Home
Jobs
Northern Trust
Lead, Cyber Security IT Risk Management (DLP)

Lead, Cyber Security IT Risk Management (DLP)

On site

London, United Kingdom

Full Time

22-04-2025

Share this job:

Score my CV Apply

Job Specifications

About Northern Trust

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

Role/ Department

Northern Trust is seeking an engineer who has extensive and practical experience in Information and Data Loss Prevention. The successful candidate should have hands on experience in the implementation of setting up policies, process, architecture around DLP solutions, including incident resolution, troubleshooting, and root cause analysis. Provide Level III technical support. They should be able to debug problems arising as a result of DLP policy implementations and should be able to understand the implications of these This position will be part of Data Protection team, and will be the EMEA Lead for the team’s Data Loss Prevention work.

The Key Responsibilities Of The Role Include

Develop and implement various types of policies including data loss prevention, file type, cloud app control and tenant restrictions within the Zscaler platform.
Work with internal stakeholders to capture the requirements, analyze and implement for effective DLP enforcement.
Monitor DLP alerts, investigate potential data breaches triggered by policy violations, and take appropriate actions to mitigate risks, including user access restrictions or escalation to security teams.
Generate reports on DLP activity, including data leakage trends, false positive rates, and policy effectiveness, to inform security strategy and compliance requirements.
Provide technical assistance on DLP related issues, troubleshooting configuration problems, and addressing questions about policy implementation and best practices.
Familiarity with network protocols, security concepts like firewalls, proxy servers, and network traffic analysis to identify potential data breaches.
Assisting the Implementation of Data Loss Prevention and guide on unit testing, and support documentation.
Determining operational feasibility by evaluating, analyzing, problem definition, requirements, solution development, and proposing solutions.
Collaborating with Enterprise Architecture and Security Authority organization’s as needed.
Reviewing documentation, processes or procedures, and recommends where automation or improvements can be implemented.
Operating independently; has in-depth knowledge of business unit/function; accomplishes engineering and organization mission by completing related results as needed.
As subject area expert, provides comprehensive, in-depth consulting and leadership to team and partners.
Information Technology experience including Zscaler DLP, Broadcom DLP, Secure Email, Azure Security with AIP, MIP and MCAS
Deep knowledge of data loss prevention principles, data classification methodologies, regular expressions, and data masking techniques.
An In-depth understanding of information security, Risk Management Framework
An In-depth understanding of information security, network management, operating systems, software development, database systems and information technology is beneficial
Excellent oral and written communication skills are required
Strong analytical, organizational, and problem-solving skills are required
Must be highly flexible and adaptable to change
Experience in a highly regulated environment, specific experience with FFIEC, OSFI, PCI-DSS, SOX preferred

Skills/ Qualifications

Proven work experience.
Information Security Certification

Working With Us

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.

We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.

About the Company

As a global leader in innovative wealth management, asset servicing and investment solutions, Northern Trust (Nasdaq: NTRS) is proud to guide the world’s most successful individuals, families and institutions by remaining true to our enduring principles of service, expertise and integrity. A globally recognized Fortune 500 Company in continuous operation since 1889, we’ve built a legacy of empowering clients to reach their goals with confidence. Since our roots as a trust bank, we’ve grown to a global presence with more th... Know more

