Roles and Responsibilities: This individual s primary day to day responsibilities are mentioned below (but are not limited to these): Perform information security risk assessment processes for new and existing Northern Trust s third parties business partners. Demonstrate some proven knowledge on some of the following domains: Information Security Governance and Risk Management Access Control Vulnerability and Penetration Network Security Application Security Cryptography Security Architecture and Design Operations Security Business Continuity and Disaster Recovery Planning Legal, Regulations, Investigations and Compliance Physical and Environmental Security Cloud Security Perform assessment of IT controls operation, identifying, gaps, risks and areas for improvement. Report writing skills. Knowledge on regulations related to banking and compliance Should be well versed with contract language, analysis and negotiation process. Responsible for reviewing master services contracts of the third parties to identify information technology and security related clauses. Responsible for working with procurement teams to formulate/renew the contracts as per the information security team guidelines. Responsible for documenting, and reporting to management, all findings from risk assessment processes. Collaborate with internal stakeholders & functional teams to ensure that all identified risks within each third party are assigned to business owners and tracked for timely closure. Able to interact in a professional manner and develop relationships with individuals and teams at any level in Northern Trust. Foster a positive and collaborative environment. Demonstrate ability to work well in both an individual contributor and team capacity. Rapidly and effectively adapt to a highly dynamic and fast-paced work environment. Skills Preferred: Excellent written and verbal communication skills. Able to converse and develop business relationships with individuals and teams at any level within Northern Trust. Knowledge of IT Security Domains / Frameworks (e.g., NIST, ISO27001). Knowledge of Compliance regulations. Understanding of IT Audit process. In-depth understanding of information security, risk assessments, security risk management principles. Principle understanding of Technology controls relating to Application and system vulnerabilities, Advanced experience with MS Office, SharePoint, and Reporting tools Ability to develop visual representations of processes and risks to support executive updates. Experience: Bachelor s degree in computer science or a related discipline and at least ten or more years of experience in the field of Technology Security or an equivalent combination of education and work experience. Relevant certification (e.g. CISA, CRISC, CISM, CISSP) is a plus

Senior Enterprise Mobility (MDM) Engineer Northern Trust is seeking a seasoned Mobility Device Management (MDM) Engineer. This partner will help manage our Corporate and BYOD mobile infrastructures on JAMF Pro and Microsoft Intune for MDM and MAM as well as support our JAMF MAC/OSX shared environment. Role will include meeting both engineering and project activities including hardening of mobile devices and project assignments supporting Digital Workplace Initiatives. Responsibilities Responsibilities will include the engineering, security hardening, and management and automation of the infrastructure that supports mobile device management solutions Assess, architect, design, and implement Mobility, MDM, and end user computing management solutions with a variety of tablets, smart phones, desktops and laptops Support the deployment of mobile devices configurations for enrollment processes, troubleshooting implementation and connectivity issues, providing ongoing operational support of mobile devices and mobile applications. Prepare instructions for partners to activate, enroll, and set up mobile devices for utilization Manage MDM infrastructure to support and manage partner mobile devices (iOS and Android). Will run activity, performance, and compliance reports on mobile devices within the MDM. Provide support for the JAMF MAC OSX configuration profiles and standards. Support the various application teams in their integrations or adoption of JAMF based applications for macOS by providing guidance to internal application packaging resources. Determine the most efficient methodology and path for securing the mobile infrastructure to include assessing technical configurations and security settings for mobile devices. Validate compliance and configuration management impacts in UAT and promote to production. Recommend cross functional configurations between MDMs (currently Intune and JAMF ). Implement best practices for projects moving forward as well as suggest and operationalize changes to current environment. Understand threats to mobile ecosystems and can help design security solutions and controls in support of mobile environments. Evaluate, recommend, and support configuration changes, enhancements, and modifications to the mobile environment. Develop, implement, and own technology control standards for both mobile/PC hardware and software, which includes standards for estimating, architecture, development platform, design, development, testing and deployment Serve as an advisor to technology and business stakeholders by understanding core MDM processes and priorities. Then drive to provide endpoint capabilities which will best enhance the stakeholders working experience. Contribute to and review solution design documents to ensure innovation, security, and business requirements are met while also keeping a keen eye on improving user experience with endpoint technology Collaborate with internal partners or vendor teams as needed (e.g. technology, architecture, information security, network, identity management) Actively participates in operational activities including: Execution of deployment operations to monitor and improve on pre-release, upgrades and current versions of software. Evaluating compatibility of programs with existing hardware and/or software features. Development of protocols to support established standards. Interacts with internal and external peers and managers to exchange complex information related to MDM technologies in scope. At times, may receive escalations to assist with incident resolution Qualifications Overall 15+ years of Industry experience 8+ years experience with Mobile Device Management Experience with a Mobile Device Management system (JAMF, Intune, etc.) Experience with the remote deployment and management of OSX, iOS and Android devices Experience with ITSM Tools for incident, change, and service request tracking. Experience with working multiple projects Working Knowledge of Wired and Wireless Networking. Working knowledge of Network concepts: TCP/IP, DNS, DHCP, VPN and troubleshooting connectivity. Strong troubleshooting, problem solving and creative thought-processing skills. Must be able to communicate effectively and cooperatively with end-users, IT staff, management and vendor support personnel.

Major Duties : Provides technical expertise and support to client, IT management and staff in risk assessments. Recommends system modifications to reduce user problems Identifies, evaluates, conducts, schedules and leads technical analyses functions to ensure all applicable IS security requirements are met Participates in the evaluation, development, implementation, communication, monitoring and maintenance of information technology security policies and procedures Provides leadership and guidance to staff, fostering an environment that encourages employee participation, teamwork, and communication Keeps abreast on the direction of emerging industry standards Experienced, functional expert with technical and/or business knowledge and functional expertise Carries out involving multiple disciplines and/or ambiguous issues Displays a balanced, cross-functional perspective, liaising with the business to help improve efficiency, effectiveness and productivity Strategic in developing, implementing and administering programs within functional areas Knowledge : Is a technical expert with in-depth knowledge in area of expertise and strong knowledge of other areas Requires excellent analytical ability, consultative and communication skills, strong judgment and the ability to work effectively with client, IT management and staff, vendors and consultantsHighly flexible and adaptable to change Experience :Bachelor degree in Computer Science or a related discipline and technical experience in the security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience.

Role/ Department: We are seeking a Developer Security with strong experience in Devops and Cloud Computing. Responsible for the analysis, design and development of scalable software solutions across the full secure software development life cycle - from conception to deployment. Should be well familiar with CI/CD pipelines. As a lead in our PAM team, you will be responsible for designing, implementing, integrating, testing and deploying features and components in a large-scale system. We expect you to drive improvements to code quality, performance, and team processes while leveraging modern web technologies and tool. Should be able to debug problems arising as a result of implementing Devops technologies and be able to understand the implications of his implementations. Responsibilities Develops and administers the solutions that meet system expectations relative to scalability, performance, fault tolerance, usability, and data integrity. Delivers solutions that meet end user expectations relative to performance, usability and security for the PAM Engineering and Architecture function. Uses specific knowledge of a discipline to achieve goals through own work. Has specific knowledge or expertise typically gained through formal education or equivalent experience. Uses expertise to provide guidance to others as a project manager or consultant. Requires in-depth conceptual and practical knowledge in own job discipline and basic knowledge of related job disciplines. Solves complex problems. Works independently; receives minimal guidance. Will lead projects or project steps within a broader project or may have accountability for on-going activities or objectives. Acts as a resource for colleagues with less experience Major Duties Design and develop Terraform scripts Automate Cloud deployments Design, develop and unit test components as defined above Consult with business partners on requirements and synthesize into technical requirements and designs On the technical side, work with architects, designers and enterprise framework groups on the best solution for both business and IT Ensure that non-functional requirements such as security, performance, maintainability, scalability, usability, and reliability are being considered when architecting solutions. Ensure code meets standards and tested appropriately Knowledge/Skills Knowledge of cloud deployments, Terraform. Knowledge of full secure software development lifecycle. Analytical and problem-solving skills. A positive goal-oriented attitude with a focus on delivery. Experience in Kubernetes & docker would be a plus. Experience in Terraform Competent using GIT based source code management tools. Ability to learn and use new technologies. Background in networking, data security and cloud-based applications. Experience with distributed computing platforms for high-scale systems. Experience with Azure services and eco-system. Experience with Microsoft and Linux-based environments. Experience with continuous integration and deployment tools. Experience Required 5+ years of experience working in the relevant field . A College or University degree and/or relevant proven work experience is required.

Northern Trust is seeking an experienced Principal Site Reliability Engineer with a strong focus on developing observability and automation. This role will play a pivotal part in ensuring the reliability and performance of the company s systems and services. As a Site Reliability DevOps Engineer, you will be responsible for defining and deploying key observability services with a deep focus on architecture, production operations, capacity planning, performance management, deployment, and release engineering. You will work with cross-functional teams to assist with providing efficiency of our services. Your expertise in both software engineering and system operations will enable our partners to drive continuous improvements in our platform s reliability. This role will focus on bringing complete observability across all technologies. This role will be responsible for a number of key functions that both support and drive improvements to the reliability of Northern Trust s IT Landscape. What you will do : System design and Architecture: Lead the design and architecture of providing reliability, scalability, and performance of critical complex systems. Operational Excellence: Develop and maintain automation scripts and tools to streamline operations and reduce manual tasks. Oversee system performance transparency. Incident Response/Root Cause Analysis: Collaborate with root cause analysis and implement measures to prevent recurrence of issues. Monitoring and Observability: Design and implement comprehensive monitoring and observability solutions to proactively detect and address issues prior to them impacting our business. Develop and maintain dashboards and alerts to provide real-time insights into system health. Reliability Improvements: Identify opportunities for improving system reliability through process enhancements and technical solutions. Documentation and Communication: Create and maintain detailed documentation of systems, processes, and procedures. Communicate effectively with stakeholders across different teams and levels within the organization. Project Management/Collaboration: Manage and prioritize multiple projects and initiatives related to reliability and performance improvements. Collaborate with product, development, and operations teams to align SRE efforts with overarching business goals. Qualifications : Bachelors degree or equivalent experience 10+ years in systems engineering with a focus on reliability, systems operations, and software engineering 5+ years as a Team lead or a hands on Technical Manager role that can engage and deliver projects to completion Strong proficiency in programming languages such as Python, Go, Ruby, Java, etc Experience with both on-prem and cloud solutions. Experience with containerization. Demonstrated ability to design and implement systems that ensure observability with associated dashboards Deep understanding of distributed systems, networking, and modern software architectures Excellent problem-solving skills and ability to handle complex technical challenges Strong dedication to customer needs, with excellent communication and the ability to build lasting relationships, alongside the capability to articulate complex reliability strategies in a clear and impactful manner. Prior experience delivering Infrastructure as Code via a CI/CD pipeline Proven experience in leading a mentoring technical team Skilled in implementing automation for corrective action based on deployed observability solutions Practical experience operating in an Agile development environment

The Global Security Operations organization is seeking a Mid to Senior/expert level Cyber Threat Intelligence Analyst to join the Threat Intelligence (TI) team. The TI team directly supports the Chief Information Security Officers (CISO s) organization by providing Cyber Threat Intelligence (CTI) to security operation teams as well as leading cyber risk reduction efforts by identifying emerging Cyber Threats facing Northern Trust and Northern Trust technologies. Key Responsibilities: Act as Technical Liaison between CTI and Global Threat Management (GTM) to lead cyber exposure/risk assessment activities from emerging threats. Enable Threat Hunting operations by identifying technical indicators (such as IOC s) and Techniques, Tactics, and Procedures (TTP s) from emerging threat activity. Identifies high and critical Vulnerabilities being exploited by Cyber Criminals and Nation State groups to support the Vulnerability Management (VM) team s prioritization efforts. Leads Intelligence-Driven Risk Identification and Risk Reduction Efforts across the organization. Maintain knowledge of changing technologies, attack methods, and emerging threat landscape. Produce and deliver operational written and oral threat intelligence briefings tailored to the business interests of non-technical and technical stakeholders across the organization. Track intelligence gaps and support Requests for Information (RFIs) efforts across the organization to fill identified intelligence gaps. Skills/Qualifications/ Required Experience: BA/BS in Computer Science or equivalent practical experience. Experience in cybersecurity consulting and/or cybersecurity operations to include Vulnerability Management, Incident Response, Threat Hunting and Cyber Threat Intelligence. Extensive knowledge of the MITRE ATT&CK framework and ability to apply the framework to support threat detection and threat reduction efforts. Detailed knowledge of global cyber threats, threat actors, and the tactics, techniques and procedures used by cyber adversaries, specifically those targeting the financial services sector. Ability to leverage threat intelligence reporting to support threat detection efforts. Experience in large scale information technology implementations and operations preferred. Industry certifications such as GIAC Cyber Threat Intelligence (GCTI) certification. ( Not Mandatory ) Demonstrated ability to produce concise, refined, written threat intelligence assessments and briefings. Experience tailoring oral threat intelligence briefings to non-technical and technical leaders across the organization. Proactive communicator and team-player with a proven ability to independently identify, analyze, and share the relationships and technical, geopolitical, business, and financial implications between persisting and emerging cyber threats and threat vectors.

