Job DescriptionBring your Expertise to JPMorganChase. As part of Risk Management and Compliance, you are at the center of keeping JPMorganChase strong and resilient. You help the firm grow its business in a responsible way by anticipating new and emerging risks and using your expert judgement to solve real-world challenges that impact our company, customers and communities. Our culture in Risk Management and Compliance is all about thinking outside the box, challenging the status quo and striving to be best-in-class.
As a Cybersecurity Operational Lead in Compliance, Conduct, and Operational Risk team, you will collaborate across the first, second, and third lines of defense to assess global cybersecurity risks across the JPMorganChase technology estate. You lead risk assessments, significant event reviews, and control monitoring across security configuration and security operations domains. You apply hands-on security control experience to evaluate large environments, communicate risk and control effectiveness to senior leaders, and recommend mitigation actions. You help us strengthen operational resilience through consistent oversight and credible challenge.
Job responsibilities: - Engage with technology and cybersecurity teams to evaluate processes, controls, and risks
- Assess cybersecurity risk impacts at the line of business and enterprise levels
- Identify global risk concentrations and evaluate control effectiveness and residual risk
- Write and present risk and control assessments to Executive Directors, Managing Directors, and governance forums
- Coordinate with peers to deliver long-running assessments and oversight activities on schedule
- Maintain domain expertise in an assigned security control area and provide credible challenge and guidance
- Monitor cyber trends, vulnerabilities, and emerging technologies to inform oversight priorities
- Perform independent operational risk assessments through monitoring programs, including significant event reviews, deep dives, risk metrics, and risk appetite assessments
Required qualifications, capabilities, and skills: - 5 years plus of experience as a technologist in cybersecurity, technology development, engineering, or technical architecture within financial services
- Strong understanding of enterprise risk management concepts and practices
- Experience in cybersecurity practices such as vulnerability management, penetration testing, incident response, endpoint protection, data loss prevention, email security, SIEM, DDoS, or public cloud security configuration
- Ability to understand complex technical systems and the business processes they support, assess inherent risk, and recommend mitigating controls
- Ability to work with limited supervision and deliver results on long-running projects
- Exceptional written and verbal communication skills
- Knowledge of cybersecurity frameworks such as NIST CSF or FFIEC
Preferred qualifications, capabilities, and skills: - Experience translating on-premises security configurations and operational processes into multi-cloud environments
- Understanding of how cloud and on-premises controls support regulatory compliance requirements
- One or more information security or cloud certifications, such as CISSP, CISM, GIAC, CCNA Security, AWS Security Specialty, or Azure Security Engineer
About UsJPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans
About the TeamOur professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success.
Risk Management helps the firm understand, manage and anticipate risks in a constantly changing environment. The work covers areas such as evaluating country-specific risk, understanding regulatory changes and determining credit worthiness. Risk Management provides independent oversight and maintains an effective control environment.
Never miss an opportunity! Create an alert based on the job you applied for.