Unclassified - Chicago, IL
posted about 2 months ago
Northern Trust is seeking a proactive and experienced Software Risk and Control officer to oversee our software development lifecycle, ensuring robust risk management practices, effective incident, problem, and change management, insightful incident data analysis, vulnerability management, disaster recovery (DR) planning, software capacity management, risk assessment, resilience planning, and continuous productivity improvements. As a pivotal member of our technology team, you will collaborate closely with software engineers, project managers, and stakeholders to maintain high standards of quality and reliability in our software products. In this role, you will develop and implement risk management strategies to identify, assess, and mitigate potential risks throughout the software development lifecycle. You will conduct regular risk assessments and audits to ensure compliance with internal policies, industry standards, and regulatory requirements. Establishing and maintaining effective controls and procedures to mitigate identified risks will be a key responsibility. You will lead the incident management process, ensuring timely resolution of software-related incidents and minimizing impact on operations. This includes coordinating incident response activities, performing root cause analysis, and conducting post-incident reviews. Additionally, you will manage the problem management process to identify underlying causes of recurring incidents and implement permanent resolutions, collaborating with cross-functional teams to prioritize and address critical problems impacting software performance and reliability. Your responsibilities will also include developing and overseeing change management processes to ensure controlled and efficient deployment of software changes and updates, managing vulnerability assessments and remediation efforts, and developing disaster recovery plans and procedures to ensure rapid recovery of software systems in the event of disruptions or disasters. You will monitor and analyze software capacity to ensure systems meet current and future performance demands, assess overall risk exposure related to software systems, and develop resilience strategies to ensure continuity of operations. Utilizing incident data to generate actionable insights and reports for stakeholders will be crucial, as will implementing metrics and KPIs to measure incident management effectiveness and track improvements over time. You will analyze software development processes and workflows to identify inefficiencies and opportunities for productivity gains, implementing initiatives such as automation and tooling enhancements to improve productivity and efficiency.