Principal, GRC Cyber Risk Management

Northern Trust Corp

Tempe, AZ

JOB DETAILS
SALARY
$108,965–$185,155 Per Year
SKILLS
Analysis Skills, Artificial Intelligence (AI), Asset Management, Automation, Banking Services, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Computer Science, Continuous Improvement, Data Analysis, Emerging Technology, Establish Priorities, Financial Risk Management, Global Financial Markets, ISO (International Organization for Standardization), Information/Data Security (InfoSec), Internet Security, Leadership, Metrics, Predictive Modeling, Presentation/Verbal Skills, Problem Solving Skills, Process Capability, Process Improvement, Regulations, Reporting Skills, Risk, Risk Analysis, Risk Management, Risk Management Framework (RMF), Security Analysis, Security Architecture, Security Attacks, Team Player, Technical Leadership, Trend Analysis, U.S. National Institute of Standards and Technology (NIST), Wealth Management, Web Analytics, Web Application Framework
LOCATION
Tempe, AZ
POSTED
2 days ago

About Northern Trust

As a global leader in innovative wealth management, asset servicing, asset management and banking services, Northern Trust (Nasdaq: NTRS) is proud to guide the world's most successful individuals, families, corporations and institutions.

Since 1889, we have aligned our efforts with our three guiding Principles That Endure: Service, Expertise, and Integrity. Together, they reflect the three cornerstones of business conduct which we strive to instill in our employees, whom we call partners, and to provide to our clients and the communities we serve worldwide.

With more than 135 years of financial experience and over 24,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.

Role/ Department:

This role sits within Northern Trust's Cybersecurity Governance, Risk and Compliance (GRC) organization, an integral part of the strategic evolution of cyber risk management capabilities across the enterprise.

The Cyber Risk Principal will partner with peers to drive the modernization of cyber risk identification, intelligence integration, assessment methodologies, and executive risk reporting. The role requires a forward-looking team player who understands how cybersecurity, cyber threat intelligence, data analytics, automation, and artificial intelligence are reshaping enterprise risk management within global financial institutions.

The ideal candidate combines strong cyber risk management expertise with the ability to leverage data-driven insights, threat intelligence, emerging technologies, and AI-enabled capabilities to improve risk visibility, prioritization, and decision-making.

The key responsibilities of the role include:

  • Lead the identification, assessment, prioritization, and reporting of cyber risks across the enterprise

  • Drive the evolution of cyber risk management toward data driven decision making by integrating cyber threat intelligence, attack surface insights, vulnerability trends, and control effectiveness metrics into enterprise cyber risk reporting

  • Conduct cyber risk assessments, thematic reviews, and cyber maturity assessments aligned to industry frameworks and regulatory expectations

  • Develop forward-looking cyber risk reporting that provides actionable insights to executive leadership, risk committees, and regulators

  • Partner with cyber domain experts (e.g., security operations, architecture) to improve risk reduction outcomes

  • Enhance cyber risk intelligence capabilities through analytics, automation, and AI-enabled processes

  • Drive continuous improvement in cyber risk methodologies, governance processes, and reporting capabilities

  • Translate highly technical cyber risks into clear business impact narratives and strategic recommendations

  • Evaluate emerging threats, including e.g., AI capabilities to determine enterprise cyber risk implications

  • Contribute to the development of risk metrics, KRIs, KCIs, maturity indicators, and predictive cyber risk analytics

  • Collaborate across Lines of Defense to strengthen enterprise cyber resilience and operational risk visibility

Skills/ Qualifications:

  • Bachelor's degree in Information Security, Computer Science, or a related field; Master's degree preferred

  • Minimum of 10 years of experience in cybersecurity, with a focus on risk managementExtensive knowledge of cyber risk management frameworks and methodologies including NIST CSF, FAIR, MITRE ATT&CK, CRI, ISO 27001, and related industry practice

  • Strong understanding of modern cyber threat landscapes, attack methodologies, adversary behaviors, and emerging technology risks

  • Experience leveraging AI, analytics, automation, or data engineering capabilities to improve cyber risk management processes

  • Understanding of cyber intelligence concepts including threat actor analysis, attack trends, external intelligence sources, and operational risk correlation

  • Demonstrated ability to design and mature cyber risk reporting capabilities for executive leadership and regulatorsExceptional communication and presentation skills, capable of translating technical risk into business terms

  • Excellent analytical, problem-solving, and decision-making skills

  • Relevant certifications such as CISSP, CISM, CRISC or similar

Salary Range:

$108,965 - 185,155 USD

Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.

Work Authorization

Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. Northern Trust will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa).

Working with Us

As a Northern Trust partner, you will be part of a flexible and collaborative work culture, which has a strong history of financial strength and stability. Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to an inclusive workplace and assisting the communities we serve.

Philanthropy is deeply rooted in Northern Trust's history and is an essential element of our culture. Employees around the world give their time and talent to work for the greater good of their communities.

Reasonable Accommodation

Northern Trust is committed to working with and providing adjustments to individuals with health conditions and disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com, or alternatively you can discuss your individual requirements with the recruiter you are working with.

About the Company

N

Northern Trust Corp