Location: OH, United States

As a Tech Risk & Controls Lead in Cybersecurity Technology & Controls within JP Morgan Chase, you will be responsible for managing the identification and mitigation of operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to business-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of Global Technologies risk posture and its impact on the business. Your knowledge of risk management principles and practices will enable you to drive solutions and effectively work with a diverse team in a dynamic risk landscape.

In this role you will lead the execution of the Compliance and Operational Risk processes for the Cybersecurity and Technology Controls (CTC) organization. Your focus will be on ensuring compliance with firmwide policy including proper alignment of risk to operational processes, timeliness of risk remediation strategies, and ongoing reporting to senior managers. You will collaborate with process owners, LOB and business stakeholders, control owners, Audit, and Compliance, Conduct and Operational Risk (CCOR) while working alongside a team of controls professionals to ensure organizational adherence to firmwide requirements for the identification, recording, reporting, and governance of compliance and operational risk issues.

Job Responsibilities:

• Manage cybersecurity controls in readiness for internal audit exams; ensure consistent engagement with appropriate process owners during exam execution
• Provide advisory support to process owners and in leadership on emerging risks
• Prepare and distribute transparent reporting to leadership and escalate issues as needed
• Ensure complete and timely responses to queries and maintain an accurate record of responses 
• Ensure compliance with firmwide Compliance and Operational Risk Issue Management standard and procedure
• Identify, escalate, and implement solutions for operational process improvements 
• Collaborate with stakeholders in a consulting role to add value and address unresolved critical problems

Required Qualifications, Capabilities, and Skills:

• Obtain 5 plus years in technology risk management processes, IT Risk Management Frameworks, internal controls and compliance.
• Strong executive communication skills, the ability to influence direction, negotiate, and collaborate with others
• Critical thinking, analytical, and problem-solving skills
• Adaptable to changing priorities in a fast-paced, collaborative, team-oriented and cross-functional environment
• Self-motivated and confident decision-maker with the ability to lead, challenge and influence change 
• Synthesize data quickly and communicate analysis succinctly and professionally
• Proven ability to manage operational programs, meet strict deadlines, and drive process improvements

Preferred Qualifications:

• Ability to maintain professional documentation for internal and external reporting purposes
• Proficient in Microsoft Office Suite (Word, Excel, PowerPoint, Teams, Visio)
• CRISC / CISSP or other relevant Industry certification is a plus 
• Familiarity with regulatory frameworks (e.g., NIST, ISO) 

#CTC