The IT Change Management Lead - APAC is responsible for overseeing and executing IT change management processes in alignment with enterprise ITSM policies and frameworks within the APAC region. This role ensures that changes to information security-owned technologies, applications, and platforms are implemented efficiently, with minimal risk to business operations. The role will collaborate closely with regional and global IT operations, security, infrastructure, and business stakeholders to drive compliance, continuous improvement, and operational stability. Key Responsibilities: Change Management Execution & Governance: Lead and enforce IT change management policies, procedures, and controls to ensure adherence to enterprise ITSM standards and regulatory requirements. Manage and oversee the global Information Security Change management meetings, ensuring effective risk assessments, approvals, and communications for all planned changes. Review and assess change requests for completeness, risk, impact, and compliance with ITSM governance. Drive continuous improvement initiatives to optimize change processes, reduce failed changes, and improve change success rates. Act as the primary point of contact for change escalations and ensure timely resolution of issues impacting IT service stability. Collaboration & Stakeholder Engagement: Work closely with IT operations, application support, security teams, and business stakeholders to ensure smooth execution of changes. Partner with regional and global teams to align IT change management strategies with organizational objectives. Provide advisory support to technology teams to ensure change planning, execution, and validation follow best practices. Liaise with compliance teams to provide evidence and reporting for IT change controls and regulatory adherence. Reporting & Metrics: Develop and maintain IT change management KPIs, SLAs, and reporting dashboards to monitor performance and compliance. Analyze trends in change failures, unauthorized changes, and deviations from change processes, and propose corrective actions. Generate reports for senior management on change volume, success rates, and operational impact. Training & Continuous Improvement: Train and guide IT teams on change management best practices and enterprise policies. Conduct regular assessments to identify gaps in change processes and implement improvements. Stay updated on industry best practices and emerging trends in ITSM, change control, and IT governance. Qualifications - In-depth knowledge of Change Management methods, tools, terminology and industry practices Knowledge of various corporate security rules, legal and regulatory obligations such as PCI, SOX or similar standards Knowledge of ITIL and industry standards, concepts, terminology and common practices Ability to assess implications of proposed systems changes on the processes and factors related to the end user experience as well as business functions (e.g., marketing, sales, and financial controls). Excellent communication skills - listening, verbal and written - including meeting management and facilitation. Excellent customer service skills - servicing and interfacing with individuals across IT (customers) in different roles to coordinate/lead elevates for major projects as well as operational changes. Excellent organization skills with proven ability to manage multiple assignments and priorities successfully, delivering with high quality. Proven ability to multitask in a fast-paced environment. Preferred ITIL certification or equivalent Strong written and verbal communication is required along with change Co-Ordinator/Manager in a corporate environment. Working knowledge of ServiceNow platform preferred BA, BS preferred or equivalent experience in related field Advanced analysis and problem-solving skills with the ability to analyze data from various sources to determine next steps. Ability to create effective ways to display data using various modeling, reporting, statistical perspectives and trending methods. Negotiation skills with the ability to influence others through sharing information and gaining commitment Facilitation and meeting management skills with the ability to create a framework that encourages participation and productivity Ability to work in a team-oriented environment Ability to adapt to new situations and learn quickly Ability to help others learn knowledge or skills in a specific area Experience with Microsoft Azure ADO deployment pipelines Experience with Agile, CI/CD, DevOps, and Lean practices

Under general supervision, reviews and processes additions and changes to ERP payroll system which may include various payroll adjustments and inputs etc. Assists in researching and resolving payroll and tax withholding, deposit or reporting related issues. Responsible for system applications and testing the updates. Job Description Major Duties :1. Administers and processes various corporate human resource programs or staff services within Payroll function. 2. Responds to payroll inquiries from all levels throughout the organization to explain adjustments to pay and tax law changes. 3. Reviews adjustment requests to ensure proper authorization and compliance with company policies and advises managers of appropriate corrective action when an error occurs. 4. Analyzes existing policies, procedures, and practices to ensure compliance with state and federal wage and tax laws. Recommends modifications of existing payroll processes to ensure compliance with legislated requirements. 5. Assists in the annual audit and in the development/modification of controls/procedures. 7. Assists in researching and monitoring regulatory and legislative changes impacting payroll areas of responsibility to ensure ongoing compliance. 9. More technically sound in area of expertise and has broader knowledge of other areas. 10. Continues becoming a key subject matter expert. 11. Handles all types of analysis and handles more complex work, including the coordination of UAT testing of tax or application releases. 12. Represents the department in various meetings. 13. Works on projects and learning project management skills. Knowledge :Excellent oral and written communication skills are required. Solid understanding of payroll, tax and social security laws, Good risk thinking. Analytical and problem solving skills are required. Technical skills / systems knowledge (e.g. Microsoft, Workday) is required Experience : A University degree with ~ 8 yrs of experience. Payroll certification is preferred. Behavior : Learnability and go getter.

Position Title: Data Visualization Lead General Position Description : The Data Visualization Lead is responsible for transforming complex datasets into clear, engaging, and actionable visual insights. This role involves collaborating with stakeholders, designing effective dashboards, and ensuring best practices in data storytelling, UI/UX, and business intelligence (BI) tools. The ideal candidate has expertise in visualization tools (such as Tableau, Power BI, D3.js), data analysis, and a strong understanding of user experience. Minimum Requirements : Bachelor s or Master s degree in Data Science, Computer Science, Business Analytics, or a related field. 5+ years of experience in data visualization or business intelligence. Certifications in Tableau, Power BI, or related BI tools are a plus. Must be flexible to work in shifts and/or on a rotational basis Desired Competencies: Technical Skills: BI Tools: Power BI, Tableau, Qlik, D3.js, Google Looker Studio, Figma and similar mock-up tools Programming: SQL, Python Data Processing: ETL, data cleaning, transformation. Databases: SQL Server, PostgreSQL, BigQuery, Snowflake. Web Technologies (Optional): JavaScript, HTML, CSS (for custom visualization development). Soft Skills: Strong analytical and problem-solving abilities. Excellent communication and storytelling skills. Ability to collaborate across teams and work in a fast-paced environment. Attention to detail and ability to handle complex datasets. Project management and leadership skills. Key Responsibilities : Data Visualization & Dashboard Development Design and develop interactive dashboards, reports, and visualizations using tools like Power BI or custom web-based solutions. Ensure visualizations are intuitive, accessible, and aligned with business goals. Optimize performance and usability of dashboards for different audiences. Data Analysis & Interpretation Work with raw data to clean, process, and transform it into meaningful insights. Collaborate with data engineers and analysts to define key metrics and ensure data accuracy. Identify patterns, trends, and anomalies in data to support business decisions. Stakeholder Collaboration Gather requirements from business users, executives, and technical teams to design effective visualizations. Present insights in an engaging manner to both technical and non-technical stakeholders. Train and support end-users in using BI tools effectively. UI/UX & Data Storytelling Apply principles of UI/UX to ensure dashboards are user-friendly and visually appealing. Use data storytelling techniques to enhance the impact of reports and presentations. Ensure consistency in design across reports and dashboards. Technical Leadership & Best Practices Define and enforce best practices for data visualization, design consistency, and accessibility. Stay updated with the latest trends and advancements in BI tools and techniques. Provide mentorship and guidance to peers and create effective backup Integration & Automation Work with data engineers to ensure seamless integration of visualization tools with data warehouses (e.g., Snowflake, etc). Automate reporting processes to reduce manual effort and enhance efficiency. Eligibility 24 months as a consultant or team lead or in a similar P2 level job profile

The Second Line of Defense (2LOD) Controls Testing partner (Sr. Consultant Risk) will operate with minimal guidance and increased autonomy. This role involves leveraging in-depth conceptual and practical knowledge to execute complex testing engagements, refine methodologies, mentor less experienced team members, and provide strategic insights that influence the cyber and technology risk posture. The key responsibilities of the role include: Test, validate, and enhance control testing methodologies and test procedures, ensuring they remain effective amid evolving cyber and technology threats Perform 2LOD validation work on complex engagements, including advanced testing plans, detailed workpapers, comprehensive findings, and high-quality reporting to risk committees Oversee the resolution of complex risk issues, collaborating with various teams to design, implement, and improve controls, aligning with industry standards and regulatory expectations Conduct in-depth examinations of cyber risk controls, evaluate their design and operational effectiveness, and recommend remediation strategies to leadership Support second-line governance activities, participating in Risk Identification and Change Initiative Risk Assessment processes, and offering expertise on risk trends and control gaps Communicate complex operational and technical risk findings to stakeholders in a clear and persuasive manner, working to build consensus and influence remediation efforts Apply advanced risk assessment knowledge to identify critical risks and controls, informing testing priorities and strengthening risk management strategies Manage multiple testing initiatives simultaneously, applying strong project management and organizational skills while maintaining flexibility in a dynamic environment Monitor evolving banking/financial regulatory requirements, ensuring continuous alignment of testing activities with regulatory guidance and industry best practices The successful candidate will benefit from having: 6+years of experience in IT Audit, Cybersecurity, IT Risk & Control, or related fields CISSP, CISM, CISA, CRISC, or equivalent certifications strongly preferred In-depth understanding of cyber and technology risks within the financial services sector Experience with cloud security, MFA solutions, password management tools, and Secure SDLC practices Strong analytical, communication, and negotiation skills to handle complex issues and build consensus among stakeholders Demonstrated ability to guide less experienced team members and effectively manage projects Proficiency in Microsoft Office 365 and familiarity with risk management/GRC tools (e.g., ServiceNow, Fusion) to streamline issue tracking and remediation

Develop an understanding of Audit Services Charter, Policy, and Methodology along with Business Units and associated risks. Collaborate with DA team members to help translate business needs into insightful digital solutions. Work collaboratively with audit and DA teams to deliver ad hoc and customized analytics in support of global internal audits. Encourage the usage of data analytics on audits within the region, working with partners to apply data analytics inside audit engagements. Communicate analytics results and insights to end users in non - technical terminology. Develop sophisticated business intelligence, allowing users to unlock insights across disparate data sources. Support the implementation of complete Big Data solutions including data acquisition, storage, transformation, and analysis. Exhibit attention to detail, ensuring data completeness and accuracy throughout the coding process. Demonstrate an innovative mindset, identifying opportunities to generate increased coverage and assurance throughout the Internal Audit process. Qualifications: Degree in Accounting, Finance, Economics, Computer Science - or equivalent work experience. 3-5 prior years of experience working with data analytics solutions such as SQL, Tableau, Power BI, QlikView, Alteryx, ACL or equivalent. Prior Internal Audit experience is preferred, though not required. Demonstrated ability to innovative and solve real world business problems. The ability to articulate complex data insights to both technical and non-technical audiences. Self-discipline and the ability to balance multiple priorities in a deadline-driven environment. Ability to work flexibly in a hybrid environment (3 days office, 2 days remote), on a global team with frequent collaboration across time zones.

