Principal, Cyber Security - Governance, Risk and Controls (GRC)

Welcome to Northern Trust, a leading global provider of financial services and asset management. We are seeking a highly experienced and dynamic individual to join our team as Principal, Cyber Security - Governance, Risk and Controls (GRC). In this role, you will be responsible for developing and implementing the overall strategy for cyber security governance, risk management, and controls across our organization. We are looking for a candidate who is passionate about protecting our company and clients from cyber threats, and has a strong background in GRC. If you are a strategic thinker, a strong leader, and have a deep understanding of the evolving cyber security landscape, we encourage you to apply for this exciting opportunity.

• Develop and implement the overall strategy for cyber security governance, risk management, and controls across the organization.
• Lead and oversee all aspects of cyber security GRC, including risk assessments, compliance monitoring, and policy development.
• Collaborate with cross-functional teams, including IT, legal, and compliance, to ensure alignment and adherence to cyber security standards and regulations.
• Stay abreast of industry trends and emerging cyber threats to continuously enhance the company's cyber security posture.
• Conduct regular audits and assessments to identify potential vulnerabilities and develop mitigation strategies.
• Facilitate training and awareness programs to educate employees on cyber security best practices.
• Serve as a subject matter expert and provide guidance and support to various business units on cyber security GRC matters.
• Develop and maintain relationships with external partners, vendors, and regulators to stay informed of industry developments and best practices.
• Monitor and report on key performance indicators and metrics related to cyber security GRC.
• Lead incident response efforts in the event of a cyber security breach, and develop and implement remediation plans.
• Manage a team of cyber security professionals, providing mentorship and guidance to ensure the team's success.
• Participate in budget planning and resource allocation for cyber security GRC initiatives.
• Uphold and promote a strong culture of cyber security awareness and compliance throughout the organization.
• Identify and implement process improvements to enhance the efficiency and effectiveness of cyber security GRC operations.
• Represent the company in external forums and industry events as a thought leader in cyber security GRC.

Northern Trust is an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based upon race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.