About Northern Trust:
Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.
Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.
Job Description:
Infrastructure Risk and Governance – Vulnerability Management - ManagerPosition Overview:The Infrastructure Risk and Control function plays a key role in preserving and enhancing the foundational strength of Northern Trusts control environment. In support of the business operating model this function has global alignment, which is centrally managed, along with embedded control teams to ensure universal coordination and consistency in delivery. Candidates for this role need to be risk-minded, detail orientated and effective at driving efforts to conclusion. As part of the Vulnerability Management Oversight Role part of the Infrastructure Risk and Governance support team, you will Lead and provide strategic direction on Infrastructure Vulnerability related topics (e.g., Software Vulnerabilities, Configuration Vulnerabilities) and support the regional and global management owning and responsible for Vulnerability management process across platforms and technology implemented into production and non-production environment. You will be responsible to track the open vulnerabilities, identify priority based on the CVSS score, convey the priorities of the fixes to be performed and track remediation as per the priority identified. In addition, you will work with global process owners, to proactively manage and execute a control governance to reduce the opportunity for losses, errors, threats, and risks. Key Responsibilities:- Experience and in-depth understanding of key Vulnerability Management Process including Identification, Classification, Tracking, Remediation and Reporting.
- Provide strategic direction on Infrastructure Vulnerability related topics (e.g., Software Vulnerabilities, Configuration Vulnerabilities)
- Manage global Infrastructure Vulnerability Remediation effort which includes advising/guiding various global Infrastructure teams.
- Manage the Infrastructure Vulnerability Remediation Program and associated process/controls.
- Accurately report on status and progress to senior leadership and the broader Infrastructure organization.
- Lead collaboration with Infrastructure teams to prioritize and track remediation efforts.
- Maintain documentation related to Vulnerability assessments, remediation actions, and risk assessments.
- Prepare reports and presentations for stakeholders on vulnerability status and remediation progress.
- Stay updated on the latest security trends, vulnerabilities, and compliance requirements.
- Support training and awareness initiatives related to vulnerability management across Infrastructure teams.
Leadership Skills:You will need Strong leadership capabilities who can excel in effective decision making, mentoring teams, and delivering results.
- Ability to develop long-term strategies and align them with organizational goals. Also, ability to influence and inspire others toward achieving shared goals.
- Capable of analyzing complex situations to make informed decisions.
- Excellent verbal and written communication skills and ability to articulate vision and direction clearly to various stakeholders.
- Ability to make critical decisions under pressure by balancing risk and opportunity while considering long-term impact.
- Ability to inspire, motivate, and build cohesive teams with strong collaborative skills to foster partnerships with other teams/ stakeholders.
- Skilled in negotiation and handling difficult conversations.
Qualifications:- Proven Risk professional with 12+ years of Risk and Controls experience.
- 7+ years of experience in Financial Services.
- Flexibility working hours to cover North America Hours (till Noon Central Time)
- Have a good understanding of the Vulnerability management process, how vulnerability management process integrated with the change management process, understanding of CVSS score, process around exceptions in case if fixes for vulnerability cannot be implemented etc.
- Good understanding of financial services regulations, risks, and controls.
- Internal Audit or Risk related Certification (CISA, CIA, CRISC, etc.) a plus.
- Experience working at Big4 is a plus.
- Initiative-taking, self-starter who deals well with ambiguity and can execute effectively.
- Ability to challenge and influence stakeholders of differing viewpoints to reach consensus.
Working with Us:
As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.
Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.
We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater
Reasonable accommodation
Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.
We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.
Apply today and talk to us about your flexible working requirements and together we can achieve greater.
