Search Our Career Opportunities

Principal - Risk Management

Date: Jul 3, 2019

Location: Milwaukee, WI, 53202

At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference. 

Northwestern Mutual is looking to hire a Principal-level contributor in its Risk Management space. This person will partner with Sr. Directors, individual contributors and consultants to build out the risk management road map, bring clarity to strategic operations and strengthen relationships across the enterprise. This hire will guide teammates on the direction to take and translate large objectives into actionable items. Experience in maturing risk management in embedded strategies will be key along with enterprise consulting experience and current certifications (CISSP and/or CRISC preferred).


PRINCIPAL ACCOUNTABILITIES: (List in order of importance)

  • Develops information protection strategies based on company vision and anticipated, future business and technical requirements.  Communicates the strategy with staff, business partners, vendors, field and senior management to ensure a common understanding and acceptance.
  • Creates compelling proposals for action by integrating information protection initiatives into the larger context of core business operations and corporate strategy.
  • Acts as a practitioner/leader, continuously advancing and creating information protection capabilities and competencies based on information protection strategy.  Ensures that capabilities are fully formed, including people/process/technology and their results are measurable and sustainable.
  • Engages with organizations across the company to integrate information protection capabilities and disciplines into their standard workflows.
  • Enables the business to innovate responsibly through ongoing operation of key information protection capabilities.
  • Works independently to evaluate, prioritize and subsequently address the highest severity risks across the company.
  • Influences and drives significant organizational and technical change based on their recognized expertise.
  • Improves the overall competency of their own organization, as well as other parts of organization, through mentoring, development of immersive learning experiences, recruiting, prescribed training/ curriculums, presentations and demonstrations.
  • Assesses anomalous conditions quickly based on experience to provide recommendations and execute activities that optimize the reduction of risk.
  • Engages in networking events with other financial services, cyber security/risk, and industry expert organizations to exchange new strategies, tactics, techniques and learnings.
  • Engages in continuous, personal improvement in information protection competencies.
  • Other responsibilities may be assigned as necessary.



Minimum Requirements:

  • Bachelor’s degree with an emphasis in MIS, Business or related field; or related work experience beyond the minimum required.
  • Ten years of professional experience in information systems.
  • Deep understanding of multiple generations of technology applications and their impact on risk.
  • Deep understanding of information protection controls, products and control architecture and their application.
  • Minimum of 8 years of experience leading complex projects or developing, influencing, and recommending business strategies.
  • Minimum of 8 years of experience in cybersecurity and risk management.
  • Proven ability to independently identify and resolve critical and complex issues through effective problem solving skills.
  • Includes ability to deal with ambiguity.
  • Proven ability to maintain and strengthen relationships.
  • Ability to effectively influence and negotiate with internal and external partners and proven organizational savvy with demonstrated tact and diplomacy.
  • Proven business and technical communication skills.
  • Ability to communicate in both business and technical terminology based on the situation and the audience.


Desirable Requirements:

  • Strong understanding of information risks and IT general controls.
  • Strong ability to lead teams and drive collaborative cooperation around complex technical and business decisions.
  • Certifications including CISSP, CRISC, CISM, CEH.

Grow your career with a best-in-class company that puts our client’s interests at the center of all we do. Get started now! 

We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.


Req ID: 25143
Position Type: Regular Full Time
Education Experience: Bachelor's Desired
Employment Experience: 9+ years
Licenses/Certifications: Not Applicable
FLSA Status: Exempt
Posting Date: 05/28/2019