Global Director - Vulnerability Management & Security Configuration

About Northern Trust: Northern Trust, a Fortune 500 company, is a globally recognized, award‑winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.

Global Director of Vulnerability Management & Security Configuration – defines and executes the enterprise strategy for reducing technology risk across infrastructure, cloud, and AI‑driven environments. This hands‑on, engineering‑led leadership role requires strong presence at both the executive and deep technical levels.

• Strategy & Transformation
  • Define and lead the global strategy for vulnerability management and security configuration across infrastructure (on‑prem and cloud), endpoints, and platform environments.
  • Transition capabilities from pre‑AI to AI‑enabled, including risk‑based prioritization, automation‑led remediation, and threat‑informed decisioning.
  • Align to CTEM principles and enterprise risk objectives.
• Program Execution
  • Operate and scale a global vulnerability management program, including discovery, prioritization, remediation, and governance.
  • Implement risk‑based models incorporating threat intelligence, exploitability, asset criticality, and external exposure.
  • Enforce enterprise‑wide policy and remediation standards.
• Engineering & Modernization
  • Lead automation‑first, API‑driven capabilities across the vulnerability lifecycle.
  • Integrate with enterprise platforms such as asset inventory, CI/CD, and change management systems.
  • Embed shift‑left and continuous control practices across infrastructure life cycles.
• Security Configuration
  • Define and enforce enterprise hardening baselines.
  • Implement continuous monitoring and drift detection.
  • Ensure alignment with regulatory and industry standards.
• Leadership & Governance
  • Lead a lean, high‑performing team of approximately 4 FTEs and 10 contractors.
  • Foster a hands‑on, engineering‑led culture.
  • Deliver clear executive reporting on risk, exposure, and remediation performance.
  • Drive governance, including exception management and SLA enforcement.

• 12+ years in cybersecurity with deep experience in vulnerability management and security engineering.
• Proven success building and scaling enterprise programs.
• Strong background in infrastructure / cloud security, configuration management and hardening, and Dev Sec Ops  integration (platform‑focused).
• Track record leading large‑scale transformation initiatives.

Salary Range: $164, USD.

Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts, and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well‑being benefits. A discretionary bonus program may include an equity component.

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at