Northern Trust
Location
Pune | India
Job description
Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.
Summary :
The Director of Technology Risk and Control is responsible for leading the day to day operations of the Infrastructure Technology Risk and Control team and working with other global sites to establish and maintain a highly effective IT control environment. You will report to the APAC Head of Technology Risk and Control and be part of a dedicated and outstanding team that focuses on promoting control awareness and properly manage risks within the global information technology organization.
Responsibilities :
Set strategy and direction for the implementation, development, and maintenance of the organization's infrastructure technology control assurance program, including control inventory, risk and control (PRC) framework, and full alignment with regulatory requirements as well as industry risk and control frameworks.
Manage a team of Infrastructure Technology Risk and Control staff to execute technology control assurance program, including control inventory, risk and control (PRC) framework, and full alignment with regulatory requirements as well as industry risk and control frameworks.
Leverage automation and analytics to build state of the art control testing and continuous control monitoring platform.
Provide critical control-based decision-making information to technology leadership to ensure the operating state of the environment meets security control expectations and the adequacy of information system controls.
Manage execution of risk and control self-assessments, identification and evaluation of inherent risks, control strength and residual risks of key IT controls, and success execution of risk-based control testing program.
Assist in the definition of the technology risk appetite statements and monitor Key Performance Indicators (KPI) and Key Risk Indicators (KRI) against our technology risk appetite. Using automation and analytics, develop on-going technology risk reporting, monitoring key trends and defining metrics to regularly measure control effectives of technology.
Setting frameworks and manage technology regulatory compliance operations to ensure adequate reporting and timely response to regulatory exams in APAC regions, including Australia, Singapore, India, China and other regions.
Work with other leaders within Norther Trust's technology management and three lines of defenses to assist in timely addressing control gaps, identifying potential opportunities for improvement, and advising on control designs for large complex programs (e.g., cloud, API, third-party vendor oversight, data governance).
Influence behaviors to reduce risk and foster a strong technology risk management culture throughout the enterprise.
Inspire, lead and develop a motivated, high-performance IT Control Assurance team. Promotes inclusivity and diversity.
Knowledge and Skills :
In-depth understanding and experiences of information security, IT audit and/or IT risk management principles.
In-depth understanding of IT risk assessments and control testing. Experiences of GRC systems (e.g., ServiceNow) preferred
Experience in automation and advanced data analytics, especially risk analytics preferred.
Strong collaboration and relationship management skills, including experiences in executive management relationship.
Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
Highly flexible and adaptable to change, technology forward thinking.
Employment Experience :
A Bachelor's degree in Engineering, Accounting, Finance, Information Technology, Management Information Systems, Computer Science or a related discipline.
Total 18+ years of experience and at least 10 or more years of technology risk management, control functions, audit services experience, or similar experience with transferable skills.
Financial Services industry experience is a plus.
Certification in IT Security viz CEH / CLPTP / CISSP / CISM preferred.
Job tags
Salary