Related Jobs

Company Name: Capco
Job Title: Security Engineer (Mid Level)
Job Description: Joining Capco means joining an organisation that is committed to an inclusive working environment where you’re encouraged to #BeYourselfAtWork. We celebrate individuality and recognize that diversity and inclusion, in all forms, is critical to success. It’s important to us that we recruit and develop as diverse a range of talent as we can, and we believe that everyone brings something different to the table – so we’d love to know what makes you different. We understand that you may need us to make changes to our process to allow you the best possible platform to succeed, and we are happy to cater to any reasonable adjustments you may require. You will find the section to let us know of these at the bottom of your application form or you can mention it directly to your recruiter at any stage and they will be happy to help. Why Join Capco? Capco is a global technology and business consultancy focused on the financial services sector. We are passionate about helping our clients succeed in an ever-changing industry. You will work on engaging projects with some of the largest banks in the world, transforming the financial services industry. We Are/have Experts across Capital Markets, Insurance, Payments, Retail Banking, and Wealth & Asset Management. Deep knowledge in financial services offerings, including Finance, Risk and Compliance, Financial Crime, and Core Banking. Committed to growing our business and hiring the best talent to help us get there. Focused on maintaining our nimble, agile, and entrepreneurial culture. The Role We are looking for engineers who want to play a key part in supporting the evolution of the Financial Services industry one project at a time. You will be expected to be a strong team player who prides themselves on delivering modern, first class cloud based platforms through practicing best in class Agile ways of working at all times. Responsibilities Develop and execute advanced security engineering strategies to fortify infrastructure, networks, and cloud environments. Lead security initiatives across the SDLC, integrating Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and Container scanning using tools such as CheckmarxOne, Prisma Cloud, or equivalents. Collaborate with cross-functional teams to embed security-by-design principles in all engineering efforts. Design and implement robust endpoint protection and cloud security solutions to defend against evolving threats. Implement and monitor cloud configurations to align with compliance standards and best practices, focusing on proactive defense mechanisms. Develop a comprehensive strategy for data protection (encryption, tokenization, masking) across the data lifecycle. Oversee security tool integration in CI/CD pipelines to automate vulnerability detection and resolution. Conduct vulnerability assessments, network security audits, and code reviews to ensure application and infrastructure security. Guide engineering teams to adopt secure development practices and ensure continuous improvement in security maturity. Monitor and test new security tools to enhance the organization’s defenses against emerging threats. Skills & Expertise Strong knowledge of application security, secure coding practices, and tools like CheckmarxOne, Prisma Cloud, or similar platforms. Proficiency in SAST, DAST, SCA, and Container scanning, with hands-on experience integrating these tools into development pipelines. Extensive experience in endpoint security, cloud security, and network protection. Proficient in cloud platforms such as AWS, Azure, or GCP, with a strong focus on securing cloud architectures. Solid understanding of data security principles and mechanisms, including encryption and masking. Familiarity with major security standards and frameworks (e.g., ISO 27001, NIST, OWASP). Experience with programming languages like Python, Go, or Java. Excellent communication skills to work effectively across technical and business teams. Preferred Qualifications Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field. Relevant certifications such as CISSP, CSSLP, or cloud-specific security certifications. Experience mentoring junior engineers and contributing to thought leadership initiatives. A Day in the Life of an Engineer at Capco Collaborating with clients to define and implement robust, secure solutions. Designing and developing security frameworks for both on-premise and cloud environments. Supporting engineering teams with the integration of automated security tools and practices. Conducting hands-on assessments of security architectures and offering actionable recommendations. Sharing insights and building Capco’s internal security capabilities. We Offer A work culture focused on innovation and building lasting value for our clients and employees Ongoing learning opportunities to help you acquire new skills or deepen existing expertise A flat, non-hierarchical structure that will enable you to work with senior partners and directly with clients A diverse, inclusive, meritocratic culture Enhanced and competitive family friendly benefits, including maternity / adoption / shared parental leave and paid leave for sickness, pregnancy loss, fertility treatment, menopause, and bereavement We have been informed of several recruitment scams targeting the public. We strongly advise you to verify identities before engaging in recruitment related communication. All official Capco communication will be conducted via a Capco recruiter.

London, United Kingdom

On site

Full Time

04-05-2025

Company Name: Addition+
Job Title: Head of Security
Job Description: We are currently recruiting for a Financial Services organisation for the role of Head of Security. This is a fantastic opportunity to join one of the UK’s fastest growing Fintech companies, dedicated to empowering small and medium-sized businesses with innovative financial solutions. By combining cutting-edge technology with a personalised, relationship-driven approach, our client is at the forefront of transforming the financial landscape. What you’ll be doing: Lead the technical evolution of the security strategy, overseeing the security operations and engineering teams to ensure proactive and resilient security Drive the integration of secure coding practices and DevSecOps methodologies across product engineering teams Develop and implement comprehensive cloud security frameworks to protect sensitive data and applications, ensuring robust risk management and compliance Main Skills/ Requirements: Strong experience in senior security leadership roles, ideally within Fintech or Technology sectors Expertise in DevSecOps Deep knowledge of security frameworks (e.g., NIST, CIS, ISO 27001) and compliance standards (e.g., PCI-DSS, PSD2, GDPR). Proven ability to build security awareness programs How you’ll be rewarded: Bonus! Generous employer pension contribution 25 days Annual Leave + your birthday off (Option to Buy or Sell up to 5 days) Private Healthcare Life Assurance Income Protection Policy Work with cutting edge technologies Opportunity to work for a recognised company This is an excellent opportunity for an experienced Head of Security to join a leading company, that are driven towards success! For further information on this Head of Security position, apply below! We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. By applying you are confirming you are happy to be added to the Addition Solutions mailing list regarding future suitable positions. You can opt out of this at any time simply by contacting one of our consultants.

