Northern Trust
Financial Services
SrLead,CyberSecITRiskManagement-EUC
Neural analysis suggests this role is
optimal for Lead candidates.
“Sr Lead, Cyber Sec IT Risk Management - EUC at Northern Trust. Skills: IT Risk Management, EUC Governance, Control Testing. Provide embedded advisory support for EUC governance. Help teams identify key EUC risks”
Industry & Context.
Analytical skills; Root cause analysis
What They're Looking For.
Must Have
Proven experience in Infrastructure Control, Proven experience in IT Risk Management, Proven experience in operational risk, Proven experience in end-user computing governance, Proven experience in data quality governance, Proven experience in control testing, Working knowledge of EUC lifecycle management, Working knowledge of repository governance, Working knowledge of owner attestation, Working knowledge of access reviews, Working knowledge of independent testing, Working knowledge of backup / continuity expectations, Working knowledge of decommissioning controls, Analytical skills to interpret control requirements, Analytical skills to review records and evidence, Analytical skills to identify gaps, Analytical skills to prepare concise risk summaries, Analytical skills to prepare remediation actions, Hands-on experience with SharePoint, Hands-on experience with Excel, Hands-on experience with Power BI, Hands-on experience with ServiceNow, Hands-on experience with Teams, Hands-on experience with documentation / evidence management practices, Excellent communication skills, Excellent stakeholder management skills, Ability to engage business users, Ability to engage control owners, Ability to engage technology partners constructively, Ability to work with precision, Ability to maintain audit-ready records, Ability to drive action to closure
Nice to Have
CISA, CRISC, CIA, or similar risk / audit certification, Knowledge of EUC / IPE governance concepts, Knowledge of operational risk frameworks, Knowledge of financial services control expectations, Experience working with end-user device management, Experience working with software asset management, Experience working with broader embedded controls teams
What You'll Do.
Provide embedded advisory support for EUC governance
Help teams identify key EUC risks
Classify EUC criticality
Align practices to enterprise standards
Review EUC repository records for completeness
Review EUC repository records for accuracy
Review EUC repository records for ownership
Review EUC repository records for tiering
Partner with owners to remediate data quality issues
Maintain a sustainable inventory posture
Assess adherence to critical EUC control requirements
Participate in RCSA exercise
Validate whether existing technology can replace EUC risk
Document outcomes for governance purposes
Verify critical EUCs reflected in continuity documentation
Support model alignment
Support recovery guidance
Support tracking and closure of EUC control gaps
Assist with exception / risk treatment discussions
Ensure decommissioned EUCs are removed from active use
Ensure decommissioned EUCs are updated in repository
Prepare governance metrics
Prepare trend analysis
Prepare escalation views for management
Highlight recurring issues
Highlight overdue actions
Highlight emerging risk themes
Highlight compliance health
Educate partners on governance requirements
Educate managers on governance requirements
Educate EUC owners on governance requirements
Educate on common control pitfalls
Educate on expected evidence
Assist with walkthroughs for internal reviews
Assist with evidence gathering for internal reviews
Assist with response coordination for internal reviews
Assist with walkthroughs for external reviews
Assist with evidence gathering for external reviews
Assist with response coordination for external reviews
Serve as EUC security lead during major incidents
Serve as EUC security lead during security events
Coordinate root cause analysis for endpoint incidents
Coordinate corrective actions for endpoint incidents
Coordinate preventive control improvements for endpoint incidents
Improve monitoring for EUC attack surfaces
Improve alerting for EUC attack surfaces
Improve threat response for EUC attack surfaces
Act as primary EUC cybersecurity interface
Support risk assessments (RCSA)
Support control attestations
Support regulatory requirements tied to EUC services
Provide executive-ready reporting on EUC security posture
Provide executive-ready reporting on EUC risks
Provide executive-ready reporting on remediation progress
Provide technical leadership to EUC engineers
Provide technical leadership to EUC leads
Provide technical leadership to managed service partners
Provide security leadership to EUC engineers
Provide security leadership to EUC leads
Provide security leadership to managed service partners
Mentor teams on secure endpoint design
Mentor teams on automation
Mentor teams on operational best practices
Drive a culture of security ownership
How You'll Work.
Team & Collaboration
Business stakeholders; Technology stakeholders; Control stakeholders; EUC owners; Enterprise Security; Risk Management & Controls; Internal / External Audit; Digital Workplace teams
Communication Scope
Stakeholder management; Executive reporting
Full Job Description
**_About Northern Trust:_** Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service. **Position: Sr. Lead, Cyber Sec IT Risk Management – EUC Location: Pune** **Job Description** Northern Trust is seeking a new team member to join the Infrastructure Control Governance team as a Control Business Partner aligned to End User Computing (EUC). This role will help strengthen the control environment for EUC governance by supporting risk identification, control assessment, inventory quality, lifecycle governance, and owner accountability for critical EUCs and related manual information produced by the entity. The position will work with business, technology, and control stakeholders to drive adherence to enterprise EUC requirements, improve governance consistency, and reduce the likelihood of errors, operational disruption, compliance gaps, and unmanaged end-user tooling risk. **JOB RESPONSIBILITIES** • EUC Governance Oversight – Provide embedded advisory support for EUC governance, helping teams identify key EUC risks, classify criticality, and align practices to enterprise standards for critical and non-critical EUCs. • Inventory & Repository Quality – Review EUC repository records for completeness, accuracy, ownership, tiering, and lifecycle status; partner with owners to remediate data quality issues and maintain a sustainable inventory posture. • Control & Attestation Reviews – Assess adherence to critical EUC control requirements such as role-based access, backup expectations, i
Applying for this Sr Lead, Cyber Sec IT Risk Management - EUC role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Northern Trust?
Real rants from real employees. Read before you apply.