Sr. Lead, Cyber Sec Risk

Dear Candidate

Greetings from Northern Trust

Northern Trust is looking for a senior professional for an exciting vacancy of Sr. Lead, Cyber Sec Risk & compliance Mgmt position for Pune location. Your profile seems to be matching the requirement.

Please find below the job details for your reference -

Job Role: Sr. Lead, Cyber Sec Risk & compliance Mgmt

Job Location: Pune

Experience: 11 to 16 years

Skills: Regulatory Compliance, IT Audit, IT Risk Management, Statutory Compliance

Job Description:

The Sr Lead, Technology Regulatory Compliance is responsible for supporting the day-to-day operations of the APAC Technology Regulatory Compliance team and working with risk and control teams in other global sites to establish and maintain a highly effective IT control environment and IT compliance posture. You will report to the Senior Manager of Technology Regulatory Compliance and be part of a dedicated and outstanding team that focuses on promoting control / compliance awareness and appropriately manage compliance risks within the global information technology organization.

Responsibilities

1. Responsible to ensure compliance with Technology related regulatory / statutory requirements in the APAC region.
2. Engage with all 3 LODs and get onboarded on various risk events risk treatment | risk metrics | major incidents impacting APAC region.
3. Coordinate both internal and external audit engagements, facilitate evidence gathering requirements, ongoing vetting of issues identified by Internal Audit with Control Owners including appropriate action plans and remediation / milestone dates
4. Interpret and assess the impact of new and evolving technology regulations in the APAC region.
5. Serve as a key liaison between internal / external auditors and technology stakeholders.
6. Advise on how to apply and interpret standards and controls, considering threats, risks, trends across the organization, and compensating controls
7. Support risk assessment activities serving as a subject matter expert on understanding the risk and providing support in elevating the risk treatment for approval.
8. Support the Issue Management process Audit | Regulatory | Self-identified. Review the management action plan proposed by the accountable/responsible technology owner. Challenge and provide advice on audit remediation plans. Facilitate discussion of Technology accountable audit issues at the Issue Remediation Council.
9. Responsible to analyze and derive a Legal Entity view of the outcome of technology control assurance program, including control inventory, risk and control (PRC) framework, and align with regulatory requirements in the APAC region.
10. Leverage automation and analytics to build state of the art compliance environment and continuous control monitoring platform.
11. Prepare the governance packs, compliance reports/dashboards and metrics for senior leadership in the APAC region.
12. Setting frameworks and manage technology regulatory compliance operations to ensure adequate reporting and timely response to regulatory exams in APAC regions, including Australia, Singapore, India, China and other regions.
13. Work with other leaders within Norther Trusts technology management and three lines of defenses to assist in timely addressing control gaps, identifying potential opportunities for improvement, and advising on control designs for large complex programs (e.g., cloud, API, third-party vendor oversight, data governance).
14. Influence behaviors to reduce risk and foster a strong technology risk management culture throughout the enterprise.

Knowledge and Skills

1. In-depth understanding and experiences of information security, IT regulatory/ statutory compliance, IT audit and/or IT risk management principles.
2. In-depth understanding of IT risk assessments and control testing. Experiences of GRC systems (e.g., ServiceNow, Fusion etc.) preferred
3. Experience in automation and data analytics preferred.
4. Strong collaboration and stakeholder management skills.
5. Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams.
6. Highly flexible and adaptable to change, technology forward thinking.
7. Comfortable operating in a dynamic and complex regulatory landscape.
8. Woking knowledge of tools such as Confluence, Power BI, MS Office suite.

Employment Experience

• A Bachelor's degree in Engineering, Information Technology, Management Information Systems, Computer Science or a related discipline.
• At least 11 or more years of technology risk management, control functions, audit services experience, or similar experience with transferable skills. Financial Services industry experience is a plus.
• Certification in IT Security viz CEH / CISA / CISSP / CISM preferred.

We want to take it ahead for further screening and interview rounds. Please respond back at the earliest to move your candidature ahead.

Regards,

Northern Trust Talent Acquisition Team