Insider Threat Risk Management Lead
2 weeks ago
Northern Trust is a leading global financial institution with a rich history dating back to 1889. As a Fortune 500 company, we have established ourselves as a trusted partner for individuals, families, and institutions seeking innovative financial services and guidance.
Job SummaryWe are seeking an experienced Insider Threat Risk Lead to join our team. This role will play a critical part in maturing our ability to detect, prevent, and remediate insider threat activity. The successful candidate will conduct technical analysis of security event data and investigations into violations of company policy using a range of security operations tools.
Key Responsibilities- Develop Detection Rules: Create and implement detection rules to identify and prevent insider threat activities within our security tools, including Security Information & Event Management (SIEM), User Entity & Behavior Analytics (UEBA), Data Loss Prevention (DLP), and cloud security technologies.
- Lead Investigations: Conduct thorough investigations into violations of our Acceptable Use Policy, ensuring all investigations comply with corporate policies and applicable regulatory frameworks.
- Incident Response and Investigations: Utilize technical expertise to conduct incident response and investigations, including digital forensics, OSINT, data analysis, and threat hunting.
- Program Initiatives: Lead program initiatives, including the development of program documentation, tabletop exercises, threat intelligence briefs, crown jewels assessments, and standard operating procedures.
- Metrics and Reporting: Develop and present meaningful metrics, KRIs, and KPIs to measure risks, trends, and control effectiveness.
- Risk Assessments and Controls Validation: Conduct risk assessments and controls validation testing to identify opportunities to strengthen the control environment.
- Stakeholder Engagement: Establish and manage close relationships with program stakeholders and business representatives.
- Technical Expertise: Direct experience performing monitoring, tuning, and/or writing detection rules in tools such as SIEM, UEBA, DLP, and cloud security technologies.
- Investigative Experience: Experience performing digital forensics, incident response, OSINT, data analysis, and/or threat hunting.
- Scripting and Querying: Familiarity with script/query languages such as KQL, PowerShell, and/or Python.
- Risk Management: Experience conducting risk assessments and/or controls validation testing.
- Project Management: Project or program management experience.
- Investigative Interviewing: Formal investigative interviewing and/or report writing experience.
- Cybersecurity Frameworks: Familiarity with cybersecurity frameworks (e.g., NIST) and data privacy concepts.
- Operating Systems and Networking: Strong understanding of computer operating systems, networking protocols, and IT infrastructure/cloud technologies.
- Teamwork and Communication: Demonstrated ability to work well in both an individual contributor and team capacity, with multi-national teams.
A minimum of 5-8 years of professional experience performing in-depth security operations analysis of insider or external cyber threat activity, data loss, or related investigations. Technical or investigative certifications such as EnCE, GCFE, CISSP, GCIH, CEH, CFE, PMP or CRISC are a plus.
-
Insider Threat Risk Manager
4 weeks ago
Chicago, Illinois, United States Northern Trust Full timeAbout Northern Trust:Northern Trust is a distinguished financial institution, recognized globally and a member of the Fortune 500, with a legacy of excellence since 1889.We are dedicated to delivering innovative financial solutions and guidance to the world's most successful individuals, families, and organizations, adhering to our core principles of...
-
Cybersecurity Threat Assessment Leader
4 weeks ago
Chicago, Illinois, United States Bank of America Full timePosition Overview:The Cybersecurity Threat Assessment Leader plays a pivotal role in the Cyber Threat Defense organization at Bank of America. This position is designed for individuals who are passionate about enhancing financial security through proactive engagement and collaboration with various stakeholders.Location:Remote options available across the...
-
Risk Management Specialist
17 minutes ago
Chicago, Illinois, United States Origami Risk Full timeJob Title: Account ExecutiveOrigami Risk is seeking a highly skilled Account Executive to join our team. As an Account Executive, you will be responsible for identifying opportunities and closing additional revenue from assigned clients, including upselling and cross-selling of related products.Key Responsibilities:Maintain and grow strategic client...
-
Lead Associate, Risk Operations
4 weeks ago
Chicago, Illinois, United States The Options Clearing Corporation Full timeKey Responsibilities:This position plays a vital role in supporting the Director of Operational Risk by assessing information technology and security vulnerabilities. You will contribute to risk evaluations and implement elements of the risk management framework throughout various processes, controls, and risk assessments.Core Functions:1. Assist in...
-
Senior Cyber Threat Intelligence Analyst
4 weeks ago
Chicago, Illinois, United States Bank of America Full timePosition Title: Senior Cyber Threat Intelligence AnalystLocation: Various LocationsPosition Overview:The Senior Cyber Threat Intelligence Analyst plays a crucial role within the Cyber Threat Hunting, Intelligence & Defense team at Bank of America. This team is dedicated to enhancing the bank's cybersecurity framework through extensive research, intelligence...
-
Cyber Threat Intelligence Senior Analyst
1 week ago
Chicago, Illinois, United States Bank of America Full timeCyber Threat Intelligence Senior AnalystAt Bank of America, we are committed to helping our customers achieve their financial goals through the power of every connection. As a Cyber Threat Intelligence Senior Analyst, you will play a critical role in helping us achieve this goal by providing timely and actionable intelligence to reduce risk to the Bank and...
-
Head of Risk Management
2 weeks ago
Chicago, Illinois, United States The Equus Group Full timeJob OverviewThe Equus Group is seeking a highly skilled Head of Risk Management to lead the firm's risk management strategy. This individual will oversee all aspects of risk across the firm's real estate investments and operational areas, with particular emphasis on market, credit, operational, insurance, and cybersecurity risks.Key ResponsibilitiesDevelop...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every aspect of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every aspect of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every aspect of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every aspect of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every facet of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every facet of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every aspect of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every facet of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing a culture where safety, security, and resiliency are integrated into every facet of Google.Key...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be essential in developing innovative strategies and programs that drive sustainable effectiveness.Key ResponsibilitiesCollaborate with...
-
Cybersecurity Threat Hunter
3 weeks ago
Chicago, Illinois, United States Bank of America Full timeJob SummaryThe Senior Threat Hunter will be responsible for analyzing and correlating large data sets to uncover novel threats and attack techniques that may be present within Bank of America's environments.Key ResponsibilitiesAnalyze and correlate large data sets to identify potential security threatsCollaborate with data science, threat research, and cyber...
-
IT Risk Management Specialist
2 weeks ago
Chicago, Illinois, United States BCforward Full timeAbout the RoleWe are seeking a highly motivated IT Risk Analyst to join our team at BCforward. As an IT Risk Analyst, you will play a critical role in identifying and mitigating risks associated with our clients' IT systems.Key ResponsibilitiesAssess and analyze IT risks to identify potential threats and vulnerabilitiesDevelop and implement risk mitigation...
-
Strategic Risk Manager
1 week ago
Chicago, Illinois, United States Google Full timeAbout the RoleAs a member of Google's Global Security and Resilience Services (GSRS) team, you will play a critical role in helping us anticipate, deter, detect, and act on potential security threats. Your expertise will be instrumental in developing innovative strategies and programs that drive sustainable effectiveness.Key ResponsibilitiesCollaborate with...
