Manager, Information Security Risk
The Information Security and Technology Risk team is seeking an experienced Information Security Risk Manager. Northern Trust (NT) is committed to reducing cyber risk through the implementation of a robust risk management framework oriented around the lines of defense model. The Information Security Risk Manager will help to manage overall efforts of the Information Security Risk second line practice area including cybersecurity testing, risk assessments, consulting and identity / access management validation. Duties include providing leadership, consultative guidance and participation in information security decisions with peers and senior management.
As lead for the program you will:
• Have strong technical proficiency in the field of information security• Contribute to the development and implementation of information security risk framework, policy and reporting• Provide technical and risk management guidance during the execution of activities• Oversee validation efforts, including technical security testing• Be comfortable in developing and delivering communications to a variety of audiences, including senior stakeholders• Liaise with Audit and be point of contact for regulatory engagement• Have experience managing programmes and / or service delivery
Knowledge / Skills
• Excellent written and verbal communication skills• Ability to work collaboratively and challenge constructively• Extensive knowledge of systems security architecture, excellent consultative skills, strong analytical ability and ability to work effectively with clients and IT management and staff. Analytical skills are needed to analyse and evaluate technical information• Knowledge of basic system, network, and operating system hardening techniques • Knowledge of Information Assurance (IA) principles and tenets (confidentiality, integrity, availability, authentication, non-repudiation) • Knowledge of network security architectures, Defence-In-Depth principles, and technology administration security concepts• Knowledge of what constitutes a security or technology "threat" to a large enterprise
Experience
• Bachelor degree in Computer Science or other related discipline and at least 10 or more years of information security, technology, and technology risk-focused experience. • Relevant industry certifications such as CISSP, CISM, CRISC, OSCP, or GPEN• Experience with core concepts and implementations of identity and access management solutions• Experience in working with senior level stakeholders in a consultative and/or advisory capacity• Experience in presenting to executive management• Experience with enterprise risk assessment methodologies• Experience in project delivery/programme management• Experience in a financial services environment
About Northern Trust:
Northern Trust provides innovative financial services and guidance to corporations, institutions and affluent families and individuals globally. With over 130 years of financial experience and nearly 20,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.
Working with Us:
As a Northern Trust partner, you will be part of a flexible and collaborative work culture, which has a strong history of financial strength and stability. Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company that is committed to strengthening the communities we serve!
We recognize the value of inclusion and diversity in culture, in thought, and in experience, which is why we are honored to receive the following awards in 2021: •Gender Equality Index Member, Bloomberg•Top Financial & Banking Company, Black EOE Journal, Hispanic Network Magazine, Professional WOMAN'S Magazine
We'd love to learn more about how your interests and experience could be a fit with one of America's best banks and most sustainable companies! Build your career with us and apply today.