Lead, Cyber Sec IT Risk Management at Northern Trust

Pune, Maharashtra, India

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level

Full TimeJob Type

UnknownVisa

Banking, Financial ServicesIndustries

Requirements

Bachelor degree in Computer Science or a related discipline
At least four, typically six or more years of technical experience in the security aspects of multiple platforms, operating systems, software, communications and network protocols or equivalent combination
Proven knowledge in domains including: Information Security Governance and Risk Management, Access Control, Vulnerability and Penetration, Network Security, Application Security, Cryptography, Security Architecture and Design, Operations Security, Business Continuity and Disaster Recovery Planning, Legal/Regulations/Investigations and Compliance, Physical and Environmental Security, Cloud Security
Knowledge of regulations related to banking and compliance
Well versed with contract language, analysis and negotiation process
Report writing skills
Excellent analytical ability, consultative and communication skills, strong judgment
Ability to work effectively with clients, IT management and staff, vendors, consultants, internal stakeholders, functional teams, procurement teams, and individuals/teams at any level
Ability to interact professionally, develop relationships, and foster a positive collaborative environment
Ability to work well as an individual contributor and in a team capacity
Ability to rapidly and effectively adapt to a highly dynamic and fast-paced work environment
Is a technical expert with in-depth knowledge in area of expertise and strong knowledge of other areas

Responsibilities

Perform information security risk assessment processes for new and existing Northern Trust’s third parties business partners
Perform assessment of IT controls operation, identifying gaps, risks and areas for improvement
Review master services contracts of third parties to identify information technology and security related clauses
Work with procurement teams to formulate/renew contracts as per information security team guidelines
Document and report to management all findings from risk assessment processes
Collaborate with internal stakeholders and functional teams to ensure identified risks within each third party are assigned to business owners and tracked for timely closure
Provide technical expertise and support to client, IT management and staff in risk assessments and implementation
Identify, evaluate, conduct, schedule and lead technical analyses functions to ensure all applicable IS security requirements are met
Participate in the evaluation, development, implementation, communication, monitoring and maintenance of information technology security policies and procedures
May act as Project Leader
May provide assistance and training to lower level specialists
Keep abreast of emerging industry standards
Provide technical analysis of requirements necessary for the protection of all information processed, stored, or transmitted by systems
Serve as an expert resource or "go to person" within a group
Conduct preliminary analysis
Review work of others
Handle more extensive, high-profile work
Responsible for direct interaction with different committees and/or management