Northern Trust
Financial Services
SeniorITAnalyst
Neural analysis suggests this role is
optimal for Senior candidates.
“Senior IT Analyst at Northern Trust. Skills: SOC reporting, SOX reporting, ITGC testing, Control testing. Support SOC 1 and SOC 2 reports. Maintain SOC control inventories”
What You'll Achieve.
Ensure SOC reports are accurate; Ensure SOC reports are complete; Ensure SOC reports are audit-defensible; Strengthen control design; Strengthen evidence quality; Strengthen operating effectiveness
Industry & Context.
Root cause analysis; Assess control deficiencies
What They're Looking For.
Must Have
5+ years SOC/SOX reporting, 5+ years IT audit, 5+ years IT risk, 5+ years control testing, Knowledge of SOC 1 and SOC 2 frameworks, Knowledge of IT General Controls, Knowledge of IT Application Controls, Knowledge of control design testing, Knowledge of operating effectiveness testing, Demonstrated control testing experience, Experience with external auditors
Nice to Have
Financial services experience, Regulated industry experience, Prior Big 4 audit experience, Prior Big 4 advisory experience, Familiarity with SOX, Familiarity with COSO, Familiarity with NIST, Experience with automated controls, Experience with data interfaces, Experience with reconciliation platforms
What You'll Do.
Support SOC 1 and SOC 2 reports
Maintain SOC control inventories
Map risks and controls
Ensure SOC descriptions are accurate
Evaluate system changes for SOX impact
Evaluate system changes for SOC impact
Perform IT General Controls testing
Test Access management controls
Test Change management controls
Test Computer operations controls
Execute business process control testing
Execute IT application control testing
Assess design effectiveness
Assess operating effectiveness
Sample control evidence
Inspect control evidence
Re-perform control procedures
Validate system-generated data
Identify control exceptions
Articulate root causes
Assess impact to SOC objectives
Assess impact to SOX objectives
Liaise with external auditors
Coordinate walkthroughs with stakeholders
Coordinate testing with control owners
Review auditor testing approaches
Review auditor requests
Review auditor results
Challenge auditor observations
Validate auditor conclusions
Track SOC-related issues
Track testing exceptions
Track management actions
Evaluate audit findings impact
Evaluate technology risk issues impact
Evaluate control failures impact
Support management response development
Validate remediation effectiveness
Validate closure of control deficiencies
Obtain control evidence
Validate control evidence
Clarify control responsibilities
Clarify control execution expectations
Provide training to control owners
Prepare reporting for senior management
Prepare reporting for governance forums
Identify control design improvements
Identify testing efficiency improvements
Identify evidence quality improvements
Standardize testing approaches
Stay current on SOC standards
Stay current on AICPA guidance
Stay current on leading practices
How You'll Work.
Team & Collaboration
Partner with Technology; Partner with Risk; Partner with Operations; Partner with Audit Services; Partner with external auditors; Coordinate with stakeholders; Coordinate with control owners; Work with Technology teams; Work with Information Security; Work with Operations teams; Work with Risk teams
Communication Scope
Written communication; Verbal communication; Clear reporting; Concise reporting
Full Job Description
**_About Northern Trust:_** Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service. We are seeking a Senior IT Controls Analyst to be part of the Global Financial Controls IT pillar, which covers SOX, SOC 1 and SOC 2 controls across a complex, regulated financial services organization. This role combines end-to-end Service Organization Control (SOC) governance responsibilities with hands-on IT and control testing, including ITGCs, key reports, and automated controls. The position plays a critical role in ensuring SOC reports are accurate, complete, and audit-defensible, while strengthening control design, evidence quality, and operating effectiveness. The role partners closely with Technology, Risk, Operations, Audit Services, and external auditors to bridge control ownership, testing execution, and reporting outcomes. **Key Responsibilities** * Support the governance and execution of SOC 1 and SOC 2 reports, including scope definition, control mapping, and reporting timelines. * Maintain SOC control inventories, risk-control mappings, and supporting documentation. * Ensure SOC descriptions, assertions, and control language are accurate, consistent, and aligned to actual operating practices. * Evaluate changes in systems, processes, or products for potential SOX and SOC impact. * Perform independent testing of IT General Controls (ITGCs), including, Access management (provisioning, deprovisioning, recertifications), Change management (SDLC, migrations, approvals), Computer op
Applying for this Senior IT Analyst role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Northern Trust?
Real rants from real employees. Read before you apply.