Sr Lead, Cyber Sec IT RiskM

Posted 14 Days Ago
Be an Early Applicant
Chicago, IL, USA
Hybrid
115K-195K Annually
Senior level
Artificial Intelligence • Cloud • Fintech • Information Technology • Analytics • Financial Services • Cybersecurity
Dynamic careers. Brighter futures. Achieve greater.
The Role
Senior individual contributor who modernizes data security risk management through governance, automation, and standardized frameworks. Drives operating model design, KPI/KRI strategy, evidence frameworks, process optimization, reporting, audit/regulatory responses, and stakeholder engagement to improve control effectiveness and program maturity across the enterprise.
Summary Generated by Built In

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.  

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

Role Summary:

This is a high‑impact individual contributor responsible for modernizing how the firm manages data security risk through improved processes, automation, and standardized frameworks. The role requires strong techno‑functional cybersecurity expertise, experience shaping data security strategy, and hands‑on execution of enterprise‑wide processes.

Within the scope of the Data Protection program, he Senior Lead drives governance and performance strategy, leads KPI/KRI development, optimizes operational processes, and ensures high‑quality delivery across policies, controls, reporting, and compliance activities. The role further contributes to issue management, audit and regulatory responses, and creation of enterprise knowledge content to strengthen program maturity. The Senior Lead is expected to evolve the program from reactive, exception‑driven operations to a proactive, control‑driven model that reduces risk through standardization, automation, and preventative design.  Overall, this role strengthens operating efficiency and removes obstacles so engineers can focus on building controls that protect our Partners and Clients. This role also supports broader Data Protection work as part of a one‑team, unified effort.

Success in this role requires strong analytical and communication skills and the ability to bring clarity to ambiguous work in a matrixed organization. The Senior Lead provides non‑reporting leadership across the Data Protection team and must have the aability to influence and align multiple stakeholders across Risk, Audit, Engineering, and Business functions where ownership, processes, and expectations may be unclear or misaligned. 

This role is based in Chicago and is subject to the firm’s hybrid work policies.

Primary Responsibilities:

The Senor Lead is responsible for driving continuous improvement across the Data Protection program’s governance processes, reporting, and measurement capabilities that support the firm’s risk‑based data security program.

Governance Strategy & Operating Model

  • Lead the design and evolution of the Data Protection operating model, ensuring alignment across risk, control, and compliance frameworks (e.g., RCSA, PRC, control testing).
  • Identify and eliminate duplication or fragmentation across governance processes, driving a unified and scalable operating model.
  • Maintain governance strategy, reporting frameworks, maturity models, and operating procedures.

Operating Effectiveness & Evidence

  • Design and implement frameworks that ensure controls are supported by clear, traceable, and audit‑ready evidence.
  • Establish linkage between risks, controls, metrics, and evidence to demonstrate control effectiveness.
  • Ensure governance outputs support successful control testing, regulatory review, and external assessments.

Process Optimization & Execution

  • Identify process and workflow gaps and implement improvements to increase efficiency, consistency, and alignment.
  • Develop and continuously improve governance and monitoring processes to meet internal and regulatory requirements.
  • Ensure consistent, high‑quality execution across governance activities and outputs.

Metrics, Monitoring, & Risk Insights

  • Own the KPI/KRI strategy ensuring metrics measure control effectiveness and risk reduction.
  • Oversee development of dashboards, reporting packages, and governance artifacts (policies, standards, operating models).
  • Review and approve executive reporting, committee materials, and operational dashboards.

Program Support & Stakeholder Engagement Data Governance

  • Represent Data Protection Governance as a subject matter expert on control effectiveness, governance maturity, and risk posture in senior leadership, audit, and regulatory forums.
  • Provide advisory support on data protection governance, controls, and exception management.
  • Drive adoption of data protection practices and improve awareness across the enterprise.
  • Oversee PRC analysis, exception management, and support RCSA and related activities.
  • Provide functional leadership to analysts, ensuring consistency in execution, documentation, and evidence quality.