Architecting, deploying, and supporting Microsoft Modern Management platforms which includes Intune, SCCM, Cloud Management Gateway, Windows Autopilot, Co-management, MEM and Azure Portal as well as MDM for the MAC/OSX infrastructure integrated between JAMF and Microsoft Intune. Ensures the highest level of security and availability of associated systems, applications, and infrastructure through alignment to STIG/CIS guidelines, maintaining practices/processes for monitoring, alerting and remediating noncompliance and/or vulnerabilities, identifying trends and assess opportunities to improve capabilities, processes, and execution to meet changing needs and requirements of a vigorous enterprise support model. Manage evaluation, installation, integration, testing and performance monitoring of the infrastructure and related software products in support of a multi-client, multi-vendor systems software/hardware environment (i.e., laptops, desktops, iMacs, MacBooks, Mac Pro laptops ) Provides technical analysis of requirements necessary for the protection of all information processed, stored, or transmitted by systems. Apply expertise across all aspects of the end user service design framework to deliver a superior experience that is scalable, sustainable, supportable, and aligned to future state. Ensure compliance for controls, standards, device posture, MFA, detailed infrastructure solutions/repeatable patterns (build-kits) for non-production and production environments, transitioning knowledge to infrastructure operations, and other various levels of global technical support. May act as Project Leader and/or serve as an expert resource/point of contact within the group for partner, committee, or management interactions. Required Skills/Qualifications Bachelors Degree or higher in relevant field or equivalent work experience . Related technology certifications a plus: e.g., ITIL certifications, engineering certifications Overall 10-11 years of Industry experience 6-7 years engineering experience with Infrastructure design, architecture, setup, implementation, transition, and maintenance of on-prem, cloud and hybrid cloud enterprise infrastructure and support model implementations on related platforms Management points/Site servers, Distribution points, WSUS and patch management via SCCM Microsoft Endpoint Management - Responsible for device management, maintaining the Intune/Autopilot environment OSD creation/maintenance, application packaging/deployment, Windows patching, hardware specs, device management, policy creation/ mgmt. , Autopilot, Co-management, Conditional Access, device policies, and supporting technologies, e.g., AD/GPO/Azure cloud integration, authentication, LAN, WAN, voice network environments, routing protocols, various technology architectures including TCP/IP, DHCP, DNS, LAN, WAN, Wireless, VPN, peripherals, packaging, PowerShell / ZSH / Bash scripting, etc. Azure Active Directory and Office 365, Security (LAPS, BitLocker , Windows Hello for Business, Certificate 802.1X) Apple device management and compliance, software alternatives, and related technologies/components including but not limited to Apple Business Manager, DEP, VPP, Apple Configurator, MySQL, VMware Windows server. M365 Security Products (Microsoft Defender ATP, MDAV, Azure RMS) Microsoft Windows 10 Security and Management ( BitLocker , MBAM, Device Guard , Credential Guard) end point conferencing platforms like Microsoft Teams, Cisco Jaber, Cisco WebEx and Zoom Global technology experience working with various towers and teams. Experience with maturing o perations and engineering processes , documentation, monitoring capabilities and queue workflow. ITSM model (Service Now integrations a plus) A self-starter with a passion for technology, teamwork, overcoming challenges, prioritization, problem solving, diagnosis/troubleshooting providing exceptional customer service. Strong adaptation skills including the ability to communication at all levels, analytical ability, strong judgment and management skills, and the ability to work effectively with partners, vendors, IT and operational leaders .

REQUIRED EXPERIENCE Bachelors degree in Computer Science, Information Technology, or related field 7+ years of experience in IT operations, with at least 5 years focusing on change management Strong understanding of one or more of these Middle ware messaging, hosting, reporting, and ETL technologies such as: IBM WebSphere MQ, Solace, Kafka, Infosphere DataStage, Control Data Capture, WebLogic, Tomcat, Apache, Microsoft Dot Net Microsoft Azure DevOps (Scrum master experience desired but not required) In-depth knowledge of ITSM frameworks (e.g., ITIL) Experience with ITSM tools (e.g., ServiceNow, BMC Remedy) Excellent project management and organizational skills Strong analytical and problem-solving abilities Outstanding communication and interpersonal skills JOB RESPONSIBILITIES Change Strategy and Policy: o Develop and maintain a comprehensive change management strategy aligned with ITSM frameworks and financial industry best practices o Participate in the creation and update of change management policies and procedures for all platform teams o Attend and represent all distributed Platform teams changes at the Change Advisory Board (CAB) o Attend and represent all distributed Platform teams changes at the Major Events Advisory Board (MEAB) o Attend and represent all distributed Platform teams changes at the Weekly Infrastructure Change Review Change Request Management: o Oversee the entire change lifecycle, from submission to closure o Review and classify change requests based on risk, impact, and urgency o Ensure proper documentation of all changes in the ITSM tool Risk Assessment and Mitigation: o Conduct thorough risk assessments for proposed changes across all platforms o Assist in the development of risk mitigation strategies and rollback plans o Ensure compliance with financial industry regulations (e.g., SOX, GDPR, PCI DSS) Change Scheduling and Coordination: o Manage the change schedule to minimize disruption to financial operations o Coordinate change windows with business units, considering peak transaction periods, moratoriums and major events o Manage dependencies between changes across different platforms Stakeholder Management and Communication: o Develop and execute communication plans for all platform changes o Liaise with various stakeholders, including platform teams, application owners, and senior management o Conduct pre-implementation and post-implementation briefings Change Implementation Oversight: o Monitor change progress and ensure adherence to approved plans o Make go/no-go decisions for critical changes o Coordinate with platform teams during change execution Post-Implementation Review and Reporting: o Conduct post-implementation reviews (PIRs) for significant changes o Analyze change success rates and identify areas for improvement o Provide plans for any failed change to ensure that there are no repeat occurrences o Compile and distribute change reports to management Continuous Improvement: o Regularly review and update change management processes o Review change trends for templating opportunities and implement templating o Implement automation to streamline change processes where possible o Stay updated on best practices for change management in Middle ware technologies o Participate in creation and follow through on any change health plans as applies Incident and Problem Management Interface: o Coordinate with Incident and Problem Management teams to handle changes resulting from major incidents or recurring issues Compliance and Audit Support: o Maintain comprehensive records of all changes for audit purposes o Prepare reports and documentation for internal and external audits o Ensure change processes meet regulatory requirements specific to financial institutions Training and Knowledge Transfer: o Develop and deliver training programs on change management processes o Facilitate knowledge sharing sessions between different platform teams Vendor and Third-Party Management: o Coordinate with vendors for changes related to UNIX, Linux, Windows, and VMware systems o Ensure third-party changes adhere to the institutions change management processes QUALIFICATIONS As a partner at Northern Trust, you must actively manage and mitigate risk and act with integrity. In accordance with our core values of service, integrity, and expertise, you are expected to: Adhere to all applicable risk management programs, policies, and procedures. Complete all mandatory training by the deadline. Understand how your behavior could expose Northern Trust, its clients, and financial markets to different types of risk. Ensure that Northern Trust or its clients are not exposed to inappropriate or excessive risk. Escalate any risk concerns, including those resulting from mistakes / errors to a manager or business unit risk officer. Exercise diligence regarding cyber-security Cooperate with internal control functions (including first-line Control, Risk, Compliance, Audit, self-assigned, etc.) and applicable regulatory bodies. Avoid conflicts of interest or behaviors that might produce unfair outcomes for Northern Trust or its clients or damage the integrity of financial markets. KEY COMPETENCIES Strategic thinking and planning Risk assessment and management Stakeholder management Conflict resolution Decision-making under pressure Attention to detail Adaptability and flexibility Continuous improvement mindset WORK SCHEDULE Full-time position, typically Tuesday to Saturday - 3 days a week in the office May require occasional evening and weekend work for critical changes On-call rotation may be required for emergency changes Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for . We value an inclusive workplace and understand flexibility means different things to different people. Apply today and talk to us about your flexible working requirements and together we can achieve greater.

At Northern Trust, we ve earned the reputation of a reliable partner that our clients can count on to operate daily in an effective manner and keep their information secure. As such, risk metrics and reporting and the data analytics that support it, is essential to ensure we meet the high expectations of our clients and ourselves. Specialist, Corporate Information Technology Risk, within the Non-Financial Risk (NFR) Management organization, within the second line-of-defense (2LoD) will be an individual contributor working closely with peers, first line of defense (1LoD) data role holders, Enterprise Data teams, and their manager (reporting to the Head of Data Risk) to execute and enhance Data Risk activities aligned to the overall Data Risk strategy. The Specialist role will help define and implement the processes and reporting mechanisms for performing credible challenge and oversight for in-scope Data Risk areas such as Records/Information Lifecycle Management, Data Management, and Data Safety, Ethics and Bias. Additionally, we are a team that lives Northern Trust s values of cherishing and nourishing our diverse and inclusive culture, and we welcome you to help us further define and grow our community. Skills/Experience 12+ years of technical experience in implementing data risk and/or management solutions in areas such as Data Quality, Metadata Management, Data Cataloging, Data Lineage, Record/ Information Lifecycle Management (including records retention), Data Governance, Data Protection and Data Privacy. Must have hands-on knowledge in implementation of Collibra data management modules / solutions. 4 - 6 years of risk management experience preferred, with heavy favor for those with expertise in data management technology implementations. Understanding of DCAM, DAMA-DMBOK, and RDARR/BCBS 239 frameworks and best practices. Basic understanding of ETL concepts. Advanced understanding of tooling/ technologies utilized to perform Records Lifecycle Management including the processes related to data retention, deletion and legal hold. Advanced data analytics skills, working knowledge of any query language such as SQL or Python are preferred. Strong working knowledge of the Banking industry preferred, 5+ years in Financial Services is strongly recommended. Strong documentation and communication skills required to summarize and present information related to credible challenge and review results. Organizational skills required to coordinate risk related activities. Can work independently as an individual contributor. Solution-oriented and proactive work style. Ability to manage multiple priorities at once. Responsibilities will include: Utilizing the Data Risk Team s strategy documentation and corresponding data policies, perform technical assessments of current data management practices and evaluate for compliance to the respective data policy / standard. Perform technical analysis of Collibra implementation / data management activities related to Data Quality, Metadata Management, Data Cataloging, Data Lineage, and Record Lifecycle Management (inclusive of record retention and legal hold processes) and provide recommendations for improvements based on industry leading practices. Collaborate with stakeholders in the 1LOD and other enterprise data teams to effectively address and remediate identified gaps and to provide recommendations for improving or enhancing the overall data strategy within the bank. Perform Data Risk team oversight and credible challenge activities against the 1LoD implementation of data management strategy practices such as Critical Data Element identification, Data Quality rule development, adherence to RDARR/BCBS 239 requirements, and Data availability/ integrity efforts. Collaborate closely with others within the Data Risk Team and NFR/ second line of defense (2LOD) partners worldwide to implement data risk strategy and achieve targeted objectives. Support findings and recommendations with technical documentation illustrating results and proposed recommendations based on industry leading practices. Review Data Risk related policies and standards, identify areas of improvements and support with enhancement of the documentation and procedures to improve compliance and alignment to industry expectations. Participate in ad-hoc projects or special program initiatives to further the Bank s overall data strategy and underlying activities. Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for . We value an inclusive workplace and understand flexibility means different things to different people. Apply today and talk to us about your flexible working requirements and together we can achieve greater.

Serve as the POC for everyday Patching and Vulnerability Functions in the Infrastructure Engineering a nd Ope r ations organization across the Infrastructure towers Serve as key liaison and spokesperson during a n y risk and control meetings for any Infrastructure tower as per patching and vulnerability remediation , as soon as a threat has been identified and facilitating communications between Northern Trust groups Have or acquire an in depth understanding of the different moving parts and functions involved in the vulnerability remediation process especially as involves Infrastructure components Represent the Infrastructure towers in Risk Control with IT Leadership and operational committees to communicate the status, capabilities, and issues of the infrastructure organization Apply broad technical knowledge to provide remediation guidance across several of the technology areas Integrate technical control expertise and business understanding to coordinate / envision superior solutions for the infrastructure components Maintain an effective technical network across the Control community, ITOC, technical SMEs and architects for multiple service areas Analyze high volumes of vulnerabilities across individual towers requiring special attention Ingest and communicate vulnerability metrics with the greater Infrastructure team and Executive Management to allow for data-driven risk management Issue Management - Validate accuracy of vulnerability record s to be uploaded to ServiceNow Ensure responsible vulnerability o wners provide regular status updates in ServiceNow and escalate to accountable owner(s), as needed Support Management in providing timely information on status to key stakeholders (CIO, CTO etc . ) and obtain necessary approvals Support Management in monitoring issues with upcoming due dates (30 - 60 - 90 days), communicating and validating on progress to ensure transparency on status and vulnerability resolution Escalate any vulnerability downgraded to at risk within 90 days of due date to Management Facilitate deferral and extension process with formal notification and approvals (where needed) to appropriate accountable owners Review and validate evidence for closure of issues to ensure conditions for closure are met; document validation conclusion in vulnerability tickets Share key insights and learnings from participation in Infrastructure meetings to share with management As a partner at Northern Trust, you must actively manage and mitigate risk and act with integrity. In accordance with our core values of service, integrity, and expertise , you are expected to: Adhere to all applicable risk management programs, policies, and procedures Complete all mandatory training by the deadline Understand how your behavior could expose Northern Trust, its clients, and financial markets to different types of risk Ensure that Northern Trust or its clients are not exposed to inappropriate or excessive risk Escalate any risk concerns, including those resulting from mistakes / errors to a manager or business unit risk officer Exercise diligence regarding cyber-security Cooperate with internal control functions (including first-line Control, Risk, Compliance, Audit, self-assigned, etc.) and applicable regulatory bodies Avoid conflicts of interest or behaviors that might produce unfair outcomes for Northern Trust or its clients or damage the integrity of financial markets Qualifications Bachelors degree in information technology , Management Information Systems, Computer Science or a related discipline 10 + years as Infrastructure vulnerability and patching operating at enterprise scale Advanced technical problem-solving skills Practical experience in both technology infrastructure and application development architectures Strong system analysis and service development experience Financial or Regulatory domain experience Service Now experience Familiarity with Fusion a plus Knowledge/Skills Well-versed in patching and security industry best practices , tools and regulatory and compliance frameworks Highly motivated, energetic self-starter who takes ownership of issues and drives them to resolution Good organizational skills - manages and prioritizes multiple tasks across different time horizons within deadlines Cooperative, and collegial manner to be able to flex to wide range of stakeholders and in high-stakes situations Strong decision-making skills Strong analytical, problem solving and process re-engineering skills Excellent project management skills; oral and written communication Skills in translating broad strategic intent into tactical plans and directions are essential Applies broad industry knowledge and awareness Negotiates with senior leaders across the business

Major Duties :1. Reviews, disseminates, and interprets policies and procedures. Works to proactively establish and document related policies, procedures and standards within the parameters of any relevant laws and regulations. 2. Verifies that activities meet any federal, state and/or local legal and regulatory requirements and regulations and monitors outcomes/risk levels for the organization or assigned area. 3. Consults with partners regarding daily decisions that could pose risk and conflict with existing policy, and assist with client negotiations of new and existing business on various issues that may present elements of risk. 4. Communicates and provides risk mitigation advice and requirements to managers and appropriate personnel. 5. Identifies situations which pose significant risk and guides management in developing policies and/or procedures that create the proper balance between risk and reward. 6. Interacts with regulators, internal and external auditors on regulatory topics as needed and appropriate. 7. Provides direction and training to more junior staff. 8. Serves on internal and external groups to provide and receive advice on industry trends. Knowledge :Knowledge of risk management and strategic goals for the banks business. Strong knowledge of regulations, federal, state, and local laws and regulations that impact key activities. Communication and analytical skills are necessary to consult with partners/clients, and analyze information and to develop compliant policies and procedures. Experience :7 or more years of risk management or compliance experience.

Major Duties :1. Develop tools and processes used to maintain a common, data standard across the organization. 2. Assess, manage, maintain strategies that reduce data redundancy and increases the consistency / confidence of data used for decision making; improving knowledge firm-wide. 3. Define and deliver data management standards, processes and controls and content for the creation and maintenance of common data dictionaries. 4. Participates in periodic reviews to ensure continued compliance with the data governance policies (includes compliance assessments, monitoring and control testing). 5. Resolves conflicting priorities among data owners, data consumers and custodians within sphere of the domain. 6. Collaborates with partners across the organization in maintaining the data governance and data quality structures ensuring we are meeting business needs while balancing quality, risk and cost. 7. Carries out activities that are large in scope, cross-functional and technically difficult. 8. Role is balanced between high level operational execution and development, and execution of strategic direction of business function activities. 9. Conducts preliminary analysis. 10. Responsible for direct interaction with different committees and/or management. 11. Strategic in developing, implementing and administering programs within functional areas. Knowledge :- Knowledge of Data Governance, Data Quality, and Enterprise Data Management concepts. - Understand and be capable of effectively communicating the role of Data Governance to both business and technical communities within the sphere of the data domain. - Excellent oral and written communication skills are required. - In-depth Functional / Industry Knowledge is required - Highly flexible and adaptable to change. - Technical skills / systems knowledge (e.g. Peoplesoft) is required Experience :A College or University degree and/or relevant proven work experience is required / preferred. Related Industry qualification (e.g. ACCA) is required / preferred

Northern Trust is looking for an experienced and detail-oriented Change Manager to oversee the change management process for our UNIX, Linux, Windows, and VMware environments. The successful candidate will be responsible for ensuring that all changes to our IT infrastructure are properly assessed, planned, implemented, and reviewed, minimizing risk and maximizing value to the business. JOB RESPONSIBILITIES Change Strategy and Policy: Develop and maintain a comprehensive change management strategy aligned with ITSM frameworks and financial industry best practices Participate in the creation and update of change management policies and procedures for all platform teams Attend and represent all distributed Platform teams changes at the Change Advisory Board (CAB) Attend and represent all distributed Platform teams changes at the Major Events Advisory Board (MEAB) Attend and represent all distributed Platform teams changes at the Weekly Infrastructure Change Review Change Request Management: Oversee the entire change lifecycle, from submission to closure Review and classify change requests based on risk, impact, and urgency Ensure proper documentation of all changes in the ITSM tool Risk Assessment and Mitigation: Conduct thorough risk assessments for proposed changes across all platforms Assist in the development of risk mitigation strategies and rollback plans Ensure compliance with financial industry regulations (e.g., SOX, GDPR, PCI DSS) Change Scheduling and Coordination: Manage the change schedule to minimize disruption to financial operations Coordinate change windows with business units, considering peak transaction periods, moratoriums and major events Manage dependencies between changes across different platforms Stakeholder Management and Communication: Develop and execute communication plans for all platform changes Liaise with various stakeholders, including platform teams, application owners, and senior management Conduct pre-implementation and post-implementation briefings Change Implementation Oversight: Monitor change progress and ensure adherence to approved plans Make go/no-go decisions for critical changes Coordinate with platform teams during change execution Post-Implementation Review and Reporting: Conduct post-implementation reviews (PIRs) for significant changes Analyze change success rates and identify areas for improvement Provide plans for any failed change to ensure that there are no repeat occurrences Compile and distribute change reports to management Continuous Improvement: Regularly review and update change management processes Review change trends for templating opportunities and implement templating Implement automation to streamline change processes where possible Stay updated on best practices for change management in UNIX, Linux, Windows, and VMware environments Participate in creation and follow through on any change health plans as applies Incident and Problem Management Interface: Coordinate with Incident and Problem Management teams to handle changes resulting from major incidents or recurring issues Compliance and Audit Support: Maintain comprehensive records of all changes for audit purposes Prepare reports and documentation for internal and external audits Ensure change processes meet regulatory requirements specific to financial institutions Training and Knowledge Transfer: Develop and deliver training programs on change management processes Facilitate knowledge sharing sessions between different platform teams Vendor and Third-Party Management: Coordinate with vendors for changes related to UNIX, Linux, Windows, and VMware systems Ensure third-party changes adhere to the institutions change management processes QUALIFICATIONS As a partner at Northern Trust, you must actively manage and mitigate risk and act with integrity. In accordance with our core values of service, integrity, and expertise, you are expected to: Adhere to all applicable risk management programs, policies, and procedures. Complete all mandatory training by the deadline. Understand how your behavior could expose Northern Trust, its clients, and financial markets to different types of risk. Ensure that Northern Trust or its clients are not exposed to inappropriate or excessive risk. Escalate any risk concerns, including those resulting from mistakes / errors to a manager or business unit risk officer. Exercise diligence regarding cyber-security Cooperate with internal control functions (including first-line Control, Risk, Compliance, Audit, self-assigned, etc.) and applicable regulatory bodies. Avoid conflicts of interest or behaviors that might produce unfair outcomes for Northern Trust or its clients or damage the integrity of financial markets. REQUIRED EXPERIENCE Bachelors degree in Computer Science, Information Technology, or related field 7+ years of experience in IT operations, with at least 5 years focusing on change management Strong understanding of UNIX, Linux, Windows, and VMware environments In-depth knowledge of ITSM frameworks (e.g., ITIL) Experience with ITSM tools (e.g., ServiceNow, BMC Remedy) Excellent project management and organizational skills Strong analytical and problem-solving abilities Outstanding communication and interpersonal skills KEY COMPETENCIES Strategic thinking and planning Risk assessment and management Stakeholder management Conflict resolution Decision-making under pressure Attention to detail Adaptability and flexibility Continuous improvement mindset WORK SCHEDULE Full-time position, typically Tuesday to Saturday - 3 days a week in the office May require occasional evening and weekend work for critical changes On-call rotation may be required for emergency changes

Performance evaluation and the monitoring and measurement of portfolio risk are undertaken by a specialist department within Corporate and Institutional Business Services (CIBS) known as Investment Risk and Analytical Services (IRAS). IRAS offers clients a comprehensive product array, supported by powerful technology and delivered by an experienced group of professionals. Investment Risk and Analytical Services (IRAS) performance analyst teams are organized regionally to support the corporate client base throughout the globe. The regions comprise of Chicago, London, and Hong Kong. The Northern Trust Custody Performance process team validates Northern Trusts underlying data to ensure accurate representation of their investment performance (e.g. rates of return) is published to its clients. The IRAS Performance analyst team performs the following high level tasks related to the Performance Review: Create and maintain the set-up of performance accounts on PACE Execute pre-audit steps to prepare the account for the performance review Audit the fund and validate rates of return Conclude data is accurate and lock the data in PACE Generate client reporting Knowledge Skills The candidate should possess the following skills: In-depth knowledge on capital markets and moderate to advanced knowledge of various asset classes. Good working knowledge of IRAS the related products will be an added advantage Good to moderate working knowledge of Excel, MS Office suite. Good working knowledge of IRAS applications will be an added advantage Good working knowledge of PACE application and Investment Performance measurement reporting A good team player - ability to work and adapt to small teams Ability to multitask and work with calm under crunch situations Excellent interpersonal skills for liaising with related departments and Middle Offices Good knowledge about Excel Macro, Fundamentals and Industry certification in performance measurement-CIPM will be an added advantage Principal Responsibilities The principle responsibilities of the Senior Analyst will include, but may not be limited to, the following; Completion of final deliverables with 100% accuracy and timeliness Adherence to procedures and SLA s Identifies and manages resolution of service delivery root causes Ability to act as a process expert and own and resolve complex queries and issues not only of self but also for the immediate sub process Build and maintain strong relationships with all related departments and Middle Offices Review the work performed by other analysts Ability to train and mentor new hires on the process Pro-actively communicate the procedure updates to the team. Ensures that all DPADs/client profiles are kept up to date at all times Lead and implement process improvements Experience Minimum 12 months in the role. Willing work in night shift and flexible work different location including Global village. Should have completed 1 year as Analyst II

Major Duties :1. Manages an information services unit or function. Conducts the performance management process, identifies training and development needs, and establishes performance standards for the unit. 2. Determines staffing needs, makes hiring and firing decisions, handles salary administration, and ensures resources are available to accomplish priorities. 3. Participates in developing the business unit strategic plan and sets goals and priorities based on the direction set for the unit. Follows through to ensure objectives are met. 4. Develops unit(s) budget and manages the expenses for the unit. 5. Provides leadership and guidance to staff, fostering an environment which encourages employee participation, teamwork, and communication. 6. Manages several information service products and services including network management, operating systems, database systems, office automation, desktop technology, information security, systems development, and publication design. 7. Determines short and long term technology needs and develops a strategy for information services products and services. Anticipates obstacles and determines alternate strategies. 8. Understands banks business objectives and goals as they relate to the units products and services goals. Modifies products and services to meet the business objectives and develop solutions to obstacles presented. 9. Interfaces frequently with partners in all areas of the bank to identify needs and ensure products and services meet their needs. Knowledge :Knowledge of network management, operating systems, database systems, information technology concepts, and publication techniques, usually acquired through related work experience, is necessary to provide technical expertise to the area. Leadership and organizational skills are required to determine the units goals, resources needed, and to assess and develop the skills of the staff. Experience :5-7 years of information services experience

India Data Value Lead is an exciting business role to leveraging data for becoming an Analytics AI driven organization including establishing the India footprint of AI function as part of Global Capability Center (GCC) for Wealth Management (WM). The lead, in partnership with the India Data and AI head, business, Global Center of Excellence and technology practices, will build and deliver a cohesive analytics and AI value delivery portfolio. Primary responsibilities for this role include hiring retaining high quality talent, autonomously running several key projects, interaction with frontline business stakeholders, improving client partner digital experience by providing top-line data solutions, business intelligence analytics, AI/ML and strategic solutions. The ideal candidate shall bring 17-20 years of overall experience, and 10+ years of experience in leading a high-performing engineering/analytics function. The role would entail managing multiple work streams working with senior business stakeholders across product/capability/engg, and managing a small team of analysts to begin with. Job Description Major Duties: Drive innovation and lead change initiatives to improve processes, products, and customer experiences. Promote a culture of continuous improvement and adaptability. Convert complex ambiguous business situations and utilize team strength expertise to provide insightful analysis to expedite decision making Cultivate an understanding of how data connects to business strategy and how analysts can effectively partner with various functional teams to build data-driven strategies and plans. Maintain a customer-centric focus: strive to be a domain and product authority through data, develop trust amongst your peers and leaders Identify the right metrics/measurement frameworks to track progress against a given business goal. Design, run and measure experiments to test business hypotheses Expedite root cause analyses/insight generation against a given recurring use case through automation/self-serve platforms Work with business, capability and technology teams for continuous improvement of data accuracy through feedback and scoping on quality and completeness Work closely with stakeholders to ensure innovations align with business objectives and regulatory requirements. Manage risks associated with process changes to maintain operational stability and efficiency. Build and maintain strong relationships with business practices like Trust, Advisory, Banking, GFO, Investments, Sales Marketing for a seamless flow of information, helping to translate sophisticated data into actionable insights. Drive efficiency and risk mitigation through balancing business value and cost working with data owners, and consumers to deliver an efficient operating model and data architecture. Skills: Understanding of financial mathematics, stats, analysis and modeling techniques. Familiarity with financial technology, data analysis, and relevant software platforms and/or technologies. Strong analytical skills, with the ability to interpret sophisticated financial/client/macro/economic and other data and trends to make informed decisions. Hands-on coding/modelling skills on tools such as Python, ML, GenAI and LLM models, Databricks, Snowflake, data engineering and Cloud etc. Proficiency in planning, implementing, and supervising projects to meet deadlines and achieve objectives. Possess proven facilitation and conflict resolution skills Comprehensive understanding of financial services, including industry regulations, market trends, products, and services - across capital markets, asset wealth management. Ability to lead and develop teams directly and via influence, set strategic objectives, and get results in alignment with business goals. Capability to assist in creating a team vision, planning and performing steps to align to critical metrics and objectives. Understanding client needs and delivering solutions that meet or go above and beyond. Knowledge of quality control processes and methodologies, with a focus on continuous improvement. Expertise in identifying, assessing, and mitigating financial and operational risks. Experience: Bachelors/Master s (preferred) degree in Computer Science, Information Systems, Business Administration, Engineering, Economics, Finance, Mathematics, Statistics, or a related quantitative field, ideally from a premiere institute like IITs or IIMs. 15-20 years of financial services experience and in-depth understanding of Financial Markets, with a consistent track record of success in dynamically responsible roles. Possess and demonstrate a validated understanding of wealth mgmt., asset mgmt., investment banking, capital markets and the like. Significant experience in leading teams, with a demonstrated ability to manage and develop talent, oversee performance, and drive pivotal initiatives. Experience in developing and implementing business strategies that align with organizational goals. Demonstrated ability to get results and meet key performance indicators. At least 10 years of hands-on experience in the technical domain of data incl data engineering, big data, Cloud, analytics, data science and AI Ability to work with ambiguity, unknown variables, and missing context (and find ways to bridge those gaps, when necessary) Experience in implementing testing models like hypothesis, regression, etc to move the team to predictive and prescriptive analysis Be a self-starter, motivated individual who works well in a global wealth management business context

Major Duties :1.Responds to questions and counsels employees and managers on HR policies and processes, HR systems, employee data, and assists with data updates. Inquiries may come in via multiple channels (e.g., e-mail, phone, case management system). Utilizes knowledge base, call tracking systems and/or third party resources to educate customers of the HR Services available to them. Encourages self-service tools such as the HR Portal and other systems when appropriate. Utilizes good judgment to resolve more complex or non-routine matters on their own and within corporate guidelines / standards. Will also be able to differentiate when critical matters need to be escalated to appropriate subject matter experts.2. Demonstrates a positive, professional, customer and delivery orientated image of the company. Acts as a role model to other team members, including clients / customers who seek assistance from the HRSC.3. Is proactive with providing continuous status updates, guidance, and information to customers, key stakeholders, and peers within the HR functional area team(s) to ensure case resolution. Provides feedback and recommends process improvements to management.4. Processes HR Service Center requests such as organization changes, compensation changes, leave requests, other data updates, etc. including complex and non-routine requests.5. Performs HR operational processes such as report generation, background checks, new hire onboarding, etc.6. Ensures high-quality standards for all activities, initiatives, and tasks within the designated functional area(s) of responsibility. Adheres to all service level agreements (SLAs) established by the HR functional area(s)/team(s). Appropriately documents case details and relevant information in the case management system.7. Ensures all functional documentation is up-to-date and available for HR processes.8. Analyzes specific HR data (as requested) and creates formal or ad-hoc reports. Have strong technical skills in multiple areas of expertise and a broader knowledge of HR areas that the HRSC supports.9. Will act as a training resource for other HR Service Center Analysts. Will back up for Team Leaders (TL) for select responsibilities.10. Participates in User Acceptance testing of new systems or features of existing systems.Knowledge : Strong written and verbal communication skills with good analytical and quantitative skills, critical thinking, investigating problem-solving and decision making talents. Detail oriented in their work. Customer service orientation Works effectively as a team member/coach/mentor and provides feedback Basic knowledge of the human resource function HRIS application tools/system knowledge (e.g., PeopleSoft, Microsoft Office) Project management exposure a plusExperience :A College or University degree and/or relevant work experience in human resources is preferred. Minimum 2 to 3 years in a call center with demonstrated ability to handle complex / non-routine inquiries.

We are seeking a highly skilled Tech lead with deeper expertise in various security products, authentication, authorization, access management, governance with Java development background. As a key member of Workforce Authentication and Authorization team you lead a team to play a vital role in ensuring the secure implementation of various solutions (Hybrid and Cloud) developed in technologies like Java, .NET etc. Requirements/Responsibilities - Lead Identity centric Workforce Security solutions team to develop authentication and access management solutions using Java, Python, .Net Drive automation development using scripts such as Python, PowerShell, bash script Drive the development of identity solutions , access patterns , modern security protocols , practicing Zero trust , least privileged, defense in depth principles Review and provide feedback on Identity and access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management on authentication and authorization. In-depth knowledge and experience on Spring Security, Microservices , Entra ID, Azure, AWS Security Knowledge on Okta, PingFederate, Entitlement management solutions is preferable Strong knowledge on Identities management on Azure AD with OAuth, OIDC, SAML, SSO, MFA, Conditional access policies, MFA, Kerberos, LDAP, Identity Federations etc. Experience in providing security solutions for Java based Micro services, React based frontends and Android/iOS based mobile applications on the Azure Hands-of experience in JWT, session handling, Code signing, Certificate authentication, TLS/SSL, API Security, Application registration, application integration scenarios etc. Awareness of API Management , Firewalls, DLP, VPNs, DNS, Azure Defender, MCAS, Sentinel, WAFs , Application Gateways, NSGs, App Proxy, Radius clusters, CDN etc. Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure smooth remediation of toxic combinations, high risk entitlements etc. Understanding and application of threat modeling concepts and methodologies Understanding of Applications security, OWASP standards, security best practices, browser compatibilities / storages / cookies Acts as Workforce cybersecurity expert to in solutions spanning end user computing, proxy solutions, MFA , SSO , conditional accesses , Passwordless, Yubikey, bio-metric solutions, identity and governance scenarios , Secrets Management, automation, role based access control, Privileged identity management, Just in time accesses etc. Participates in solutions to support- token handling , OIDC / OAuth flows , authorization patterns, identity federation , cloud architectures, cryptograpgy , cloud native services, cloud security etc. Deeper understanding on Cloud Security areas such as Policies, RBAC, activities, identities, privileged access management etc Ability to support operations in troubleshooting complex identity scenarios with hands-on experience on Sentinel/KQL/Audit logs etc. Good understanding of concepts related to docker Security, container orchestrations/Kubernetes Qualifications Bachelors degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience. Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies. Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff. Ten years of experience in the Information Security role. Five years of experience as a Tech lead CISSP, CSSP, or Cloud security certification preferred Strong collaboration skills and a analytical ability Certifications on Azure, AWS security will be preferred