London, United Kingdom

Hybrid

Full Time

01-05-2025

Company Name: Double Eleven
Job Title: Senior Network Programmer
Job Description: We're looking for a Senior Network Programmer to join our award winning team in Middlesbrough (UK), home to the beautiful North Yorkshire coastline and countryside. As a Senior Network Programmer at Double Eleven, you'll play a major part in shaping how players experience our games. By building new features, optimising network performance and creating core mechanics, you'll ensure that we continue to create best selling games. Working with structure, you'll have the creative freedom to work in white space. In this role, you'll be the guiding force behind our talented team of developers, helping them grow, succeed, and deliver high-quality code. You'll work closely with diverse teams across various disciplines, combining your expertise with that of designers, artists, and developers to transform innovative concepts into immersive, interactive experiences that captivate and engage players. As a global gaming company, we've enabled millions to conquer Minecraft Dungeons, battle in Rust Console Edition and create new adventures in Fallout 76. Recently, we collaborated with Rockstar Games to bring Red Dead Redemption to the Nintendo Switch and PlayStation 4 as well as partnered with Obsidian Entertainment on Grounded: Fully Yoked Edition for Nintendo Switch and PlayStation 4 and 5. Double Eleven is a place where our people come first. Our 400-person team proudly represents over 30 nationalities. We strive to avoid crunch, we offer flexible working hours to allow you to truly enjoy work/life balance whilst making great games and any overtime is always planned, optional and paid. We can support UK relocation and have both a dedicated People and Operation teams on standby to assist you. On this occasion, we're unable to sponsor a visa for this role. What You'll Be Doing Work with every discipline to make sure our games perform great online and offline Define and develop robust networking code that leads the field Delight players with fantastic online performance Work with the lead programmer on creating the best architecture following best practices at an industry standard Collaborate with the QA Department to identify causes for any problems and possibly apply fixes Help develop highly efficient code for various projects Managing and mentoring team members around direction, knowledge and applied practice Implement industry standard security measures Implement industry standard multiplayer features on current gen/next gen architecture Come up with new exciting ways of approaching problems What We're Looking For Significant experience developing in C++ Great team working and communication skills Experience of developing and shipping a game which has online components Knowledge of low-level network APIs Knowledge of TCP/UDP Sockets, WebSockets, WebRTC and Concurrency Knowledge of various secure encryption techniques i.e: Open SSL Experience of the platform specific services and APIs on Xbox Live, PSN and Switch Knowledge and implementation of anti-cheat techniques Solid foundation of mathematics Computer Science degree Knowledge of Unreal Engine Qualifications All relevant qualifications considered What To Expect Working life at Double Eleven Start your day any time between 8:00am and 10:00am 35 working hours per week with a 1 hour lunch break (with the opportunity to flex down to 30 minutes or up to 2 hours) Opportunity to apply for hybrid working (up to 2 days working from home per week) 28 days annual leave (20 days annual leave + 8 days bank holiday) 1 day leave for your birthday and 1 day leave if you're moving house Up to 10 days discretionary annual leave during our end of year break Potential for annual performance bonus 5 additional days annual leave for 5 years service and a further 5 days annual leave for your 10 years service milestone A brand new, state-of-the-art studio facilities that includes a market hall serving nutritious, subsidised meals, round-the-clock gym access, an auditorium and more Free breakfast options, juice, hot drinks and fruit Employee referral bonus (up to £2000!) Electric Car Scheme Cycle to Work scheme Free game codes, game swag and merchandise Family-friendly leave available Christmas Saving Scheme Free parking Best-in-class tools and workflows so you can focus on creativity Professional development and wellbeing Vitality Private Healthcare, discounts and rewards for you, your spouse and children (upon the successful completion of your 6 month probationary period) Access to mental health and wellbeing support via Plumm (includes 4 free video therapy sessions per month for both the employee and up to 3 family members aged 18+), unlimited text therapy, courses, meditations A personalised development plan with dedicated support tailored to your growth and goals Access to an accredited Academy providing professional qualifications (and access to 500 UK discounts and offers via TOTUM when registered as a student) A dedicated Workplace Experience team responsible for work environments, workplace and quality of employee life services to help foster collaboration, creativity and innovation In-studio wellbeing programmes and People team support Team life Free activities via our Bus Tours programme (where on occasion, partners and children are welcome to join you) Many team events to celebrate team and game milestones Sponsored team activities including football, basketball, book club, movie club and more Opportunity to contribute to our internal Employee Diversity and Equality Network Ways to reach us If you have a general query or if you need support with your application and/or an alternative way to apply, please do not hesitate to contact our Talent team at jobs@double11.com

Middlesbrough, United Kingdom

Hybrid

Full Time

01-05-2025

Company Name: CENSUS
Job Title: Technical Project Manager - Embedded Systems Security (UK Nationals Only)
Job Description: About CENSUS CENSUS is an internationally acclaimed Cybersecurity services provider. We support the needs of multiple industries, providing IT and OT security services to public and private organizations around the world, ranging from financial institutions and critical infrastructure to automotive and secure communications, including Fortune 500 companies. Powered by cutting-edge research, scientific analysis and in-depth engineering experience across various industries & technologies, CENSUS delivers unparalleled security consulting & assessment services for products (software, services, devices, and large-scale platforms), infrastructure, and organizations. Learn more about CENSUS at census-labs.com. About The Job / Key Responsibilities CENSUS’ bespoke cybersecurity services are built upon a talented pool of Security Engineers, whose role extends beyond mere adherence to industry best practices. Our Technical Project Managers play a pivotal role in formulating and executing service delivery strategies that align with the rigorous quality standards set by CENSUS. Drawing from their robust technical background and leveraging their project & stakeholder management skills, TPMs serve as the primary facilitators empowering our clients to effectively maximize the potential of our security and advisory teams. Skills We are looking for talented & ambitious professionals to grow our Product Security Professional Services team and join our ongoing mission to deliver in-depth and top-tier cybersecurity services to our valued clients. As part of this role, you will use your technical background - in the Embedded Systems Security domain – along with your Project Management skills to enable a successful service delivery to our clients. You will work side-by-side with our clients’ development and security teams & partners, under engagements / projects that involve: Working with our clients to understand their requirements and scope, size, plan the corresponding technical activities to efficiently meet those (consulting, assessments, audits, evaluations, security architecture development, etc.). Receiving high-level task & product descriptions and decomposing them to smaller & well-defined technical activities, which are then assigned to the corresponding security engineering & consulting teams. Leading project’s technical team within the scope of the engagement. Documenting and presenting product security risks in both technical and business-oriented language. Conducting technical QA and presenting to both technical and business audiences, the technical team deliverables (findings, technical reports, observations, improvement recommendations, operational methodologies, etc.) Building and developing relationships with cross-client teams and partners. Owning & driving the continuous improvement of the technical quality of the project team deliverables. Ensuring client satisfaction and business growth by communicating lessons learned and key success factors to the business development team. Minimum Qualifications MSc or BSc in Electrical Engineering, Computer Science, Computer Engineering, Electronics Engineering, or equivalent practical experience. 4+ years of experience in embedded, general- or special-purpose computer system-level software or firmware security. Experience can be an engineering / development position (e.g., consumer or enterprise), an assessment / consultancy role, an equivalent role in other engineering organizations, or a combination of them. 2+ years of experience in technical project management in a role related to product or information security. Key Skills & Preferred Qualifications Experience with Embedded Systems, Linux, or Real Time Operating systems security concepts. Experience with reviewing system security architecture & engaged technologies. Experience with ARM architectures & platforms. Experience with C, C++, Rust, or Assembly (ARM) programming languages in the context of system software (bootloaders, drivers, kernel, system services, etc.). Experience with secure boot, firmware & software integrity, OTA updates, and hardware-backed device attestation technologies. Experience with cryptographic primitives and cryptographic best practices in the context of system security (inline crypto engines, storage encryption, attestation, HW key rooting, derivation, wrapping/unwrapping, etc.). Familiarity with identifying and reporting security vulnerabilities on system software (memory corruption, side-channel attacks, business logic, etc.). Familiarity with product security assessments and S-SDLC processes. Experience with managing technical teams. Experience with translating complex technical concepts into relevant messages suitable for various audiences (engineering and different tiers of management). Experience with stakeholder management for security engineering deliverables. Experience working with international teams located in other regions and time zones worldwide. Excellent leadership, ownership, problem solving skills, and willingness to learn/grow. Proficient in English and excellent communication skills. Traveling may be required