Tech Risk & Controls Director

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence driving innovation in risk management.

As a Tech Risk & Controls Director at JPMorgan Chase within the Cybersecurity & Technology Controls you will play a pivotal role in shaping and implementing the firms technology risk management strategy. Leveraging your advanced knowledge and expertise in technology-risk disciplines you will identify oversee and mitigate compliance and operational risks in line with the firms standards. You will collaborate with various stakeholders including Product Owners Business Control Managers and regulators to develop and maintain a comprehensive view of the technology risk posture and its impact on the business. Your ability to make calculated decisions manage large teams and drive strategic projects will be crucial in ensuring the firms adherence to regulatory obligations and industry best practices. Your work will contribute to the long-term success and resilience of the organization in an ever-evolving technology landscape.

Job responsibilities

• Define and execute the vision for regulatory assessments in alignment with the broader CREAM mission.
• Lead end-to-end execution of assessments across key regulations such as Hitrust FedRAMP DFS 500 NYSDFS CHAP FFIEC and others.
• Collaborate with Risk Control Compliance and Technology partners to validate control effectiveness and identify gaps.
• Build and manage a high-performing team with regional presence across North America EMEA and APAC.
• Provide leadership in audit preparation execution and follow-up ensuring alignment with best practices.
• Leverage automation AI and data analytics to optimize compliance workflows.
• Partner with internal teams to implement engineering principles to streamline evidence collection testing and reporting processes.
• Lead mentor and develop our practice andassessment professionals fostering a high-performance culture and continuous learning encouraging professional growth.
• Influence efficient and effective execution of assessment programs ensuring alignment with organizational objectives risk appetite and regulatory compliance.
• Collaborate with business technology and risk teams to ensure alignment of assessment processes with organizational priorities.

Required qualifications capabilities and skills

• Formal training or certification on security concepts and 7 years of applied experience.
• Good experience in risk management or compliance with deep experience leading audit functions within a large organization.
• Extensive knowledge of audit principles statutory regulatory contractual standards and best practices for audit readiness.
• Strong understanding of control frameworks.
• Proven experience managing relationships with internal and external auditors and leading large-scale audit and assessment programs.
• Exceptional verbal and written communication skills with the ability to translate complex audit requirements into clear actionable recommendations for business and technology stakeholders.
• Experience with GRC tools audit management platforms and data analytics to enhance audit efficiency and insight.

Preferred qualifications capabilities and skills

• CPA CIA CISA CRISC or other relevant certifications.
• Expertise in regulatory compliance.
• Stakeholder management and communication skills.
• Ability to drive change and continuous improvement in audit practices.
• Risk-based decision-making.
• Financial services experience.