Tech Risk Control Technology Resiliency Lead

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence driving innovation in risk management.

As a Tech Risk & Controls Lead at JPMorgan Chase Corporate Sectoryou will drive the firms resiliency governance and technical risk management across critical technology platforms. You will partner with engineering risk and business stakeholders to ensure robust recovery strategies effective controls and compliance with regulatory standards. Your expertise will help safeguard business continuity minimize operational disruptions and embed best-in-class resiliency practices across the portfolio.

Job responsibilities:

• Lead the resiliency governance framework for applications aligning artifacts to firm policies and standards.
• Maintain and refresh business impact assessments recovery strategies plans and runbooks; ensure version control and quality.
• Coordinate the annual test calendar (recovery strategy validation failover tabletop/MEPC) and assemble exam-ready evidence.
• Schedule prepare and track resiliency tests; document results issues and remediation actions.
• Support controlled chaos experiments with engineering teams using firm-approved tooling; maintain guardrails and safe blast radius; capture outcomes and lessons learned.
• Participate in resilience design reviews; contribute questions and observations to strengthen recovery approaches.
• Understand modern application patterns (microservices REST/event driven) and failure handling (timeouts retries backoff circuit breakers) to inform governance reviews.
• Publish and track SLOs and recovery objectives (RTO/RPO MTTR) for critical services; maintain dashboards and management information.
• Summarize trends on test coverage control effectiveness and issue aging for leadership updates.
• Log and track issues exceptions and risk acceptances to durable closure; escalate as needed.
• Coordinate across technology cybersecurity architecture risk/compliance and audit teams.

Required qualifications capabilities and skills

• 5 years of experience or equivalent expertise in technology risk management information security or related field emphasizing risk identification assessment and mitigation
• 10 years of experience in Security and /or Risk Management and / or Corporate Technology with an aptitude in application and platform security
• Working knowledge of Cloud and modern application architecture:
  • Core resiliency constructs (Multi AZ basics backup/restore health checks auto scaling)
  • Understanding of distributed systems basics and failure patterns (timeouts retries backoff circuit breakers).
• Experience coordinating tests/exercises and documenting results; ability to track remediation to completion.
• Proficiency with Excel or similar for management information; able to interpret SLOs and RTO/RPO and communicate clear risk-based updates.
• Familiarity with Infrastructure as Code concepts (Terraform or CloudFormation) and automation guardrails; able to review for basic compliance/recovery readiness.
• Strong communication organization and stakeholder coordination skills.

Preferred qualifications capabilities and skills

• AWS Cloud Practitioner or higher (e.g. AWS Solutions Architect Associate); or comparable certifications.
• Exposure to internal audit/regulatory reviews and evidence preparation.
• Familiarity with SRE and chaos engineering concepts from a governance/support perspective.
• Experience with JIRA and Confluence.