About Northern Trust:
Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.
Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.
Responsible for managing an Information Data Security Operations and Support group. The Information Security Operations and Support function includes the Data Security Incident Response, Data Protection Management, and Data protection engineering teams. Collectively these teams are responsible for the identification, analysis, and mitigation of threats to internal IT systems or networks and delivering solutions that meet end-user expectations relative to performance, usability and security of Sensitive Data. Conducts performance management and career development processes, and staffing and disciplinary actions.
Major Duties :
Leads and aligns Data Security and Security Governance priorities with the organization’s mission and vision. Works with senior management and the support team develop the security strategy and plan and ensures objectives are met
Works towards establishing an overall enterprise data security support program by aligning business processes, IT software and hardware, local and wide area networks, people, operations, and projects with the organization’s overall security strategy
Evaluates proposals to determine if proposed data security solutions effectively address enterprise requirements, as detailed in solicitation documents. Identifies alternative functional security strategies to address organizational IT security concern
Monitors and evaluates the effectiveness of the enterprise's data security safeguards to ensure they provide the intended level of protection
Interprets and/or approves security requirements relative to the capabilities of new information technologies. Manages the monitoring of external threat intelligence data sources to maintain enterprise situational awareness
Has expertise in reporting data protection metrics in formats needed by auditors and stakeholders. Working experience in reporting tools like PowerBI/ Tableau / Qlick view etc.
Ensures that security incidents from the Security Incident Response Team are communicated to senior management in Information Technology and Corporate Risk Management
Seasoned multi-disciplinary expert with extensive technical and / or business knowledge and functional expertise
Focus of role is on support of execution of strategic direction of business function activities related to the protection of sensitive that includes but not limited to PII, PCI, and PHI data types
Carries out complex initiatives involving multiple disciplines and/or ambiguous issues related to data governance and privacy
Displays a balanced, cross-functional perspective, liaising with the business to improve efficiency, effectiveness and productivity
Conducts performance management and career development processes, provides input for staffing and disciplinary actions and provides hands-on training to staff
Develops periodic goals, organizes the work, sets short-term priorities, monitors all activities, and ensures timely and accurate completion of the work.
Provides input and support to budget management process
Knowledge/Skills:
Excellent oral and written communication skills are required
Highly flexible and adaptable to change
Working Knowledge of information assurance principles, information security program management and project management principles and techniques
Working Knowledge of what constitutes a threat to a network and knowledge of incident response and handling methodologies
Working Knowledge of industry-standard and organizationally accepted analysis principles and methods
Working Knowledge of network architecture concepts including topology, protocols, and components and network management principles, models, and tools
Working Knowledge of network security architecture, including the application of Defense-In-Depth principles and knowledge of network traffic analysis methods
Working Knowledge of server administration and systems engineering theories, concepts, and methods
Working Knowledge of server and client operating systems
Working Knowledge of system administration concepts for Unix/Linux and/or Windows operating systems
Leadership and organizational skills are required to determine the Business Unit's goals, resources needed, and to assess and develop the skills of staff
Strong analytical skills. Ability to communicate security and data governance related concepts to a broad range of technical and non-technical staff both verbally and in writing.
Ability to manage multiple tasks simultaneously and meet established deadlines. Ability to collaborate with all IT teams on security-related incidents, tasks and projects. Ability to work productively while remote and communicate effectively in a virtual team environment.
Ability to stay current with new technology. Extensive knowledge of protection solutions and technologies for Data Loss Prevention (DLP) Experience implementing and managing data loss prevention (DLP) solutions. Experience with DLP for Windows, Linux, Mac operating systems.
Experience with DLP in multi-Cloud environments. Experience utilizing security and data governance best-practices to for DLP solutions. 8+ years Information Security experience.
5+ years in a management role. Education & Certifications A Bachelor's degree in Information Security, Computer Science, Information Systems, or another related field is preferred, but not required. A CISSP certification is preferred, but not required
A College or University degree and/or relevant proven work experience in the area of Information Security is required.
Total experience of 18+ years in software and IT industry.
5+ years in a management role. Education & Certifications A Bachelor's degree in Information Security, Computer Science, Information Systems, or another related field is preferred, but not required.
Current knowledge of recent Information Security and Data Protection technologies and Frameworks (Cloud, DevOps, Micro services, Spring, React, REST etc.)
Expert experience with report visualization (Excel, PowerPoint, Tableau, Power BI, etc.)
Excellent communication skills
Strong analytical and problem-solving skills
Strong organizational and facilitation skills
Ability to work autonomously, under pressure, and to prioritize tasks
Industry certification such as CISSP, CISM, CISA, GIAC is preferred.
Experience with information security scanning technologies; configuration and execution (5+ years)
Working with Us:
As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.
Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.
We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater
Reasonable accommodation
Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.
We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.
Apply today and talk to us about your flexible working requirements and together we can achieve greater.
Let our experts design a Professional CV for you.