We are seeking a highly skilled Tech lead with deeper expertise in various security products, authentication, authorization, access management, governance with Java development background. As a key member of Workforce Authentication and Authorization team you lead a team to play a vital role in ensuring the secure implementation of various solutions (Hybrid and Cloud) developed in technologies like Java, .Net etc. Requirements/Responsibilities - Lead Identity centric Workforce Security solutions team to develop authentication and access management solutions using Java, Python, .Net Drive automation development using scripts such as Python, PowerShell, bash script Drive the development of identity solutions , access patterns , modern security protocols , practicing Zero trust , least privileged, defense in depth principles Review and provide feedback on Identity and access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management on authentication and authorization. In-depth knowledge and experience on Spring Security, Microservices , Entra ID, Azure, AWS Security Knowledge on Okta, PingFederate, Entitlement management solutions is preferable Strong knowledge on Identities management on Azure AD with OAuth, OIDC, SAML, SSO, MFA, Conditional access policies, MFA, Kerberos, LDAP, Identity Federations etc. Experience in providing security solutions for Java based Micro services, React based frontends and Android/iOS based mobile applications on the Azure Hands-of experience in JWT, session handling, Code signing, Certificate authentication, TLS/SSL, API Security, Application registration, application integration scenarios etc. Awareness of API Management , Firewalls, DLP, VPNs, DNS, Azure Defender, MCAS, Sentinel, WAFs , Application Gateways, NSGs, App Proxy, Radius clusters, CDN etc. Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure smooth remediation of toxic combinations, high risk entitlements etc. Understanding and application of threat modeling concepts and methodologies Understanding of Applications security, OWASP standards, security best practices, browser compatibilities / storages / cookies Acts as Workforce cybersecurity expert to in solutions spanning end user computing, proxy solutions, MFA , SSO , conditional accesses , Passwordless, Yubikey, bio-metric solutions, identity and governance scenarios , Secrets Management, automation, role-based access control, Privileged identity management, just in time accesses etc. Participates in solutions to support- token handling , OIDC / OAuth flows , authorization patterns, identity federation , cloud architectures, cryptography , cloud native services, cloud security etc. Deeper understanding on Cloud Security areas such as Policies, RBAC, activities, identities, privileged access management etc. Ability to support operations in troubleshooting complex identity scenarios with hands-on experience on Sentinel/KQL/Audit logs etc. Good understanding of concepts related to docker Security, container orchestrations/Kubernetes Qualifications Bachelors degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience. Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies. Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff. Ten years of experience in the Information Security role. Five years of experience as an Tech lead CISSP, CSSP, or Cloud security certification preferred Strong collaboration skills and a analytical ability Certifications on Azure, AWS security will be preferred

Role/Department: Associate, Cyber Security Engineering The APAC Security Operations/Engineering organization is seeking a junior to mid-level associate developer to join their team. The Cyber Security Engineering team directly supports APAC CISOs organization by providing developing and administering solutions that meets or exceeds end user expectations relative to performance, scalability, fault tolerance, usability, and data integrity; while supporting cyber risk reduction efforts by identifying emerging Cyber Threats facing Northern Trust and Northern Trust technologies. Major Duties | Key Responsibilities: Full stack engineering (predominantly Python, react.js and SQL server) on a range of internally developed tools covering the information security production environment. Assists the APAC CISO in a range of technology-related regulatory obligations across multiple jurisdictions within Asia Pacific. Tactical automation work as required to support the wider Cybersecurity organization, including the security operations center lead in Pune. Assists in the implementation of operating systems, database or network projects as required. Prepares or modifies high-level and detail-level business requirements documents for development of functional and system specifications. Carries out complex activities with significant financial, client, and/or internal business impact. More technically sound in area of expertise and has broader knowledge of other areas. Role is balanced between operational execution and development. Skills : Excellent oral and written communication skills are required. In-depth Information Technology/ Industry Knowledge is required. Experience of software development using technologies such as Python, react.js and SQL Server. Knowledge of information security, operating systems, software development, database systems and information technology concepts needed to effectively manage the group. Analytical and problem solving skills are required. Qualifications | Experience: A College or University degree and/or relevant proven work experience in the area of Information Security / software development is required. 3-5 years of development experience.

We are seeking a highly skilled Tech lead with deeper expertise in various security products, authentication, authorization, access management, governance with Java development background. As a key member of Workforce Authentication and Authorization team you lead a team to play a vital role in ensuring the secure implementation of various solutions (Hybrid and Cloud) developed in technologies like Java, .Net etc. Requirements/Responsibilities - Lead Identity centric Workforce Security solutions team to develop authentication and access management solutions using Java, Python, .Net Drive automation development using scripts such as Python, PowerShell, bash script Drive the development of identity solutions , access patterns , modern security protocols , practicing Zero trust , least privileged, defense in depth principles Review and provide feedback on Identity and access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management on authentication and authorization. In-depth knowledge and experience on Spring Security, Microservices , Entra ID, Azure, AWS Security Knowledge on Okta, PingFederate, Entitlement management solutions is preferable Strong knowledge on Identities management on Azure AD with OAuth, OIDC, SAML, SSO, MFA, Conditional access policies, MFA, Kerberos, LDAP, Identity Federations etc. Experience in providing security solutions for Java based Micro services, React based frontends and Android/iOS based mobile applications on the Azure Hands-of experience in JWT, session handling, Code signing, Certificate authentication, TLS/SSL, API Security, Application registration, application integration scenarios etc. Awareness of API Management , Firewalls, DLP, VPNs, DNS, Azure Defender, MCAS, Sentinel, WAFs , Application Gateways, NSGs, App Proxy, Radius clusters, CDN etc. Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure smooth remediation of toxic combinations, high risk entitlements etc. Understanding and application of threat modeling concepts and methodologies Understanding of Applications security, OWASP standards, security best practices, browser compatibilities / storages / cookies Acts as Workforce cybersecurity expert to in solutions spanning end user computing, proxy solutions, MFA , SSO , conditional accesses , Passwordless, Yubikey, bio-metric solutions, identity and governance scenarios , Secrets Management, automation, role-based access control, Privileged identity management, just in time accesses etc. Participates in solutions to support- token handling , OIDC / OAuth flows , authorization patterns, identity federation , cloud architectures, cryptography , cloud native services, cloud security etc. Deeper understanding on Cloud Security areas such as Policies, RBAC, activities, identities, privileged access management etc. Ability to support operations in troubleshooting complex identity scenarios with hands-on experience on Sentinel/KQL/Audit logs etc. Good understanding of concepts related to docker Security, container orchestrations/Kubernetes Qualifications Bachelors degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience. Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies. Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff. Ten years of experience in the Information Security role. Five years of experience as a Tech lead CISSP, CSSP, or Cloud security certification preferred Strong collaboration skills and a analytical ability Certifications on Azure, AWS security will be preferred

Major Duties :1. Work on provide Level 1/2 support on Infosec applications. 2. Able to serve as a subject matter resource and mentor to other more junior level employees 3. More technically sound in area of expertise and has broader knowledge of other areas 4. Delivers a work product that requires less revision 5. Able to help facilitate discussions and reach decisions 6. Prepares project phase reports, including requirements, feasibility, definition, and design. May also provide input to availability reporting. 7. Directs and performs prototyped systems development and solutions. 8. Provides project support and project planning; develops test plans and user acceptance criteria. May also track bullet proofing tasks. Knowledge: Excellent oral and written communication skills are required In-depth Functional / Industry Knowledge is required Highly flexible and adaptable to change Technology and Tools: Linux, Unix, SQL, Dynatrace, ServiceNow, CyberArk, OKTA. Education : A College or University degree in Engineering, preferably major in IT or CSE. Experience : Must have a relevant 2-4 years of proven work experience preferably in Application/Production support role.

Responsible for collaborating with Chief Operating Office senior leaders, as well as other business leaders to develop strategic and financial objectives and for leading the execution of those objectives. Responsible for assessing opportunities to streamline processes and implement change via system enhancements and/or automation, as appropriate. Proactively build relationships and partner with capability teams to uncover opportunities and develop strategies to improve service. Management responsibilities and decisions likely include hiring, performance reviews, pay decisions and development. Conduct the performance management process, identify training and development needs, and establish performance standards for the Practice. Major Duties: Responsible for directing and supporting the Payments Sanctions functions Responsible for regulatory oversight for the corporation, at the corporate level of compliance policy development and/or evaluation of regulatory policies and procedures Define the Sanctions function and necessary production organization to carry out business objectives Advises partners, including senior management, on compliance with applicable laws, rules and standards, including keeping them informed on developments with business procedures and processes Oversees the development of Sanctions compliance programs that impact the corporation Proactively research and coordinate enhancements and transformation Support Business in providing thought leadership to benefit NT R esponsible for maintaining quality service with future considerations Ensure changes match industry trends and client expectations in terms of partnering with technology and service delivery Identify opportunities for continuous efficiencies, scale, and value Organize the functional work from a process and locational regulatory standpoint Provide input to Talent Decisions as related to upskilling the function from a service perspective Effectively manage change and transformation objectives Point of contact for issues specific to functions under management Coordinate operational response to complex issues Collaborate with other Practice Execs and capabilities to deliver and overall seamless operational offering Coordinate response between operational teams Liaise between BU stakeholders and operational leaders on recurring issues Stay updated on relevant laws, regulations and industry trends related to financial crimes. Monitor anomaly detection system performance and implement detection strategies to reduce false positives and increase detection rates. Knowledge : Leadership and strategic thought skills are required to determine the Enterprise sanctions goals, resources needed and to asses and develop the skills of staff Excellent oral and written communication skills are required Extensive knowledge of Sanctions processes, laws, regulations, and legislate and regulatory processes are required Requires strong leadership and forethought to lead the function globally Exceptional ability to analyze and interpret complex data sets and metrics. Experience : 20 years of industry experience and 5 years of experience into Sanctions Proven experience contributing to the development of functional/operational long-term strategy and developing annual business plans to ensure alignment Relevant proven work experience in regulatory oversight, ani-money laundering/sanctions and compliance risk management Association of Certified Anti Money Laundering Specialists (ACAMS), Certified Fraud Examiner (CFE) or similar professional certification preferred. Deep understanding of digital banking and Wealth Management, Asset Servicing and Asset Management businesses. Ability to exercise good judgment to make timely decisions, while working in a fast-paced and results-driven environment.

