Technology Operational Risk Management Lead - Vice President
Technology Operational Risk Management Lead - Vice President
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Bring your expertise to JPMorgan Chase. As part of Risk Management and Compliance you are at the center of keeping JPMorgan Chase strong and resilient. You help the firm grow its business in a responsible way by anticipating new and emerging risks and using your expertjudgement to solve real-world challenges that impact our company customers and culture in Risk Management and Compliance is all about thinking outside the box challenging the status quo and striving to be best-in-class.
As a Cybersecurity Operational Lead within the Compliance Conduct and Operational Risk (CCOR) team you will collaborate with the 1st 2nd and 3rd Lines of Defense (LOD) to assess and evaluate global cybersecurity risks to the JP Morgan Chase technology estate. You will utilize your hands-on experience in operating or implementing security controls and tools along with your expertise in managing security risks at strategic operational and tactical levels. Your responsibilities include leading risk assessments conducting significant event reviews and monitoring controls across the Security Configuration and Security Operation domains. Success in this role requires a strong understanding of technical controls excellent communication skills and the ability to work effectively with senior leaders and stakeholders to assess large environments.
Job Responsibilities
- Engage with technology and cybersecurity technologists to evaluate processes and risks
- Assess risk impacts at the line of business and enterprise level
- Work with technology areas to identify risk concentrations globally and understand how security controls mitigate them or identify residual risks
- Write and present assessments highlighting control efforts or risks to Executive Directors Managing Directors and members of the Risk Operating Council
- Exhibit strong organizational management skills necessary to collaborate with peers and deliver results
- Maintain a high level of professionalism and expertise to be recognized as an expert in an assigned security control domain
- Keep abreast of current cyber trends vulnerabilities and emerging technologies
- Perform independent assessments of operational risks though operational risk monitoring programs (e.g. significant event reviews deep dive reviews risk metrics operational risk appetite independent risk management assessments)
Required qualifications capabilities and skills
- 5 years of experience as a technologist with experience in cybersecurity / technology development engineering or technical architecture within financial services organizations
- Strong understanding of risk management at the enterprise level
- Knowledge and experience in cybersecurity organization practices in some of the following: vulnerability management penetration testing incident response endpoint protection data loss prevention email security SIEM DDoS public cloud security configuration best practices etc.
- Ability to understand complex technical systems the business processes they support assess the inherent risks and recommend mitigating security controls
- Highly disciplined and able to work with limited supervision to execute long running projects with results
- Exceptional verbal and written communication skills
- Knowledge of common frameworks such as NIST CSF FFIEC etc.
Preferred qualifications capabilities and skills
- Proven experience translating on-premises security configurations and operational processes into multi cloud environments
- Understanding of how cloud and on-premises security controls support federal and international regulatory compliance requirements
- One or more information security or cloud certifications (e.g. CISSP CISM GIAC CCNA Security AWS Security Specialty Azure Security Engineer)
Required Experience:
Chief
Employment Type
Full-Time
