Sr Lead, Cyber Sec IT Risk Management - IT Resilience and DR

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.

Position : Sr. Lead, Cyber Security IT Risk Management - IT Resilience and DR
Location : Pune
Job Description:

Experience in IT Resiliency

The ideal candidate should possess hands‑on experience and a strong conceptual understanding of IT Resiliency and Disaster Recovery (DR) within complex enterprise environments. This role requires the ability to evaluate, challenge, and advise on resiliency strategies from a risk and control perspective.

Key expectations include:

• Demonstrated experience in Disaster Recovery strategies, including active/active, active/passive, and tier‑based resiliency models across applications and infrastructure.
• Strong understanding of DR planning and documentation, including development, review, and ongoing maintenance of Disaster Recovery Plans (DRPs).
• Experience supporting or governing DR exercises and resilience testing, including tabletop exercises, simulation testing, and enterprise/regulatory‑driven DR tests.
• Ability to assess control effectiveness around DR readiness, test outcomes, remediation tracking, and alignment to internal policies and regulatory expectations.
• Working knowledge of IT resiliency metrics and terminology, such as RTO (Recovery Time Objective), RPO (Recovery Point Objective), MTD, application tiering, dependency mapping, and critical service identification.
• Foundational understanding of infrastructure components (compute, storage, network, operating systems, cloud/on‑prem environments) sufficient to:
• Identify potential resiliency gaps and single points of failure
• Engage credibly with infrastructure, platform, and application teams
• Challenge design assumptions from a risk and control standpoint
• Ability to interpret and translate technical DR and infrastructure concepts into clear risk, control, and governance insights for senior stakeholders, auditors, and regulators.
• Familiarity with regulatory expectations and audit considerations related to IT Resilience, Business Continuity, and Disaster Recovery is highly desirable.

Core Technical Skills

• Microsoft Excel: Pivot Tables, VLOOKUP/XLOOKUP, Power Query, Pivot
• Microsoft PowerPoint: Designing data driven presentations, Creating visual stories and executive summaries, Integrating visuals from Excel and Power BI for impactful reporting
• Data Analysis and Interpretation: Descriptive statistics and data summarization, Trend analysis and forecasting (in Excel and Power BI), Root cause analysis and performance tracking
• Soft Skills and Business Acumen: Strong attention to details and data accuracy, Analytical thinking and problem-solving, Excellent verbal and communication skills, Ability to work cross-functionally with stakeholders, Business storytelling through data

Experience in IT Control

The primary responsibility is to be a Risk and Control advocate and advisor within your area. This role is expected to have a high level understanding the operations of the area they cover and how risks within it are/should be mitigated.  They are well positioned to identify control weaknesses, control gaps, and provide effective strategies for risk mitigation. They also play a key credible challenge function to ask what could go wrong. This role will need to have vast experience with the following: 

• Risk Management/ Controls/SOC/SOX: Knowledgeable in processes, risks and controls; along with efforts currently under way to identify/refine them. This needs to be a primary focus as it will help in decision making. Questions this role will be responsible to know very well: How many controls are within this operating group? When is the last time the control effectiveness was evaluated? What SOC or SOX controls are relevant to this operating group? What formal risks do the team need to mitigate for the bank? Are all processes documented and up to date? Are there any gaps in processes or controls?
• Regulatory Exam, Audit and Self Identified Issue Remediation and Support: This role will play a credible challenge role on any remediation effort or new project.  They should be asking questions like, What controls failed or were missing? What processes were not followed or don’t yet exist? They should not be concerned with who is fixing it or have a role in ensuring that it is completed. They should be able to provide the key contacts, understand the risk/control environment and any ongoing remediations that may affect the area being assessed.
• Documentation/Metrics: This will be a key role to ensure proper documentation is in place and key metrics are identified/accurate. This role will have insights into the current risks within the operating group. This role will help provide information to advise leadership on decisions within the operating/functional area and escalate if those decisions may have very negative consequences on the bank.

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.

We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.

About Our Pune Office

The Northern Trust Pune office, established in 2016, is now home to over 3,000 employees. The office handles various functions, including Operations for Asset Servicing and Wealth Management, as well as delivering critical technology solutions that support business operations across the globe.

Our Pune team takes our commitment to service to heart. In 2024, they volunteered more than 10,000+ hours into the communities where they live and work. Learn more.