Skip to content

At Northwestern Mutual, we are strong, innovative and growing. We invest in our people. We care and make a positive difference.

As a Sr. Risk Management Consultant, you establish and optimize risks and controls! You are accountable for consulting and advising on large, complex and ambiguous issues related to information security.

As domain professional for the information risk management program, you will: create information protection policies/standards; craft/evaluate processes/controls to enable compliance with information protection policies; evaluate and approve deviations to information protection policies; promote information protection awareness through training activities; evaluate and make decisions on noncompliance issues; lead, coach, and mentor NML staff on the information risk management program, including specific processes intended to ensure consistency and quality.

Further, you will develop action plans to support departmental and corporate strategy. Above all, you demand excellence of yourself; you handle tasks with the highest possible degree of accuracy and discretion! Does this sound like you? This individual will also be accountable for...

Designing and evaluating processes and controls in order to comply to information protection policies and standards.

Consulting and advising on large, complex and ambiguous efforts on the appropriate information protection controls in order to comply with information protection policies and standards.

Providing subject matter expertise for the information risk management program which may include: creation of information protection policies and standards, information protection awareness and training program, evaluating noncompliance issues and appropriate investment decisions.

Assessing, evaluating and approving deviations to information protection policies and standards in order to balance risk and controls.

Leading, coaching, and mentoring other staff members on aspects of the program and specific processes to ensure consistency, quality and productivity of deliverables.

Investigating sophisticated and ambiguous information security incidents to minimize impact to the enterprise.


  • Bachelor's degree with an emphasis in MIS, Business or related field; or related work experience beyond the minimum required

  • 5+ years experience in information systems or systems audit with demonstrated knowledge in technologies and processes

  • Demonstrable ability to design and implement IT general controls

  • Ability to lead, coach and mentor other staff members

  • Solid ability to independently identify and resolve critical and complex issues through effective problem solving skills

  • Strong ability to maintain and strengthen relationships; ability to effectively influence and negotiate with internal and external partners

  • Proven organizational savvy with demonstrated tact and diplomacy

  • Confirmed ability in dealing with ambiguity


This job is not covered by the existing Collective Bargaining Agreement.

Required Certifications:

Grow your career with a best-in-class company that puts our client’s interests at the center of all we do. Get started now! 

We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.


We’re excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and commitment to diversity and inclusion.