As a global leader in innovative wealth management, asset servicing, asset management and banking services, Northern Trust (Nasdaq: NTRS) is proud to guide the world’s most successful individuals, families, corporations and institutions.
Since 1889, we have aligned our efforts with our three guiding Principles That Endure: Service, Expertise, and Integrity. Together, they reflect the three cornerstones of business conduct which we strive to instill in our employees, whom we call partners, and to provide to our clients and the communities we serve worldwide.
With more than 135 years of financial experience and over 24,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.
Northern Trust is seeking a Global Director of Vulnerability Management & Security Configuration to define and execute the enterprise strategy for reducing technology risk across infrastructure, cloud, and AI-driven environments.
This leader will drive the evolution from traditional vulnerability management to a modern, AI-enabled, risk-based capability, leveraging automation, contextual prioritization, and advanced analytics to reduce attack surface at scale.
This is a hands-on, engineering-led leadership role requiring strong presence at both the executive and deep technical levels.
Strategy & Transformation
Define and lead the global strategy for vulnerability management and security configuration across:
Infrastructure (on-prem & cloud), endpoints, and platform environments
Transition capabilities from pre-AI to AI-enabled, including:
Risk-based prioritization
Automation-led remediation
Threat-informed decisioning
Don't want to miss the next one?
Subscribe to daily email alerts for roles matching your interests.
Align to CTEM principles and enterprise risk objectives
Program Execution
Operate and scale a global vulnerability management program, including:
Discovery, prioritization, remediation, and governance
Security configuration and continuous compliance
- Implement risk-based models incorporating:
Threat intelligence and exploitability
Asset criticality and external exposure
Enforce enterprise-wide policy and remediation standards
Security Configuration
Define and enforce enterprise hardening baselines
Implement continuous monitoring and drift detection
Ensure alignment with regulatory and industry standards
Leadership & Governance
Lead a lean, high-performing team (~4 FTE, ~10 contractors)
Foster a hands-on, engineering-led culture
Deliver clear executive reporting on risk, exposure, and remediation performance
Drive governance including exception management and SLA enforcement
Qualifications
12+ years in cybersecurity with deep experience in vulnerability management and security engineering
Proven success building and scaling enterprise programs
- Strong background in:
Infrastructure / cloud security
Configuration management and hardening
DevSecOps integration (platform-focused)
Track record leading large-scale transformation initiatives
Why This Role Matters
This role is central to advancing Northern Trust’s ability to proactively manage cyber risk in an AI-driven landscape, shifting from reactive vulnerability management to a scalable, intelligence-led capability.
Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. Northern Trust will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)
Salary Range:
$164,600 - 288,000 USD
Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.
Work Authorization
Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. Northern Trust will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa).
Working with Us
As a Northern Trust partner, you will be part of a flexible and collaborative work culture, which has a strong history of financial strength and stability. Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to an inclusive workplace and assisting the communities we serve.
Philanthropy is deeply rooted in Northern Trust’s history and is an essential element of our culture. Employees around the world give their time and talent to work for the greater good of their communities.
Reasonable Accommodation
Northern Trust is committed to working with and providing adjustments to individuals with health conditions and disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com, or alternatively you can discuss your individual requirements with the recruiter you are working with.
Similar roles you might like
More openings like this one — take a look before you go.