JPMorgan Chase Information Risk Lead - Governance and Controls in Columbus, Ohio
JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.5 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at http://www.jpmorganchase.com/ .
The Global Cybersecurity and Technology Controls (“CTC”) functions are responsible for the governance and oversight of the Information Security Program, which is designed to securely enable new business and technology initiatives while maintaining a relentless focus on protecting the Firm and its clients/customers. Within CTC, Governance Risk and Controls group is responsible for overseeing all firm wide work related to technology policies and standards, controls, executive reporting, second and third lines of defense engagement, supervisory and regulatory oversight, and government and Cybersecurity partnerships, as well as regional leadership within CTC.
Audit, Issue and Regulatory Management (AIRM): AIRM team Govern the end-to-end CTC Internal Audit, Issue and Regulatory management process. Define scope and promote clear and consistent audit responses. Timely communicate audit progress and findings for management awareness. Share results throughout Global Technology for proactive issue identification. As a member of the AIRM team, individual will be responsible for providing audit and issue management as a service.
Roles and Responsibilities include:
Maintain a strong and collaborative working relationship with Internal/External/Regulatory Audit teams and the CTC Technology stakeholders during all phases of audits/exams.
Primary interface with stakeholders - including Technology Engineering & Operations, Legal & Compliance, Operational Risk, Line of Business and Internal/External Audit Regulators during the Audit/Exams.
Communicate risk and control gaps to key stakeholders on timely basis.
Partner with Product, Technology & Architecture teams during Regulatory, Audit and Client engagements as well as new product rollout.
Leveraging data analytics, conduct trend analysis to identify thematic issues, determine root causes, and design sustainable control improvements with Product, Technology & Architecture teams, including process enhancements and use of automated data collection techniques.
Subject Matter Expert on Audits, Controls and Risk management practices, provide consulting/advisory services to stake holders.
Lead audit preparations to identify emerging control issues, provide analysis and reports to business stakeholders for remediation
7+ years of experience in Technology Governance, Risk Management and Controls, Cybersecurity or related fields.Experience within financial services areas is preferred.
5+ years of experience in an Internal Audit, Technology Controls, Regulatory and/or Operational Audit position
Experience with implementation and oversight of technology risk and controls, coordination of activities for audits and assessing an IT controls environment.
Strong understanding of Information Security, Risk, Controls and Audit management.
Detail oriented self-starter with strong conceptual, analytical, decision making, planning, time management and prioritization skills.
Ability to communicate oral and written ideas in a clear, concise manner, at all levels of the organization.
Extensive experience with deep-dive control reviews to identify process and control breaks
Ability to work independently and proactively to accomplish multiple objectives concurrently
Demonstrated success working across Lines of Business, countries and regions, balancing the needs of multiple organizations
Excellent verbal, interpersonal and written communication skills and the ability to any level of management
Experience with working with virtual teams / teams geographically distributed is required
Knowledge of FFIEC, CAT, NIST, COBIT and ITIL (desired)
Bachelor's degree in related Technology field with CISA, CISM, CRISC or CISSP certifications (preferred)
JPMorgan Chase is an equal opportunity and affirmative action employer Disability/Veteran.