Principal, Technology Risk & Information Security – Red Team

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

The Red Team is responsible for simulating and conducting cyber threat and penetration testing to Northern Trust systems and platforms.

The selected candidate will be responsible for:

• Executing objective-driven, threat intelligence–informed Red Team operations using adversary-appropriate attack techniques, including social engineering
• Conducting threat intelligence gathering, research, development, and execution of offensive attack techniques in support of Red Team operations.
• Performing technical testing and examinations across application, infrastructure, and enterprise environments.
• Reviewing, documenting, and reporting Red Team findings; including risk implications and recommended remediation actions.
• Supporting validation and closure of Red Team findings in collaboration with control owners and stakeholders.
• Supporting and maintaining Red Team infrastructure and develop automation through DevOps approaches.
• Researching and developing offensive security tools, scripts, and frameworks to enhance testing capabilities.
• Planning, scheduling, and supporting delivery of Red Team engagements, including milestones and reporting.
• Producing meaningful metrics and reporting related to Red Team activities and authored programs.
• Remaining informed on trends in the security industry, emerging technologies, threat actors, and attack techniques, and advise stakeholders on their relevance and impact.
• Executing responsibilities in accordance with applicable industry regulations, standards, and compliance requirements.
• Participating in cyber security incident response as required.

The ideal candidate should have a fair amount of the following skills and experience:

• Experience utilising ethical hacking techniques such as social engineering, physical security or customized scanning / scripts / tools is required.
• Knowledge of Red Team and penetration testing methodologies within enterprise environments.
• Knowledge and skill with common offensive security tooling (e.g., Cobalt Strike, Burp Suite, mimikatz, Rubeus).
• Proficiency in performing application security assessments (including source code review, vulnerability scans, web service testing, use of disassemblers/decompilers/debuggers, reverse engineering, binary analysis and disk / memory forensics).
• AV/EDR evasion techniques for well-defended environments.
• Experience with maintaining infrastructure to support testing and developing network level penetration testing measures (including wireless assessments, VoIP security, war dialing, remote pre-texting and use of network analysis tools / vulnerability scanners).
• Prior experience in a security consulting role.
• Prior experience scoping engagements and developing technical proposals.
• Demonstrated ability to work well in an individual contributor and team capacity, in particular multi-national teams.
• Proven abliity to effectively manage projects and complete multiple tasks simultaneously and efficiently while maintaining a sense of urgency and attention to detail.
• Possess excellent written and verbal communication skills. Able to prepare clearly written, organized documents, reports and communications that demonstrate proper justification and support for any conclusions and assessment results and contain correct grammar, punctuation and spelling.
• Risk management principles and information security disciplines such as security engineering, architecture, and defensive capabilities.
• Able to interact in a professional manner and develop relationships with individuals and teams at any level in Northern Trust or third party service provider.
• Current relevant offensive security certifications with a practical testing element (e.g., OSCP, OSCE, CRTO, CRTP, CRTE) is beneficial
• Bachelor’s degree in Information Technology, Management Information Systems, Computer Science or a related discipline, or equivalent practical experience.
• Experience developing or modifying offensive security tools using scripting languages such as Python or Bash.
• Financial Services experience a plus.

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.

We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.