Senior Lead - Cybersecurity IT Risk Management

Sr Lead, Cyber Sec IT RiskM

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

Position : Continuous Control Monitoring Program – Senior Lead

Location: Pune, MH

Job Description

The CCM Program Senior Lead is responsible for driving the strategic and end-to-end execution of the Continuous Control Monitoring (CCM) Program across infrastructure domains. This role ensures strong understanding and governance of the complete control lifecycle, including control identification, design, feasibility assessment, automation, continuous monitoring, issue identification, remediation, and ongoing optimization. The role enables real-time visibility into control health, risk, and compliance posture through automated and semi-automated monitoring solutions.

Key Responsibilities

Program Leadership & Strategy

• Lead and drive the end-to-end execution of the CCM Program, ensuring alignment with enterprise risk, compliance, and control governance frameworks.
• Define, evolve, and mature the CCM Dashboard and monitoring framework to deliver centralized, actionable insights into control performance using Key Control Indicators (KCIs) and Control Indicators (CIs).
• Oversee the complete lifecycle of monitored controls, including onboarding, probation, steady-state monitoring, exception handling, remediation tracking, and control retirement.
• Establish a scalable and audit-ready CCM roadmap to increase control automation, coverage, and effectiveness.

Governance & Compliance

• Demonstrate strong end-to-end control lifecycle knowledge and ensure consistent governance across automated and semi-automated control monitoring.
• Maintain alignment with regulatory and control frameworks such as SOC, SOX, NIST, and FFIEC.
• Enable evidence-based, audit-ready control monitoring and documentation to support regulatory reviews and internal and external audits.
• Ensure timely reporting and escalation of control health issues, threshold breaches, and associated remediation plans.

Stakeholder Engagement

• Act as a central liaison between Infrastructure, Risk, Compliance, Audit, and Automation teams.
• Lead cross-functional forums such as CCM Control Forum meetings to communicate program status, risks, and strategic updates.
• Partner with control owners, tower leads, and SMEs to assess control feasibility and onboard suitable controls into the CCM program.

Technical Oversight

• Guide requirements definition, test case development, UAT planning, and go-live activities for automated control monitoring solutions.
• Provide oversight for control automation scripts, dashboards, and data integrations supporting CCM.
• Ensure strong data governance, data lineage, and integrity across monitoring solutions and reporting platforms (e.g., Power BI).

GenAI & Copilot AI Awareness

• Maintain awareness of GenAI and Copilot AI capabilities relevant to control monitoring, analytics, and documentation.
• Identify responsible opportunities to leverage AI-enabled insights and automation to enhance control monitoring efficiency, scalability, and decision-making.

Must Haves

• 7+ years of proven experience in IT Risk Management, Infrastructure Controls, or Cybersecurity domains.
• Strong understanding of end-to-end control lifecycle management and control operating models.
• Proven experience driving control automation and continuous monitoring programs.
• Experience with requirements analysis for control monitoring automation and dashboards (e.g., Power BI).
• Excellent stakeholder management, communication, and leadership skills.
• Familiarity with platforms such as ServiceNow.

Good to Have

• Exposure to GenAI, Copilot AI, or advanced analytics in risk and control environments.
• Experience with control feasibility analysis and metric design.
• Exposure to regulatory audits and sample-based testing processes.

Qualification

Bachelor’s degree in Computer Science, Information Technology, IT Audit, Risk Management, or a related field.

Minimum 10 to 12 years of total work experience in an IT Industry.

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.

We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.

About Our Pune Office

The Northern Trust Pune office, established in 2016, is now home to over 3,000 employees. The office handles various functions, including Operations for Asset Servicing and Wealth Management, as well as delivering critical technology solutions that support business operations across the globe.

Our Pune team takes our commitment to service to heart. In 2024, they volunteered more than 10,000+ hours into the communities where they live and work. Learn more.

Experience Level

Senior Level