Greetings from Northern Trust. Northern Trust is looking to hire a Lead, Cyber Sec Eng position for Pune/Bangalore location. Company Details - Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the worlds most sophisticated clients using leading technology and exceptional service.Job Description Job Role: Lead, Cyber Security EngineerJob Location: Pune OR BangaloreExperience: 10+ yearsSkills: Cyber Security (CyberArk), Privilege Access Management (PAM), Central Credential Provider, AAM Integration, ConjurSummaryThis position is responsible for managing the activities of the Privileged Access Management (PAM) team in India, working closely with many different global teams to ensure all aspects of privileged access are maintained according to organizational standards and controls. This position will play a key role in managing the CyberArk product suite, including implementations, integrations, and remediation activities.Primary Duties and Responsibilities:To perform this job successfully, an individual must be able to perform each primary duty satisfactorily:Line Management experience: overseeing, developing, and driving the delivery of a team of technical specialistsAssist driving the Privileged Access Management (PAM) strategy and roadmapManage and maintain the firms CyberArk solutionManage and lead CyberArk AAM integrations (including Conjur)Manage Privileged Session Management, Privileged Threat Analytics, Endpoint Privilege Manager and Business Secrets Management solutionsProvide subject matter expertise across CyberArk scope to PAM engineering and support teams and technology stakeholders across the enterpriseProvide cross functional and global technical leadership to help drive adoption and understanding of PAM across the enterprise.Assist with the management of PAM-related audit or other security findings.Qualifications:The requirements listed are representative of the knowledge, skill, and/or ability required:Extensive knowledge in CyberArk and PAM architecture, functionality and administration.Ability to manage multiple intricate projects with strict deadlines while maintaining best in class work.Ability to functionally serve as a primary point of contact across multiple teams within the organization and to lead program delivery requirements.Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines.Effective oral and written communication, analytical, judgment and collaboration skills.Ability to effectively communicate in both formal and informal review settings with all levels of management.Ability to work with local and remote IT staff/management, vendors and consultants.Ability to work independently and possess strong organization skills.Technical Skills:5+ Years CyberArk experience2+ Years Cloud Services Implementation (Azure)Strong CyberArk hands-on experience including advanced CyberArk modules like PSM, PSMP, and AIM/AAM/Conjur, EPM.Strong experience with CyberArk utilities and their usage PUU, PACLI and EVD.Experience in working with CPM plugins & custom PSM connectors.Familiarity with CyberArk configuration files, logs files, access control and user management.Experience in working with CyberArk support.Good knowledge of Microsoft AD (Active Directory) knowledge and experience.Strong Privileged Access Management solutions knowledge and experience.Good knowledge of Identity and Access Management technology solutions and processes.Basic understanding of the main network protocols (IPv4/IPv6/TCP/UDP/DNS/SMPT).A good knowledge of Azure environment for managing/troubleshooting CyberArk components on AzureEducation and/or Experience:5+ years Privileged Account Management Experience utilizing current methodologiesBachelors Degree or higher in Computer Science or related security field5+ years experience working directly with CyberArk12+ years total experienceCertificates or Licenses:CyberArk PAM Certified Delivery Engineer (CDE-PAM) is requiredCloud practitioner for Azure/AWSIf you are interested in this job opportunity, please share your updated resume to take your candidature forward. Regards,Northern Trust Recruitment Team

Job Summary: This role manages going statutory compliances under Software Technology Parks of India (STPI) Special Economic Zone (SEZ) and working knowledge under Income Tax, Goods Service Tax and Reserve Bank of India rules. Major Duties: Software Technology Parks of India (STPI) - Bangalore a) Regular interaction with STPI authorities for various approvals b) Monitoring of limit for approval of capex, renewal of Licenses. c) Interaction with Customs agent for clearing of goods. d) Interaction with internal team for various approvals under STPI scheme. e) Submission of Monthly/Annual returns, Tentative performance reports, SERF and Monthly Softex. f) Follow up with bank for Electronic Bank Clearance certificate (EBRC) g) Interaction with bankers for obtaining GR waiver form etc and other related approvals as required under STPI scheme. Special Economic Zone (SEZ) - Pune a) Regular interaction with SEZ office for various approvals. b) Monitoring of Bond amount and applying for approvals as required c) Monitoring and renewal of SEZ license. d) Interaction with clearing agent for various SEZ related activities, import clearing, SEZ approval for regular clearance of materials, and service invoices. e) Preparing of Domestic Service Procurement form (DSPF) periodically and monitoring the certification and interact with customers and internal team for issuance of approval to various customers. f) Interaction with Internal team for various clearance activity. g) Preparation of Monthly report, Annual reports, SERF, Softex and other reports as requested by SEZ authorities. Goods Service Tax (GST) Bangalore and Pune: a) Preparation of E-Invoice for export of services. b) Preparation of Delivery Challans regularly. c) Preparation of Domestic sales invoices d) Issuance of E-way Bill. e) Accounting for Domestic sales invoices. g) Preparation of GSTR 1 returns on monthly basis. h) Reconciliation of E-way bills. i) Preparation of all documents required on regular basis as required under GST. Skills Basic accounting skills to account for GST invoices. Analysis and preparation of GSTR 1 returns. Payment of monthly GST and computation of tax liability. Experience Qualifications: Experience in with below listed subject matter of 5-6 years with commerce graduation qualification preferrable. Commerce graduation can be B.Com/M.Com/CA Inter etc. Chartered Accountant (CA) Intermediate qualified would be preferred with 2-3 years of experience. Candidates from IT/ITES Sector preferable.

Oversight of the 1st Line of Defense adherence to the RCSA policy Provide 2LOD effective challenge and oversight ensuring risks and controls are inventoried accurately, adhere to program requirements and align to defined Risk Taxonomies Provide objective oversight of risks through quality control using defined methodologies and subject matter expertise. Analyze RCSA results and prepare reports that highlight themes, root causes, and emerging risks as needed to the Operational Risk Management Committee Lead team of 2LOD controls testers responsible for testing, validating, and enhance control testing post RCSA approvals and 1LOD Controls Testing execution. Lead NFR teams responsible for Technology Risk, Third-Party Risk, and Risk Reporting Metrics Advance the companys risk culture and program knowledge through training, education and communication Strong stakeholder engagement to ensure identification of issues and timely completion of actions to meet deadlines Improve overall risk management culture and knowledge via training/awareness sessions Review key risk indicator framework, scorecards, dashboards to ensure appropriateness of metrics / key performance indicators Collaborate with senior management risk partners and lines of business partners to coordinate operational risk management activities Manage or lead projects aimed at improving the overall NFR programs Act as the Site Manager to include, but not limited to, coordinating with functional managers to onboard new hires locally, provide local support and guidance required to access the premises, meeting right stakeholders, IT and system access related support. Ensure smooth onboarding of all the new NFR staff. Review of Issues, IA and Exam Findings, and New Product/Initiatives to determine potential impact to risk and control inventories and work with the 1LOD to address Perform other duties as assigned. Knowledge, Skills, and Experience Ability to communicate in a clear, concise and effective manner (verbal and written) 15+ years financial services experience with minimum 7 years of operational risk, controls, or audit experience Excellent working knowledge of audit, risk and operational management concepts, and the ability to understand and interpret the impact of decisions, as well as identify and convey potential problem areas Ability to foster a positive and proactive approach to process assessment and improvement and to identify trends and improve processes for both the customer and the business Strong organizational, attention to detail, time management, and planning skills Ability to handle multiple competing priorities Ability to make independent decisions and also be a team player and effective communicator to ensure that issues are appropriately resolved Confidence and expertise to advise management and the business Ability to use initiative and work unsupervised in a proactive manner A collaborative approach to work and ability to build relationships with strong interpersonal skills

The Key Responsibilities of the role include: Collaborates, elicit, analyse, outline and develop requirements for projects and technical changes coordinating with business and technology teams. Provide analysis and takes ownership throughout the lifecycle of the project from scoping, high level business requirements, detailed business requirements and implementation as required. Utilize available subject matter expertise to perform functional reviews of transformational initiatives and on-going BAU change agendas. Review and analyze system specifications, collaborate with project team to develop effective test strategies and plans. Formulate application testing strategies and test plans Execute test cases (manual or automated) and review results for SunGard Invest One and other Fund Accounting applications, report and troubleshoot defects Consistently demonstrates expertise in high profile projects and system upgrades, testing for large and small projects/changes, system changes and upgrades Serve as a Change Advocate; establish trust within the corresponding business teams; gain enthusiasm within the teams. Work closely with regional functional managers in various processes / projects to ensure communication and smooth implementation. Provide Support and timely resolution for functional and technical queries raised by Fund Accounting, Financial Reporting, Pricing, Corporate Actions and other partner areas on SunGard Invest One and its ancillary applications The successful candidate will benefit from having: Proven experience as a Business analyst or similar role for Fund accounting/applications Demonstrates strong experience in change initiatives, covering areas such as Scrum, Agile, IT and product development; with a track record of accomplishment in complex projects and change initiatives. Excellent communication skills (both written and oral) to interact and manage expectations with stakeholders and management Able to provide project management consultation and leadership to peers and others. A good understanding of the FIS InvestOne Enterprise platform, overall experience of 10-15 years and minimum 8 years of Business Analyst experience Agile Scrum Master Certification, ISTQB certification, CCBA, CBAP or other BA certification would be preferred 3 years as a Team Leader to move as a Section Manager currently at an Officer level. 24 months as a Consultant to move as a Senior Consultant. Movement within Senior Consultant and Section Manager is applicable if they have prior 36 months of people management experience

Northern Trust Technology Risk Control function is responsible for enabling Global Information Technology to build a strong 1st Line of Defense, foster a control aware culture, deliver compliant and secure technology capabilities, protect customers and meet regulatory requirements. The Sr. Associate Risk and Control Officer is part of the InfoSec/Infra Control Officer Team, responsible for leading and supporting risk and control assessments for core cyber security domains, performing security testing, and evaluating compliance to information security policies and procedures and regulatory requirements. The role will work directly with cybersecurity, Infrastructure and business units teams providing guidance to implement defense-in-depth controls to protect Northern Trust and the customers. As well as work with a dynamic team and contribute to the overall cyber security of the firm. Major Duties include but not limited to; Support risk and control assessments for core cyber security domains Support remediation of cyber security findings from various sources Solves problems and timely management of open risk and control gaps Participate in the development and maintenance of cyber security standards in line with industry best practices, as well as support technical engagements around security threats vulnerabilities and software security testing Knowledge /Skills/Abilities/ Experience Desirable Criteria include; Technical or audit experience in core cyber security fields such as IAM, vulnerability / threat management, Pen-Testing, Data Protection, IH / IR, AppSec, Network Security, System Administrator, GRC Understanding of Technology Risk Controls across domains Knowledge of performing risk management and industry standards , NIST etc. Ability to proactively assess issues, identify solutions and problem solve. Ability to understand and interact with technology subject matter experts regarding technology topics Analytical, consultative and communication skills with ability to communicate control requirements to partners in terms easily understood Organized and time management skill, with ability to produce high quality timely deliverables Flexible approach towards changing work methods, deadlines and variable workloads. Ability to adapt and react timely and positively in a changing and dynamic work environment. Knowledge Microsoft Office Suite and ability to learn new tools as needed. Applicable industry standard certification(s) desired Bachelor degree in Computer Science or a related discipline and technical experience in the security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience Major Duties : Provides technical expertise and support to client, IT management and staff in risk assessments, implement. Identifies, evaluates, conducts, schedules and leads technical analyses functions to ensure all applicable IS security requirements are met. Participates in the evaluation, development, implementation, communication, monitoring and maintenance of information technology security policies and procedures. May act as Project Member. May be involved in providing assistance and training to lower level specialists. Keeps abreast on the direction of emerging industry standards. Provides technical analysis of requirements necessary for the protection of all information processed, stored, or transmitted by systems. Serves as an resource or go to person within a group. Conducts preliminary analysis and reviews work of others. Handles more extensive, high-profile work. Responsible for direct interaction with different committees and/or management. Knowledge : Is technical with working knowledge in area of expertise and strong knowledge of other areas. Requires good analytical ability, consultative and communication skills, strong judgment and the ability to work effectively with client, IT management and staff, vendors and consultants. Experience: Bachelor degree in Computer Science or a related discipline and at least four, typically six or more years of technical experience in the security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience.

Job description : The Data Protection IAM (Identity and Access Management ) Sr. Lead is responsible for developing, implementing, and overseeing data security and IAM strategies across the organization s business units. This role ensures compliance with regulatory requirements, enforces security policies, and strengthens access control mechanisms to protect sensitive business data. The role involves close collaboration with IT, security, risk, compliance, 2LOD and business stakeholders to maintain a strong security posture. Key Responsibilities: Develop and execute data protection policies, procedures, and standards to safeguard sensitive business information. Implement encryption, tokenization, and data loss prevention (DLP ) solutions to protect critical assets. Ensure compliance with data privacy regulations such as GDPR, CCPA, HIPAA, and industry-specific security frameworks . Work with business units to classify and manage data based on sensitivity, risk, and business impact. Lead the design and enforcement of IAM policies , including role-based access control (RBAC) and least privilege principles. Manage identity lifecycle processes (provisioning, de-provisioning, access reviews) to prevent unauthorized access. Oversee authentication mechanisms, such as multi-factor authentication (MFA) and single sign-on (SSO), to enhance security. Conduct periodic access audits and ensure alignment with security best practices. Assist in the investigation and resolution of security incidents related to data protection and IAM. Partner with cybersecurity teams to enhance threat detection and response capabilities. Continuously assess and improve IAM and data protection frameworks to align with evolving business and security needs. Monitor and report on security metrics, vulnerabilities, and compliance status to leadership. Experience working with commercial IAM products for a sizeable enterprise .

