Principal Security Engineer – AI & Copilot Data Protection

Northern Trust

Actively hiring
Chicago, IL Posted 29 days ago $137,400$233,600 / year
View original post Log in to save

At a glance

AI generated

TL;DR

Northern Trust is seeking a Principal-level individual contributor to lead the secure enablement of Microsoft 365 Copilot and enterprise AI capabilities within its Cyber Team. This role involves developing end-to-end technical strategies, architectures, and operational frameworks for AI-driven data protection across Microsoft Purview, Defender, and M365 security services. The Principal will act as a deep technical authority on AI data protection, defining durable patterns for securing LLM-enabled workflows and influencing platform configuration decisions with wide autonomy. Key responsibilities include designing secure systems that stand up to audit scrutiny, configuring and deploying controls, building monitoring tools for abnormal AI usage, and contributing to broader governance initiatives using Azure DevOps. The ideal candidate has extensive experience with Microsoft Purview and Defender, strong data protection skills, and proficiency in PowerShell, Python, and Power Automate.

Skills

Microsoft Purview Microsoft Defender PowerShell Python Power Automate Azure DevOps M365 SharePoint Online Teams Exchange Entra ID Sentinel Zscaler Symantec DLP CI/CD Cloud Apps

What you'll do

  • Define and evolve the AI data protection reference architecture for Microsoft Purview, Defender, and M365.
  • Design and implement enterprise-wide controls for information protection, DLP, and insider risk management.
  • Build monitoring and alerting systems for abnormal or high-risk AI usage patterns to prevent policy violations.
  • Translate AI threat models into enforceable technical controls aligned with regulatory expectations.
  • Act as the design authority for Copilot security configurations, ensuring default-secure behavior and least privilege access.
  • Configure and deploy AI-related controls across AD and EntraID environments through disciplined change management processes.

What we're looking for

  • Extensive hands-on experience with Microsoft Purview and Microsoft Defender.
  • Strong background in data protection, DLP technologies, and enterprise information security.
  • Deep understanding of LLM security fundamentals and threat modeling.
  • Proven scripting and automation capability (PowerShell, Python, Power Automate).
  • Experience securing agentic or tool-augmented AI systems with least-privilege access.
  • Bachelor’s degree in cybersecurity, engineering, or a related field.

Market check

Salary context

This $137,400–$233,600 range sits above 72% of similar postings on FindRole.

Peer median band

$114,000$208,850

Median floor and ceiling across peers.

Typical midpoint (25–75%)

$142,400$194,250

Middle half of comparable postings.

Based on 240 comparable postings.

* 240 is the maximum number of comparable postings sampled.

Employer

About Northern Trust

Northern Trust is a leading provider of wealth management, asset servicing, asset management, and banking services to corporations, institutions, and high-net-worth individuals. Industry: Financial Services & Asset Management

Northern Trust currently has 20 open roles on FindRole.

Listed pay typically runs $137,400–$233,600 across 18 roles with salary data.

Most-posted roles

View all roles at Northern Trust

More like this

Similar roles

Distinguished Engineer – AI Security

CVS Health

Remote (Scottsdale-9501 East Shea Blvd, US) 70 days ago $175,100$334,750
MITRE_ATLAS NIST_RMF ISACA_AI_Audit_Toolkit ISO_IEC_AI_security_standards Transformer_based_NLP LLM_based_generative_AI Agentic_AI Zero_Trust_architecture CI_CD HIPAA GDPR Privacy_enhancing_technologies Secure_data_handling_patterns AI_risk_management_frameworks Adversarial_ML Secure_model_deployment AI_agent_authorization AI_data_loss_protection AI_safety
Remote

AI Security Controls Engineer

Adobe

San Jose, US 53 days ago $157,900$228,575
AI/ML NIST AI RMF ISO 42001 EU AI Act GRC platforms CI/CD Kubernetes Docker Python PostgreSQL Prometheus Grafana A2A communication MCP HITL review Threat modeling Key Risk Indicators ISO 42001 Implementer/Auditor CISSP CISA CISM

Principal Information Security Engineer, Identity Security Engineering

JLL (Jones Lang LaSalle)

Remote (Home Office - Texas - Houston Metro, US) 11 days ago $270,000$300,000
Okta CyberArk Active Directory M365 ISO NIST ATT&CK CIAM Zero Trust Privileged Access Management Identity Security Cloud Services SaaS On-premises Appliances Security Policy Compliance Network Security Application Development Teams Security Frameworks
Remote

Lead AI Security Engineer

Abbott

US 46 days ago $129,300$258,700
AI Cybersecurity Secure_design Threat_modeling Risk_assessments CI/CD Python PostgreSQL Kubernetes AWS GCP Azure Docker Prometheus Grafana GitLab Jenkins

Principal Security Engineer

Zillow

Remote (Remote-Usa, US) 22 days ago $168,600$269,400
AWS GCP Azure Python Threat Modeling Secure Design Reviews Penetration Testing AI Security Data Protection Identity Management Networking Model Abuse Detection Prompt-Based Attacks Unintended System Behavior CI/CD Cloud-Native Security LLM-Enabled Systems
Remote

Cybersecurity AI Principal Engineer

Wells Fargo

106312-Ny-150 E 42Nd, New York, US 11 days ago $191,000$305,000
Google Cloud Platform Microsoft Azure AWS Tachyon AI LLM-based automation Agile software delivery Cloud infrastructure Containerization IaaS Generative AI Agentic AI CI/CD Python Java Kubernetes Docker PostgreSQL Redis MongoDB GitLab Jenkins