Senior Lead - Technology Risk and Control - BAU Standards

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

The Northern Trust Technology Risk and Control function enables Global Information Technology to operate with a strong and sustainable first line of defense, fostering a deeply embedded control-aware culture, delivering compliant and secure technology capabilities, protecting clients, and meeting global regulatory expectations.

The Senior Lead, Technology Risk and Control role is responsible for driving the technology and cybersecurity control policies and standards program. This role is accountable for ensuring the effectiveness and ongoing maturity of control standards that establish minimum requirements across the organization, aligned to regulatory, supervisory, and industry expectations.

As a member of the Technology Risk & Control team, this role acts as an advisor to technology, risk, and executive stakeholders, drives strategic initiatives, and plays a critical role in shaping the firm’s overall technology risk management posture globally.

Responsibilities

Own and drive the ongoing evolution of technology and cybersecurity control standards, ensuring they remain effective, current, and aligned with risk, regulatory, and business needs.

Lead the design, maintenance, and quality assurance of comprehensive mappings between control standards and global regulatory and industry frameworks, ensuring consistency, completeness, and audit readiness.

Serve as a primary liaison and influence point with technology, cybersecurity, and risk teams to improve awareness, adoption, and consistent implementation of standards, including leveraging automation and scalable solutions.

Oversee governance and committee engagement, including development and review of senior‑management‑level materials, facilitation of effective meetings, and ownership of follow‑up actions and outcomes tracking.

Provide guidance, coaching, and subject‑matter leadership to team members, setting expectations for quality, consistency, and professional development.

Identify, prioritize, and lead continuous improvement initiatives across team processes, documentation, and knowledge management, ensuring sustained enhancements are embedded.

Actively influence decision‑making and behaviors across technology teams to reduce risk exposure and strengthen the overall technology risk management culture.

Knowledge / Skills

Advanced, broad‑based expertise in technology and cybersecurity risks and controls, with the ability to apply judgment across complex risk areas including resiliency, SDLC, ITSM, operations, governance, SaaS, cloud, AI, and emerging technologies.

Strong working knowledge of global regulatory and industry control frameworks (e.g., CRI, NIST, FFIEC, ISO), with proven experience interpreting requirements and leading the analysis and mapping of frameworks to enterprise processes and controls.

Highly effective written and verbal communication skills, with the ability to articulate complex risk and control concepts clearly and concisely to both technical and non‑technical stakeholders.

Demonstrated capability to develop, review, and deliver management‑level materials, including summaries, analyses, and recommendations for governance forums and senior stakeholders.

Substantial experience designing, maintaining, and governing technology and cybersecurity policies and standards, ensuring consistency, clarity, and practical applicability.

Hands‑on experience with enterprise GRC platforms (e.g., ServiceNow), including control hierarchy design, data quality considerations, workflow integration, and reporting.

Solid understanding of audit and control testing concepts, with the ability to support examinations, respond to findings, and drive sustainable remediation.

Self‑directed and outcome‑oriented, capable of independently driving initiatives, prioritizing competing demands, and proposing well‑reasoned paths forward.

Strong project and program management skills, including planning, coordination, execution tracking, and issue escalation across cross‑functional initiatives.

Proven collaboration and relationship‑management capabilities, including effective engagement with senior managers and leaders across technology, risk, and control functions.

Recognized thought contributor with a track record of identifying process improvements, shaping solutions, and driving enhancements through implementation.

Experience

Bachelor’s degree in technology, cybersecurity, risk management, or a related field

10–12+ years of progressive experience in technology risk management, cybersecurity, controls, audit, or related disciplines

Demonstrated experience operating in a global financial services environment, preferred

Relevant professional certifications (e.g., CISA, CISSP, CRISC, CISM, or equivalent), preferred

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at [email protected].

We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.

About Our Pune Office

The Northern Trust Pune office, established in 2016, is now home to over 3,000 employees. The office handles various functions, including Operations for Asset Servicing and Wealth Management, as well as delivering critical technology solutions that support business operations across the globe.

Our Pune team takes our commitment to service to heart. In 2024, they volunteered more than 10,000+ hours into the communities where they live and work. Learn more.