Northern Trust
Financial Services
SrPrincipal-DataProtectionandCyberRecoveryEngineer
Neural analysis suggests this role is
optimal for Senior candidates.
“Sr Principal - Data Protection and Cyber Recovery Engineer at Northern Trust. Skills: Data Protection, Cyber Recovery, Backup Engineering, Infrastructure as Code. Architect backup solutions. Implement backup solutions”
Industry & Context.
Failure Investigation; Root Cause Analysis
What They're Looking For.
Must Have
5+ years experience, Subject matter expert, Proven ability to recover, Satisfy regulatory expectations, Work with Information Security, Work with Technology Risk, Work with Business Continuity, Work with SRE teams, Interface with audit, Interface with regulatory processes, Maintain backup infrastructure using Terraform, Manage changes through CI/CD, Automate restore validation workflows, Manage Terraform state, Manage Terraform module libraries, Manage environment promotion, Contribute to platform engineering standards, Champion IaC best practices, Maintain expertise on-premises, Maintain expertise cloud-native, Design data transfer, Design data replication, Design egress cost optimisation, Ensure backup coverage for containerized workloads, Maintain live inventory, Maintain coverage map, Maintain gap register, Produce Backup & Recovery Policy, Produce associated standards, Produce operational runbooks, Serve as primary technical contact, Satisfy DORA requirements, Support Technology Risk, Evidence compliance with SS2/21, Evidence compliance with PS6/21, Evidence compliance with FCA PS21/3, Evidence compliance with EBA/EIOPA guidelines, Communicate technical risk, Operate in high-governance environment, Raise standards through peer review, Raise standards through runbook quality, Enable colleagues, Maintain discretion, Maintain professionalism
Nice to Have
Experience with AWS, Azure, and/or GCP, Experience with financial services workloads, Experience with core banking systems, Experience with trading platforms, Experience with payment processing, Experience with databases, Experience with unstructured data, Experience with PRA/FCA operational resilience framework, Experience with GDPR, Experience with FCA COBS/SYSC requirements, Experience with DR failover, Experience with Business Service recovery exercises, Experience with clean-room scenario based recovery simulations, Experience with immutable backup integrity validation, Experience with ransomware recovery, Experience with cyber-attack recovery, Experience with Cyber Recovery Plan, Experience with BCBS 239, Experience with DORA ICT resilience obligations, Experience with NIST CSF, Experience with ISO 27001, Experience with DORA ICT risk management, Experience with hardened backup systems, Experience with access-controlled backup systems, Experience with monitored backup systems, Experience with backup system threat model, Experience with audit trails, Experience with cryptographic integrity verification, Experience with Ansible, Experience with CloudFormation, Experience with Pulumi, Experience with version-controlled CI/CD pipelines, Experience with non-prod and production estates, Experience with change-controlled delivery model, Experience with audit-friendly delivery model, Experience with Cohesity, Experience with Rubrik, Experience with NetApp SnapVault, Experience with Dell Data Domain, Experience with IBM Safeguarded Copy, Experience with AWS Backup, Experience with Azure Backup, Experience with snapshot-based recovery, Experience with object storage immutability, Experience with latency constraints, Experience with bandwidth constraints, Experience with Velero, Experience with Kubernetes, Experience with Technology Risk reporting, Experience with CTO organisation reporting, Experience with regulatory expectations, Experience with Big 4 audit, Experience with regulatory examination processes, Experience with third-party backup vendor oversight
What You'll Do.
Architect backup solutions
Implement backup solutions
Operate backup solutions
Own backup policy governance
Lead restore testing programs
Conduct full DR failover
Conduct Business Service recovery exercises
Conduct clean-room simulations
Validate immutable backup integrity
Own backup failure investigation
Resolve backup failures
Conduct post-incident reviews
Design air-gapped backup tiers
Design immutable backup tiers
Maintain air-gapped backup tiers
Maintain immutable backup tiers
Participate in adversarial recovery exercises
Participate in cyber simulation scenarios
Provide technical leadership
Maintain alignment with NIST CSF
Maintain alignment with ISO 27001
Maintain alignment with DORA requirements
Ensure backup systems are hardened
Ensure backup systems are access-controlled
Ensure backup systems are monitored
Maintain audit trails
Maintain cryptographic integrity
Build backup infrastructure
Maintain backup infrastructure
Manage changes through CI/CD
Automate restore validation workflows
Measure recovery confidence
Evidence recovery confidence
Report recovery confidence
Manage Terraform state
Manage Terraform module libraries
Manage environment promotion
Contribute to platform engineering standards
Champion IaC best practices
Maintain expertise on-premises
Maintain expertise cloud-native
Design data replication
Design egress cost optimisation
Ensure backup coverage for containerized workloads
Maintain live estate inventory
Maintain live coverage map
Maintain live gap register
Produce Backup & Recovery Policy
Produce associated standards
Produce operational runbooks
Serve as primary technical contact
Support Technology Risk
Evidence compliance with SS2/21
Evidence compliance with PS6/21
Evidence compliance with FCA PS21/3
Evidence compliance with EBA/EIOPA guidelines
Communicate technical risk
Operate in high-governance environment
Raise standards through peer review
Raise standards through runbook quality
Maintain professionalism
How You'll Work.
Team & Collaboration
Partner with Information Security; Partner with Technology Risk; Partner with Business Continuity; Partner with SRE teams; Interface with audit; Interface with regulatory processes; Work with Platform teams; Work with SRE teams; Work with third-party vendors
Communication Scope
Technical Risk Communication
Process & Methodology
Change Control, Audit-Friendly Delivery
Full Job Description
**_About Northern Trust:_** Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service. **About the Role** We are looking for a Senior Data Resiliency Engineer to own the design, implementation, and assurance of our data protection and recovery capabilities across our hybrid cloud estate. This is a high-trust, high-accountability role. Our backup infrastructure is not just an operational concern — it is a regulatory obligation, a cyber defense layer, and a core component of our operational resilience framework. You will be the subject matter expert who ensures our ability to recover is proven, not assumed, and that our posture satisfies the expectations of regulators including the FCA, PRA, and the requirements of DORA. You will work in close partnership with Information Security, Technology Risk, Business Continuity, and SRE teams, and will interface directly with audit and regulatory processes. **What You’ll Do** **Backup & Recovery Engineering** * Architect, implement, and operate backup and restore solutions across on-premises data centers and cloud environments (AWS, Azure, and/or GCP), covering the full range of financial services workloads — core banking systems, trading platforms, payment processing, databases, and unstructured data. * Define, own, and continuously validate RTO and RPO targets in alignment with Important Business Service (IBS) mapping and impact tolerances as required under the PRA/FCA operational resilience framework. * Own backup policy governance — ret
Applying for this Sr Principal - Data Protection and Cyber Recovery Engineer role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Northern Trust?
Real rants from real employees. Read before you apply.