Cybersecurity compliance principal

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.

Role/ Department:

This role will sit in the Cybersecurity Governance, Risk and Compliance (GRC) team within Northern Trust's Technology function (1st Line of Defense). The Cybersecurity GRC Compliance Principal will act as an experienced subject matter expert driving the operation and enhancement of the functions of the team, which include monitoring and adherence to cyber rules and regulations, controls oversight and assurance, and co-ordination of cyber controls information and evidence to regulators, auditors and clients. The ideal candidate will combine deep subject matter expertise in both cybersecurity and assurance (audit or compliance) disciplines, and have exceptional communication and stakeholder management skills.

The key responsibilities of the role include:

• Lead the technical direction and development of cyber compliance and assurance initiatives, providing expert guidance and support.
• Act as a central point of coordination and subject matter expert for cyber controls information and evidence requests, including SOC2 and SOX testing and reporting for all cyber controls.
• Interface with Internal Audit for all cyber audits, providing expertise, consolidation, and coordination.
• Facilitate the production of information and evidence on cyber controls for regulatory requests.
• Facilitate the production of information and evidence on cyber controls for client requests, supporting new client revenue generation and existing client retention.
• Oversee and ensure adherence to all cyber-related regulatory requirements in all jurisdictions globally in which Northern Trust operates, leading action to address new requirements.
• Provide oversight, tracking, analysis, and reporting of all cybersecurity issues and findings to ensure timely, complete, and compliant remediation.
• Proactively work with the broader Cybersecurity team to ensure new products, services, and processes are built and operated in a controlled and compliant manner.
• Engage with a range of senior stakeholders across Lines of Defense to ensure cybersecurity regulations and internal control requirements are well understood and embedded in business and technology practices.

Skills/Qualifications:

• Bachelor's or Master's degree in Information Security, Computer Science, or a related field.
• Minimum of 10 years of experience in cybersecurity, with a focus on assurance or audit.
• Extensive knowledge of cyber regulations, risk management frameworks, and methodologies.
• Proven experience in technical leadership roles, influencing executive stakeholders.
• Strategic thinker with a strong understanding of cyber threats, vulnerabilities, and risk mitigation options.
• Innovative thinker and adaptable to change.
• Exceptional communication and presentation skills, capable of translating technical risk into business terms.
• Excellent analytical, problem-solving, and decision-making skills.
• Relevant certifications such as CISSP, CISM, CRISC, or similar.

Salary Range:

$114,700 - 194,900 USD

Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We'd love to learn more about how your interests and experience could be a fit with one of the world's most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at [email protected] .

We hope you're excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.