities it serves, you will take pride in working for a company with a greater purpose. In this role at Northern Trust, you will be responsible for providing technical expertise and support in risk assessments to clients, IT management, and staff. You will participate in the evaluation, development, implementation, and monitoring of information technology security policies and procedures. Your role will involve establishing and communicating common goals and directions for the team, as well as serving as a resource for guidance to less experienced staff. Key Responsibilities: - Lead risk and control assessments for core cyber security domains including vulnerability management, threat management, third-party security due diligence, and identity and access management. - Provide technical expertise to assist in the development and maintenance of cyber security standards aligned with industry best practices. - Coordinate the remediation of cyber security findings from various sources. - Assist in developing and implementing cyber security trainings for technical domains. - Participate in cyber incident responses to provide guidance on cyber security risks and control assurance. - Influence behaviors to resolve conflicts, clarify goals, and foster a strong technology risk management culture within the information security organization. Qualifications Required: - 12+ years of technical or audit experience in core cyber security fields such as vulnerability management, Pen-Testing, IAM, Data Protection, IH / IR, AppSec, Network Security, System Administrator, GRC. - Expert knowledge of performing risk management based on NIST 800-53. - Experience in determining vulnerability risk impact on key objectives and critical processes, and linking risk management programs to inform business strategies. - Excellent analytical ability, consultative skills, and communication skills. - Bachelor's degree in Computer Science or a related discipline, with technical experience in security aspects of multiple platforms, operating systems, software, communications, and network protocols, or equivalent combination of education and work experience. - Applicable industry standard certification(s) preferred. Joining Northern Trust means being part of a flexible and collaborative work culture where greater achievements await. You will work in an organization that values financial strength and stability, encouraging movement within the organization and providing accessible senior leaders. As a company committed to assi