Our Information Security professionals are passionate about information security and control solutions for computing environments. While managing a world-class team of technology experts, you'll partner with one or more disciplines, lines of business, regions or locations to respond to evolving business requirements and emerging threats. You'll also leverage your expert knowledge of today's ever-changing cybersecurity and risk landscape to influence IT operations across the firm. Responsibilities include offering guidance, best practices, and support across businesses, leading risk reviews and vulnerability assessments, identifying threats, communicating with senior leaders and other stakeholders, and managing budgets.

　　Job Responsibilities

　　Implement and where needed establish governance processes to reduce risk from failed internal processes, inadequate identification of risks, inadequate controls, and emerging risks

　　This role assesses risks and drive actions for remediation activities

　　Identify and aggregate thematic risks and trends

　　Establishes and oversees adherence to policies and standards impacting technology and cyber risks

　　Identification of technology risk impacting the business that is quantified, communicated, and managed, including recommendations for resolution, and identifying the root cause/key themes

　　Partner with Third Party Oversight teams to ensure effective vendor risk management, with a focus on Cloud computing / emerging technologies

　　Maintain an understanding of Product teams strategies, product roadmaps and key investment programs

　　Apply working experience in multiple security or risk management domains (e.g., application security, vulnerability management, data protection, encryption, logging and monitoring, network security)

　　Assess technology risks, businesses and products as they evolve to effectively identify and suggest remediation plans

　　Required qualifications, capabilities and skills:

　　Bachelor's degree or equivalent experience such as Operational Risk including Technology/Cyber Risk

　　Relevant industry certifications are preferable

　　Strong experience in various Technology and Cyber domains, for e.g., Architecture, Vulnerability Management, Cloud, etc.

　　Ability to work with data from disparate sources to build a cohesive view on risk

　　Advanced knowledge of multiple IT control and project management practices and experience working across large environments

　　Ability to collaborate with high-performing teams and individuals throughout the firm to accomplish common goals

　　Expertise in application and infrastructure high-availability and resiliency architectures with demonstrated experience in business

　　Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection

　　Advanced level in Office 365 with proficiency combining data sources in Excel

　　Preferred qualifications, capabilities and skills:

　　Risk management expertise in AWS services

　　Experience in banking and financial services

　　Experience working in regulated industries, in particular leveraging technology standards, frameworks, compliance, and industry recognized best practice/standards (e.g., ITIL, NIST, ISO, PCI, SOC)

　　Collaboration with internal and external technology audits (3rd Line of Defense), CCOR Operational Risk Management deep dives and testing (2nd Line of Defense), and the ability to advocate on behalf of subject matter experts

　　Working knowledge and experience in the Storage or Network domain, infrastructure, architecture, and/or engineering practices

　　JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

　　We recognize that our people are our strength and the diverse talents and perspectives that they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as any mental health or physical disability needs. (If you are a US or Canadian applicant with a disability and wish to request an accommodation to complete the application process, please contact us by calling the Accessibility Line (US and Canada Only) 1-866-777-4690 and indicate the specifics of the assistance needed.)

　　We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. For those in eligible roles, we offer discretionary incentive compensation which may be awarded in recognition of firm performance and individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

　　JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans