Cyber Security IT Risk Management Senior Associate

Sr Associate, Cyb Sec IT RiskM

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

The Northern Trust Technology Risk and Control function enables Global Information Technology to maintain a strong 1st Line of Defense, promote a control-aware culture, deliver secure and compliant technology capabilities, protect customers, and meet regulatory expectations.

The Senior Associate, Technology Risk and Control plays a key role in executing technology risk, regulatory, and control activities, supporting regulatory engagements, risk treatment efforts, and ongoing control management initiatives. This role partners closely with control officers, process owners, and risk leaders to ensure risks are effectively identified, assessed, and managed.

As part of a growing and high-performing team, this role contributes to strengthening risk awareness and improving control practices across the global technology organization.

Responsibilities

Support coordination and execution of regulatory exams, assessments, and inquiries by engaging relevant stakeholders, tracking milestones and deliverables, and preparing high-quality materials and responses.

Assist in the development and maintenance of detailed mappings between technology controls and applicable global regulatory and industry frameworks (e.g., CRI, NIST, FFIEC).

Support the technology risk treatment process by working with control officers and control owners to identify, assess, document, and track enterprise technology risks.

Draft clear, well-supported risk assessments, including analysis of inherent risk, control effectiveness, residual risk, and recommended risk treatment options, for review by senior risk leadership.

Participate in risk treatment and governance meetings, ensuring materials are accurate, discussions are well-documented, and follow-up actions are clearly tracked.

Prepare committee decks, meeting artifacts, and supporting documentation; assist with coordination and follow-through on meeting outcomes and action items.

Collaborate with peers across Technology, Risk, Audit, and Compliance functions. Share knowledge and best practices to support team effectiveness and consistency.

Identify opportunities to improve risk, control, and documentation processes; contribute to initiatives that enhance efficiency, clarity, and consistency.

Support efforts to promote strong technology risk management behaviors and increased control awareness across the technology organization.

Knowledge and Skills

Working knowledge of regulatory and industry risk and control frameworks (e.g., CRI, NIST, FFIEC) and experience mapping them to technology processes and controls

Experience supporting regulatory, audit, or risk management engagements

Good understanding of risk assessment, control effectiveness, and risk treatment methodologies

Strong written and verbal communication skills, with high attention to detail

Experience preparing documentation and materials for management and governance forums

Familiarity with technology and cybersecurity policies, standards, and controls

Experience using enterprise GRC platforms (e.g., ServiceNow)

Audit and/or control testing experience preferred

Strong organizational and time-management skills

Ability to work independently while collaborating effectively with cross‑functional teams

Experience

Bachelor’s degree in technology, cybersecurity, or related field

5–8 years of experience in technology risk management, controls, audit, or related fields with transferable skills

Prior experience in financial services preferred

Relevant technology or security certifications (e.g., ITIL Foundation, CISSP, CRISC) a plus

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.

We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.

About Our Pune Office

The Northern Trust Pune office, established in 2016, is now home to over 3,000 employees. The office handles various functions, including Operations for Asset Servicing and Wealth Management, as well as delivering critical technology solutions that support business operations across the globe.

Our Pune team takes our commitment to service to heart. In 2024, they volunteered more than 10,000+ hours into the communities where they live and work. Learn more.

Experience Level

Senior Level