We are seeking a technical resource with experience in various security products, authentication, authorization, and access management with Java development background. As a member of Authentication and Authorization team you will play a vital role in ensuring the secure implementation of various solutions (Hybrid and Cloud) developed in technologies like Java, .Net etc. Requirements/Responsibilities - Drive automation development using scripts such as Python, Powershell, bash script Drive the development of identity solutions , access patterns , modern security protocols , practicing Zero trust , least privileged, defense in depth principles Knowledge on Okta, PingFederate, Entitlement management solutions is preferable Knowledge on OAuth, OIDC, SAML, SSO, MFA Experience in providing security solutions for Java based Micro services , React based frontends Hands-of experience in JWT, session handling, TLS/SSL, API Security , Application registration, application integration scenarios etc. Understanding and application of threat modeling concepts and methodologies Understanding of Applications security, OWASP standards, security best practices, browser compatibilities / storages / cookies Participates in solutions to support- token handling , OIDC / OAuth flows , authorization patterns, identity federation , cloud architectures Good understanding of concepts related to docker Security, container orchestartions/Kubernetes Qualifications Bachelors degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience. Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies. Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff. 5+ years of experience in the Information Security role. CISSP, CSSP, or Cloud security certification preferred Strong collaboration skills and a analytical ability Certifications on Azure, AWS security will be preferred

We are seeking a technical resource with experience in various security products, authentication, authorization, and access management with Java development background. As a member of Authentication and Authorization team you will play a vital role in ensuring the secure implementation of various solutions (Hybrid and Cloud) developed in technologies like Java, .Net etc. Requirements/Responsibilities - Drive automation development using scripts such as Python, Powershell, bash script Drive the development of identity solutions , access patterns , modern security protocols , practicing Zero trust , least privileged, defense in depth principles Knowledge on Okta, PingFederate, Entitlement management solutions is preferable Knowledge on OAuth, OIDC, SAML, SSO, MFA Experience in providing security solutions for Java based Micro services , React based frontends Hands-of experience in JWT, session handling, TLS/SSL, API Security , Application registration, application integration scenarios etc. Understanding and application of threat modeling concepts and methodologies Understanding of Applications security, OWASP standards, security best practices, browser compatibilities / storages / cookies Participates in solutions to support- token handling , OIDC / OAuth flows , authorization patterns, identity federation , cloud architectures Good understanding of concepts related to docker Security, container orchestartions/Kubernetes Qualifications Bachelors degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience. Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies. Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff. 5+ years of experience in the Information Security role. CISSP, CSSP, or Cloud security certification preferred Strong collaboration skills and a analytical ability Certifications on Azure, AWS security will be preferred

Key Responsibilities: Disaster Recovery Automation and Strategy Develop and implement the automated DR framework to improve failover and recovery speed. Integrate automation into DR Runbooks, testing and execution to minimize manual intervention. Optimize RTO (Recovery Time Objective) and RPO (Recovery Point Objective) through automation. Work closely with Infrastructure teams like Database, Storage, Platforms Engineering, Network to enhance DR capabilities. Ensure DR plans meet the Standards and compliance requirements Own and maintain a DR Automation backlog to deliver automation initiatives using agile methodology. Ability to breakdown, estimate and schedule work items for automation initiatives during project life cycle Automation Tooling Implementation: Review requirements and approve design artefacts with engineering team. Strategize and Utilize Organization infrastructure tools to automate DR process. Lead DR automation solutions and implement across on-premise, hybrid and multi-cloud environments. Enhance monitoring and alerting capabilities for DR automation using organization accredited tools DR Testing Validation Conduct disaster recovery tests, failover drills and resilience simulations using automation. Monitor and analyze test results, identifying areas for improvements in automation and response time. Collaborate with IT, security, and other relevant departments to ensure alignment between disaster recovery, authentication and security strategies. Lead disaster recovery efforts in the event of a disruption, coordinating the response and recovery activities. Create and maintain a consistent set of documents to support automation capabilities including knowledge articles, standard operating procedures. Communication, Collaboration Leadership: Lead a team of engineers and specialists focused on DR Automation Serve as a subject matter expert in the disaster recovery automation, providing guidance and training to IT and business units. Develop and present effective presentations for strategy and approach to management and stakeholders. Create and Confidently deliver information and key metrics in a professional manner. Must be able to leverage excel data, pivots, charts, graphics to support the content/message. Facilitate meetings with stakeholders, including department heads, executives, and entrusted external parties, to relay automation metrics. Maintains an effective technical network across technical SMEs and architects for multiple service areas Qualifications: Bachelors degree or equivalent experience. Strong Knowledge of IT automation strategies, tools and framework Proven experience in disaster recovery and business continuity planning. Strong knowledge of disaster recovery methodologies, tools, and technologies. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills for effective collaboration. Financial or Regulatory domain experience a plus Proven experience of working in a global organization distributed across countries and time zones such as APAC, EMEA and US, collaborative environment is essential. Ability to work effectively under pressure and in high-stress situations. Knowledge of relevant regulations and compliance standards. Experience: Minimum 12+ years of experience in Management or Team Lead role in IT Industry Minimum 5 years of experience in disaster recovery, business continuity planning or point in time recovery planning and execution. Practical experience operating in an Agile development environment. Proven hands on experience in leading DR automation projects. Strong communications, analytical, problem solving and incident response skills. Experience in coordinating and leading disaster recovery exercises and response efforts. Demonstrated management soft skills including team building, time management, conflict resolution, and strategic planning.

Education and/or Experience: 5+ years Privileged Account Management Experience utilizing current methodologies Bachelor s Degree or higher in Computer Science or related security field 5+ years experience working directly with CyberArk 12+ years total experience Primary Duties and Responsibilities: To perform this job successfully, an individual must be able to perform each primary duty satisfactorily: Line Management experience: overseeing, developing, and driving the delivery of a team of technical specialists Assist driving the Privileged Access Management (PAM) strategy and roadmap Manage and maintain the firm s CyberArk solution Manage and lead CyberArk AAM integrations (including Conjur) Manage Privileged Session Management, Privileged Threat Analytics, Endpoint Privilege Manager and Business Secrets Management solutions Provide subject matter expertise across CyberArk scope to PAM engineering and support teams and technology stakeholders across the enterprise Provide cross functional and global technical leadership to help drive adoption and understanding of PAM across the enterprise. Assist with the management of PAM-related audit or other security findings. Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required: Extensive knowledge in CyberArk and PAM architecture, functionality and administration. Ability to manage multiple intricate projects with strict deadlines while maintaining best in class work. Ability to functionally serve as a primary point of contact across multiple teams within the organization and to lead program delivery requirements. Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines. Effective oral and written communication, analytical, judgment and collaboration skills. Ability to effectively communicate in both formal and informal review settings with all levels of management. Ability to work with local and remote IT staff/management, vendors and consultants. Ability to work independently and possess strong organization skills. Technical Skills: 5+ Years CyberArk experience 2+ Years Cloud Services Implementation (Azure) Strong CyberArk hands-on experience including advanced CyberArk modules like PSM, PSMP, and AIM/AAM/Conjur, EPM. Strong experience with CyberArk utilities and their usage - PUU, PACLI and EVD. Experience in working with CPM plugins custom PSM connectors. Familiarity with CyberArk configuration files, logs files, access control and user management. Experience in working with CyberArk support. Good knowledge of Microsoft AD (Active Directory) knowledge and experience. Strong Privileged Access Management solutions knowledge and experience. Good knowledge of Identity and Access Management technology solutions and processes. Basic understanding of the main network protocols (IPv4/IPv6/TCP/UDP/DNS/SMPT). A good knowledge of Azure environment for managing/troubleshooting CyberArk components on Azure Certificates or Licenses: CyberArk PAM Certified Delivery Engineer (CDE-PAM) is required Cloud practitioner for Azure/AWS

MAJOR DUTIES Team Leadership and Management: Lead and manage the BPA production support team, including hiring, training, and performance management. Develop and maintain a high-performing, motivated team by implementing best practices, encouraging continuous learning, and providing opportunities for skill enhancement. Establish and communicate KPIs and scorecards for production support and ensure team adherence to performance standards. Service Delivery and Incident Management: Oversee the resolution of production issues and incidents, ensuring minimal impact on business operations and ensure prompt root-cause identification. Act as an escalation point for critical production issues, working with cross-functional teams to provide timely and effective resolutions. Implement and oversee the incident management and communication strategy to ensure smooth issue resolution and regular updates to impacted stakeholders. Operational Efficiency and Continuous Improvement: Design and implement strategies to improve production support processes, minimize service disruptions and enhance system reliability. Identify opportunities for automation and improvements in service delivery processes to reduce non BPA queries, repetitive issues, functional queries, manual interventions and operational impacts. Conduct regular reviews and post-incident analyses with technology to improve the overall stability and performance of applications. Stakeholder Management and Communication: Serve as the primary point of contact for senior business leaders and stakeholders on all matters related to BPA production support for the applications used by TA business in Northern Trust globally. Communicate effectively with stakeholders about production issues, status updates, business impacts scheduled maintenance, and improvements, ensuring alignment with business priorities. Build and maintain strong relationships with business units and IT teams to facilitate quick resolutions and anticipate future needs. Compliance, Risk Management, and Reporting: Ensure compliance with auditors, regulatory and operational standards as related to production support activities. Oversee the development and maintenance of documentation, including cheat sheets, issues logs, and user guides. Regularly report on production support performance, SLAs, and KPIs to senior leadership, providing insights and recommendations for improvement. Strategic Planning and Development: Develop and implement a strategic roadmap for production support, aligned with the organization s overall technology and business strategies. Collaborate with development, infrastructure, and technology teams to influence system enhancements that improve production stability. Stay updated on industry trends, technologies, and best practices in production support and apply them as appropriate. KNOWLEDGE / SKILLS Proven experience in managing production support teams, setting service standards, and delivering consistent support services. Strong understanding of IT operations, incident management, and change management processes. Familiarity with TA applications, infrastructure support, and system monitoring tools. Excellent leadership, communication, and interpersonal skills. Ability to work under pressure and manage crisis situations effectively. Strong Persuasion, Problem-solving skills and Analytical thinking. Experience in managing multiple projects simultaneously, handling complex relationships, reporting to senior management and/or steering committees EXPERIENCE Seasoned expert with an overall experience of 15 years and minimum 8 years of experience in IT / TA production support. ELIGIBILITY FOR INTERNAL PARTNERS Seasoned expert with an overall experience of 15 years and minimum 8 -10 years of experience in IT / TA production support / Transfer Agency operations and minimum of 3 years of people management experience.

Job Description We are seeking an analyst with experience in governance of security products, authentication, authorization, and access management with business analysis background. As a member of Governance team you will play a vital role in ensuring the secure implementation of various solutions (Hybrid and Cloud) developed in technologies like Java, .Net etc. Requirements/Responsibilities - Drive governance and risk framework around applications using authentication and authorization Define and respond to risks surrounding the business functions and the security capabilities Define and respond to audits from internal and external parties Knowledge of control execution and design Collect and maintain evidence of control testing Collect and maintain evidence of application attestation to standards Knowledge of SOX methodology implementation for applications Internal External Audit executions Qualifications Bachelors degree in computer science, audit or a related discipline and experience in information security, or an equivalent combination of education and work experience. Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff. 2 years of experience in the Information Security or Audit role.