Information Security and Controls Officer - Vice President
at J.P. Morgan
Posted 21 days ago
No clicks
- Compensation
- Not specified
- City
- Columbus
- Country
- United States
Currency: Not specified
Senior Information Security and Controls Officer on the Supplier Issue Management team responsible for overseeing supplier risk remediation and validating closure evidence. You will review assessment findings, liaise with internal stakeholders and critical suppliers, and manage the full issue lifecycle to ensure compliance with IT control policies. The role requires providing consultative guidance, driving process improvements, and communicating progress and risks to senior management. It emphasizes collaboration, attention to detail, and continuous improvement in supplier risk management.
Location: Columbus, OH, United States
Join a team where your expertise in risk management and information security helps shape best practices and drive continuous improvement. You will have the opportunity to make a meaningful impact, develop your skills, and contribute to a global organization that values professional growth.
As an Information Security and Controls Officer on the Supplier Issue Management team, you play a key role in maintaining robust risk management and supplier oversight. You will collaborate with internal stakeholders and critical suppliers to ensure our processes meet organizational standards, fostering a culture of quality, collaboration, and continuous learning.
Job Responsibilities:
- Review assessment findings for accuracy and compliance with organizational guidance
- Validate closure evidence provided by suppliers, including policies, procedures, and documentation
- Engage with internal stakeholders to address issue management queries
- Provide consultative guidance to business partners for resolving findings through action plans or understanding risk implications
- Consult with critical and high-risk suppliers to expedite risk remediation and provide progress transparency
- Liaise with business partners to ensure timely remediation of action plans and risk acceptances
- Manage the issue lifecycle, including identification, creation, modification, extension, and closure validation
- Identify opportunities for process improvements within supplier management
- Support internal education and share best practices with colleagues
- Maintain a thorough understanding of the supplier risk assessment process
- Communicate effectively with senior management across business groups
Required Qualifications, Capabilities, and Skills:
- Experience in information security, risk management, supplier management, information technology, or cyber security
- Understanding of supplier information technology and operational risk, as well as information technology control policies
- Excellent verbal communication skills
- Experience delivering written and verbal presentations to senior stakeholders
- Ability to collaborate across multiple business groups
- Attention to detail in reviewing documentation and evidence
- Commitment to maintaining high standards of quality and compliance
- Ability to manage multiple tasks and priorities
- Proficiency in identifying and implementing process improvements
- Strong problem-solving skills
- Ability to work effectively in a team-oriented environment
Preferred Qualifications, Capabilities, and Skills:
- Certification in Cybersecurity, Information Systems Audit, or Risk and Information Systems Control
- Experience supporting internal education and sharing best practices
- Familiarity with supplier risk assessment processes
- Experience validating closure evidence for compliance
- Ability to engage with diverse stakeholders
- Knowledge of global supplier management standards
- Demonstrated commitment to professional development and continuous learning
