Tech Risk and Controls Infrastructure Platforms

Join a team where your expertise helps protect critical infrastructure and enable innovation at scale. You will help shape how we identify manage and report technology risk while partnering closely with stakeholders across technology and control functions. You will work in a dynamic environment where strong judgment collaboration and a continuous-improvement mindset are valued.

As a Technology Risk & Controls Lead at JPMorganChase within Enterprise Technology and Infrastructure Platforms you will drive the oversight and execution of the technology risk and control environment for Data and Specialty Services. You will provide guidance to technology-aligned process owners evaluate control design and effectiveness and partner with control managers and other stakeholders to deliver a clear view of technology risk posture and its impact to the business.

Job responsibilities

• Identify assess quantify and communicate technology risks including root cause analysis and actionable remediation recommendations
• Partner with technology leaders and control partners to drive consistent execution of technology risk management processes
• Execute control governance activities including policy adherence issue management and control performance measurement
• Monitor control effectiveness identify gaps and recommend enhancements to strengthen compliance and risk posture
• Lead audit and regulatory exam engagement activities including evidence coordination and response management
• Prepare recurring governance materials that communicate the state of the control environment to senior stakeholders
• Investigate and respond to metrics triggers and alerts that indicate potential control issues including findings and exceptions
• Review standards and controls against regulatory expectations and industry practices and recommend improvements
• Build trusted relationships across teams to enable cross-functional delivery against shared risk objectives
• Maintain risk and control documentation and structure within required governance tooling and taxonomies

Required qualifications capabilities and skills

• Formal training or certification on risk management technology controls cybersecurity or related concepts and 5 years of applied experience in technology risk management information security or a related field
• Experience applying risk management frameworks industry standards and financial services regulatory expectations
• Demonstrated expertise in risk assessment and reporting control evaluation control design and governance
• Proven ability to influence senior stakeholders and translate technology risk insights into business-focused outcomes
• Strong written and verbal communication skills including the ability to create clear governance materials for leadership audiences
• Experience supporting audits and/or regulatory examinations including issue response and evidence management
• Ability to manage multiple priorities while maintaining high standards for quality timeliness and attention to detail

Preferred qualifications capabilities and skills

• Understanding of enterprise risk management practices in a technology environment
• Knowledge of financial services regulations and how they apply to technology risk and controls
• Working knowledge of infrastructure and platform technologies (for example: networking Linux cloud platforms third-party SaaS architecture or engineering practices)
• Experience using ServiceNow for risk controls issues or workflow management
• Industry certifications such as CISM CRISC CISSP or equivalent