Enterprise Technology Risk & Controls Lead

As a Enterprise Technology Risk & Controls Lead in Cybersecurity Technology & Controls within JP Morgan Chase, you will play a pivotal role in the execution of the Compliance and Operational Risk by assisting with the identification and mitigation of operational risks. You will also provide subject matter expertise and technical guidance to business-aligned process owners to ensure that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards.

By collaborating with CTC process owners, LOB and business stakeholders, control owners, Audit, and Compliance, Conduct and Operational Risk (CCOR), and a team of risks professionals, you will contribute to the reporting of a comprehensive view of Global Technology’s risk posture and its impact on the business. Your advanced knowledge of risk management principles and practices will enable you to drive solutions and effectively work with a diverse team in a dynamic risk landscape.

• Support in the identification and reporting of emerging risks
• Ensure effective identification, quantification, and communication of technology risk, focusing on root cause analysis and resolution recommendations
• Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance
• Ensure compliance with the firm’s operational risk management framework for the products you support, while maintaining alignment with current control obligations, expectations and priorities
• Develop and maintain robust relationships, becoming a trusted partner with LOB process owners, technologists, and assessments teams to facilitate cross-functional collaboration and progress toward shared goals
• Identify, escalation and implement solutions for operational process improvements

• Obtain 5 plus years of experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation
• Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements
• Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies
• Demonstrated ability to influence executive-level strategic decision-making and translating technology insights into business strategies for senior executives
• Strong executive communication skills, the ability to influence direction, negotiate, and collaborate with others
• Critical thinking, analytical, and problem-solving skills
• Adaptable to changing priorities in a fast-paced, collaborative, team-oriented and cross-functional environment
• Self-motivated and confident decision-maker with the ability to lead, challenge and influence change
• Synthesize data quickly and communicate analysis succinctly and professionally
• Proven ability to manage operational programs, meet strict deadlines, and drive process improvements

• Ability to maintain professional documentation for internal and external reporting purposes
• Proficient in Microsoft Office Suite (Word, Excel, PowerPoint, Teams, Visio)
• CRISC/ CISSP / CISA /Cloud (AWS/Azure) or other relevant Industry certification

#CTC