Own and execute the enterprise-wide phishing simulation program, including scenario design, testing cadence, and execution governance, coordinating and supervising contract providers as needed
Lead the development and execution of the annual employee cybersecurity training program, ensuring compliance with relevant regulatory requirements, alignment to current cyber risks, and targeted training for high-risk roles (e.g., privileged users, developers)
Partner with cybersecurity leaders to identify team-specific training needs and develop and deliver appropriate role-based training
Develop and manage program metrics and reporting, including phishing susceptibility, reporting rates, repeat behavior, and trend analysis for leadership
Coordinate with the Northern Trust threat intelligence team to integrate lessons learned from incidents, intelligence insights, and emerging attack techniques into simulations and training content
Maintain audit-ready documentation and evidence supporting program design, effectiveness, and continuous improvement

Requirements

Bachelor’s degree and/or equivalent military experience
5+ years of experience in cybersecurity, technology risk management, IT audit, or cyber governance roles
Demonstrated hands-on experience supporting enterprise phishing simulations, including campaign design, execution, and measurement
Strong knowledge of cyber risk management concepts and frameworks supporting awareness and training programs
Prior experience in the financial services sector; experience within a large financial institution strongly preferred
Continuing education demonstrating a commitment to information security (e.g., certifications, coursework, advanced degrees)

Benefits

retirement benefits (401k and pension)
health and welfare benefits (medical, dental, vision, spending accounts and disability)
paid time off
parental and caregiver leave
life & accident insurance
other voluntary and well-being benefits
discretionary bonus program that may include an equity component

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

phishing simulationcybersecurity trainingcyber risk managementprogram metricstrend analysiscampaign designexecution governancemeasurementaudit documentationincident response

Soft Skills

leadershipcoordinationcommunicationsupervisioncollaborationtraining developmentproblem-solvinganalytical thinkingadaptabilityattention to detail

Certifications

CISSPCISMCEHCompTIA Security+ISO 27001GIACCertified Information Security ManagerCertified Ethical HackerCertified Information Systems AuditorAdvanced degrees in information security