Technology Resiliency Lead - Tech Risk & Controls Lead

Job Description

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management.

As a Tech Risk & Controls Lead at JPMorgan Chase, Corporate Sector, you will drive the firm's resiliency governance and technical risk management across critical technology platforms. You will partner with engineering, risk, and business stakeholders to ensure robust recovery strategies, effective controls, and compliance with regulatory standards. Your expertise will help safeguard business continuity, minimize operational disruptions, and embed best-in-class resiliency practices across the portfolio.

Job responsibilities:

• Lead the resiliency governance framework for applications, aligning artifacts to firm policies and standards.
• Maintain and refresh business impact assessments, recovery strategies, plans, and runbooks; ensure version control and quality.
• Coordinate the annual test calendar (recovery strategy validation, failover, tabletop/MEPC) and assemble exam-ready evidence.
• Schedule, prepare, and track resiliency tests; document results, issues, and remediation actions.
• Support controlled chaos experiments with engineering teams using firm-approved tooling; maintain guardrails and safe blast radius; capture outcomes and lessons learned.
• Participate in resilience design reviews; contribute questions and observations to strengthen recovery approaches.
• Understand modern application patterns (microservices, REST/event driven) and failure handling (timeouts, retries, backoff, circuit breakers) to inform governance reviews.
• Publish and track SLOs and recovery objectives (RTO/RPO, MTTR) for critical services; maintain dashboards and management information.
• Summarize trends on test coverage, control effectiveness, and issue aging for leadership updates.
• Log and track issues, exceptions, and risk acceptances to durable closure; escalate as needed.
• Coordinate across technology, cybersecurity, architecture, risk/compliance, and audit teams.

Required qualifications, capabilities, and skills

• 5+ years of experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation
• 10 + years of experience in Security and /or Risk Management and / or Corporate Technology with an aptitude in application and platform security
• Working knowledge of Cloud and modern application architecture:
  • Core resiliency constructs (Multi AZ basics, backup/restore, health checks, auto scaling)
  • Understanding of distributed systems basics and failure patterns (timeouts, retries, backoff, circuit breakers).
• Experience coordinating tests/exercises and documenting results; ability to track remediation to completion.
• Proficiency with Excel or similar for management information; able to interpret SLOs and RTO/RPO and communicate clear risk-based updates.
• Familiarity with Infrastructure as Code concepts (Terraform or CloudFormation) and automation guardrails; able to review for basic compliance/recovery readiness.
• Strong communication, organization, and stakeholder coordination skills.

Preferred qualifications, capabilities, and skills

• AWS Cloud Practitioner or higher (e.g., AWS Solutions Architect Associate); or comparable certifications.
• Exposure to internal audit/regulatory reviews and evidence preparation.
• Familiarity with SRE and chaos engineering concepts from a governance/support perspective.
• Experience with JIRA and Confluence.

About Us

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

About the Team

Our Corporate Technology team relies on smart, driven people like you to develop applications and provide tech support for all our corporate functions across our network. Your efforts will touch lives all over the financial spectrum and across all our divisions: Global Finance, Corporate Treasury, Risk Management, Human Resources, Compliance, Legal, and within the Corporate Administrative Office. You'll be part of a team specifically built to meet and exceed our evolving technology needs, as well as our technology controls agenda.