Skills and Experiences:

Education & Foundational

  • Bachelor’s degree in Information Security, Computer Science, Engineering, or equivalent relevant experience.
  • Experience partnering across functions (e.g., Cyber Security, Data Governance, business stakeholders) at both enterprise and business-unit levels.

Security & Governance Competency

  • Working knowledge of security frameworks (e.g., ISO, NIST).
  • Experience supporting or responding to audits, including regulatory engagements (e.g., FFIEC).
  • Familiarity with enterprise grade GRC platform (e.g., ServiceNow GRC, MetricStream, IBM OpenPages, etc.)
  • Demonstrated ability to design and operationalize evidence frameworks that validate control effectiveness and reduce audit rework.

Process Engineering & Optimization

  • Experience in process design, workflow optimization, and governance standardization.
  • Ability to design scalable operating models aligning risk, control, and compliance processes.
  • Experience implementing control monitoring frameworks tied to measurable outcomes.

Metrics, Reporting, & Analytics

  • Strong analytical skills with experience developing KPIs/KRIs and governance reporting.
  • Proficiency with reporting and visualization tools (e.g., Excel, Power BI, Tableau).
  • Familiarity with log analytics or monitoring platforms (e.g., KQL, SIEMs).

Knowledge Management & Collaboration

  • Experience with enterprise content management tools (e.g., Confluence, SharePoint).
  • Ability to influence stakeholders and drive alignment across functions without direct authority.
  • Strong communication skills with the ability to translate complex concepts into clear, actionable outputs.
  • Ability to operate autonomously and prioritize effectively in ambiguous environments.

Preferred Requirements

  • Certifications
    • CISSP, CISM, CISA, CRISC or equivalent certifications
  • Cloud, IaC, and Engineering
    • Experience with cloud platforms (e.g., Azure) and infrastructure concepts
    • Working knowledge of infrastructure as code (e.g., Terraform) and CI/CD pipelines
    • Experience with scripting or data languages (e.g., Python, SQL)
    • Exposure to automation and cloud‑native tools supporting scalable governance and monitoring

Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. Northern Trust will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)

Salary Range:

$114,500 - 194,700 USD

Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.

Working with Us: 

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater 

Reasonable accommodation

  

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at [email protected].

 
We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.

Skills Required

  • Bachelor's degree in Information Security, Computer Science, Engineering, or equivalent experience
  • Experience partnering across functions (Cyber Security, Data Governance, business stakeholders) at enterprise and business-unit levels
  • Working knowledge of security frameworks (e.g., ISO, NIST)
  • Experience supporting or responding to audits, including regulatory engagements (e.g., FFIEC)
  • Familiarity with enterprise GRC platforms (e.g., ServiceNow GRC, MetricStream, IBM OpenPages)
  • Ability to design and operationalize evidence frameworks that validate control effectiveness
  • Experience in process design, workflow optimization, and governance standardization
  • Experience implementing control monitoring frameworks tied to measurable outcomes
  • Strong analytical skills with experience developing KPIs/KRIs and governance reporting
  • Proficiency with reporting and visualization tools (Excel, Power BI, Tableau)
  • Familiarity with log analytics or monitoring platforms (e.g., KQL, SIEMs)
  • Experience with enterprise content management tools (Confluence, SharePoint)
  • Ability to influence stakeholders and drive alignment without direct authority; strong communication skills
  • Ability to operate autonomously and prioritize effectively in ambiguous environments
  • Certifications such as CISSP, CISM, CISA, CRISC
  • Experience with cloud platforms (e.g., Azure), infrastructure as code (Terraform), and CI/CD pipelines
  • Experience with scripting or data languages (e.g., Python, SQL)
  • Exposure to automation and cloud-native tools supporting scalable governance and monitoring
  • Authorized to work in the U.S. without employment-based visa sponsorship

Northern Trust Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Northern Trust and has not been reviewed or approved by Northern Trust.

  • Retirement Support Retirement offerings are positioned as a standout, with a 401(k) plus an additional employer-funded pension described as a differentiator. This combination is repeatedly framed as a meaningful offset within total rewards, especially for long-term financial security.
  • Leave & Time Off Breadth Time-off benefits are depicted as generous, spanning paid time off, holidays, and dedicated paid volunteer time. The breadth of leave options is highlighted as a consistent strength that supports work-life balance.
  • Healthcare Strength Health coverage is characterized as comprehensive, typically including medical, dental, vision, and mental-health support through an assistance program. The offering is portrayed as robust and family-supportive, with multiple plan options in some descriptions.

Northern Trust Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Chicago, IL
24,000 Employees
Year Founded: 1889

What We Do

As a global leader in innovative wealth management, asset servicing and investment solutions, Northern Trust (Nasdaq: NTRS) is proud to guide the world’s most successful individuals, families and institutions by remaining true to our enduring principles of service, expertise and integrity. A globally recognized Fortune 500 Company in continuous operation since 1889, we’ve built a legacy of empowering clients to reach their goals with confidence. Since our roots as a trust bank, we’ve grown to a global presence with more than 24,000 employees in more than 20 countries and across six core business units: Wealth Management Asset Management Asset Servicing Technology Corporate Functions Enterprise Operations Join a Team That’s Achieving Greater At Northern Trust, we refer to our employees as partners – with good reason. We understand that relationships are the key to our success. Here you’ll join a diverse and inclusive team of innovators with the drive to challenge the way things have always been done. Instead of choosing between a dynamic career and work-life balance, enjoy working with a team that supports your goals in the office and at home. We’ll help you get where you want to go without sacrificing what matters most to you. Delivering value and adhering to our enduring principles What are enduring principles? Since our founding, they have guided our strategy and success. Thanks to the dedication of our partners, Northern Trust continues to thrive by adhering to three enduring principles: service, expertise and integrity . What does this mean? Service Northern Trust has a relentless drive to provide exceptional service to our clients, our partners and our communities. We set new standards and go above and beyond in our commitment to delivering greater results. Expertise Expertise is at the core of who we are. We focus sharply on what we do well. From expanding our capabilities, to hiring talented professionals to developing innovative solutions, our expertise is why we continue to be a trusted advisor for generations of families and institutions. Integrity Operating with uncompromising ethics is central to Northern Trust’s heritage. As a result, our clients, partners and communities know they can rely on us. For more than 130 years, our integrity has been our guide – and that will never change.

Why Work With Us

At Northern Trust, we go further because we go together. We embrace flexibility, encourage balance, and prioritize inclusion at all levels, working together to keep you connected. We are committed to our employees—all 24,000 of them. Whether this is a first step or a bold new leap in your career, we’re here to help you move forward.

Gallery

Gallery

Similar Jobs

Caterpillar Logo Caterpillar

Sr Digital Tech Support Engr

Artificial Intelligence • Cloud • Internet of Things • Software • Cybersecurity • Industrial
Hybrid
Chicago, IL, USA
100000 Employees
113K-183K Annually

Caterpillar Logo Caterpillar

Senior Software Engineer

Artificial Intelligence • Cloud • Internet of Things • Software • Cybersecurity • Industrial
Hybrid
Chicago, IL, USA
100000 Employees
113K-183K Annually

Caterpillar Logo Caterpillar

Analytics Manager

Artificial Intelligence • Cloud • Internet of Things • Software • Cybersecurity • Industrial
Hybrid
Peoria, IL, USA
100000 Employees
148K-240K Annually

Caterpillar Logo Caterpillar

Business Intelligence Analyst

Artificial Intelligence • Cloud • Internet of Things • Software • Cybersecurity • Industrial
Hybrid
Peoria, IL, USA
100000 Employees
98K-146K Annually

Similar Companies Hiring

Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees
Kepler  Thumbnail
Fintech • Software
New York, New York
6 Employees
Onshore Thumbnail
Artificial Intelligence • Fintech • Software • Financial Services
New York, New York
60 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account