Job Description
Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.
Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service.
Responsibilities:
ITSM Control Assessment Leadership
Lead the planning, coordination, and execution of ITSM control assessments across a defined scope of Incident, Change, and Problem Management processes, ensuring alignment with applicable policies and standards.
Control Design and Effectiveness Evaluation
Identify control gaps, execution weaknesses, and process deviations, and clearly articulate root causes and associated risk impacts. Validate that controls are:
- Properly defined and documented
- Consistently executed
- Supported by complete, accurate, and appropriate evidence
Control Assessment Documentation
Ensure control assessment outputs and supporting artifacts are accurately documented and maintained within ServiceNow / Integrated Risk Management tooling, in accordance with established requirements.
Issue Identification and Risk Treatment Support
Support the identification, documentation, and escalation of control issues arising from assessments, including coordination of issue creation where applicable. Advise control owners on appropriate risk treatment options (remediation, acceptance, or escalation), in alignment with Technology Risk standards.
Stakeholder Engagement and Coordination
Participate in working groups and governance forums related to control effectiveness, RCSA readiness, and ITSM risk management. Provide clear, concise, and timely communication on assessment status, risks, and outcomes to senior stakeholders.
Continuous Improvement and Standardization
Identify themes, trends, and systemic issues across ITSM control assessments and recommend enhancements to processes, controls, testing approaches, and assessment methodologies. Support readiness for future assessments, audits, and regulatory reviews through consistent execution and documentation practices.
Industry Awareness
Maintain awareness of emerging industry standards and best practices relevant to ITSM controls and risk management.
Knowledge and Experience:
Bachelor’s degree in computer science or a related discipline, with typically 12+ years of experience in technology risk, security, or control environments (or an equivalent combination of education and experience).
Recognized technical expert with deep knowledge in area(s) of expertise and strong working knowledge across related domains.
Demonstrated analytical capability, sound judgment, and strong consultative and communication skills.
Ability to work effectively with clients, IT leadership, staff, vendors, and consultants.
Preferred certifications: ITIL Foundation. CISA, CISSP, or CRISC
