About Northern Trust:
Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.
Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.
The Role
This role is an individual contributor position responsible for the execution of activities supporting IT and Cybersecurity Risk Management, including regulatory interactions, IT risk and control assessments, information security initiatives, and management reporting.
The role plays a key part in the identification, assessment, management, and reporting of technology and information security risk, with direct responsibility for delivering work across one or more core practice areas within the Information Security and Technology Risk Management Program. The individual will work closely with peers and management and will contribute to strategic IT Risk and Information Security initiatives.
The key responsibilities of the role include;
Develop and maintain technology and cybersecurity risk metrics and assessments to inform the firm of its risk posture
Manage preparation and delivery of materials for key engagements, including regulatory interactions, audit examinations, and senior management meetings
Identify and assess risks associated with internal technologies and externally hosted systems
Define requirements and execution plans for information security and technology risk management programs
Ensure risk management programs align with applicable regulations, industry standards, and compliance requirements
Communicate security policies and requirements clearly to ensure organisational understanding and adoption
Produce meaningful, measurable metrics for owned risk management programs
Review and assess technology and security controls using established frameworks
Drive risk reduction through defined risk treatment and remediation processes
Document, track, and report risk findings and remediation plans to management
Collaborate with Information Security, Privacy, and Enterprise Risk teams to enhance policies, standards, and frameworks
Evaluate and provide risk advice on strategic business and technology initiatives
Participate in cybersecurity incident response activities as required
Stay current on industry trends, emerging threats, technologies, and regulatory developments and advise management on their potential business and financial impact
Skills and Experience
The successful candidate will benefit from having;
Strong experience in IT Risk Management, Technology Risk, or IT Audit
Experience creating metrics and reporting using tools such as Power BI and PowerPoint
Required certification: CISA, CISM, CRISC, CISSP, or equivalent
Bachelor’s degree in Accounting, Finance, Information Technology, MIS, Computer Science, or related discipline
Advanced degree in an IT‑related field is desirable
Strong ability to develop effective technology and cybersecurity risk metrics, assessments, and executive‑level presentations
Experience assessing IT processes including information security, system development and change management, computer operations, and data protection
Working knowledge of Financial Services regulatory requirements, including FFIEC handbooks and relevant country‑specific regulatory bodies
Hands‑on experience applying industry frameworks such as COBIT 5, ISO 27001/27002, and NIST 800‑53
Exposure to one or more information security disciplines (e.g. forensics, secure development, threat intelligence, penetration testing)
Strong analytical skills with the ability to assess complex data and formulate sound, well‑justified risk decisions
Proven ability to manage multiple priorities with urgency and attention to detail
Excellent written and verbal communication skills, including the ability to produce clear, well‑structured documentation and reports
Ability to work effectively both independently and within global, multi‑national teams
Professional presence and ability to build strong working relationships across all organisational levels and with third‑party providers
Working with Us:
As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.
Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.
We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater
Reasonable accommodation
Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at [email protected].
We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.
Apply today and talk to us about your flexible working requirements and together we can achieve greater.
