Job Description

:

\xef\xbb\xbfWorking in Information Security Management, you\'ll design and implement processes and tools that safeguard the firm\'s computing environment. Creating action plans, mitigating risks, and resolving control issues, you\'ll gain key insight into today\'s complex risk and regulatory landscape. Working with our cybersecurity team, you\'ll be at the forefront of innovation designed to strengthen our operations. Additionally, you\'ll have the chance to participate in steering committees, promote IT security awareness across the firm, advise and support business security risk and control activities, and drive your career in any direction you choose.

This role requires a wide variety of strengths and capabilities, including:

Job responsibilities

• Partners with Product Security to ensure design and implemented controls are operating in alignment with firm, regulatory and industry standards
• Build and maintain relationships with key stakeholders, use strategic influence to successfully meet objectives
• Assess the effectiveness of technology controls against requirements and policy standards
• Collaborate with diverse teams & opinions,relationship building and influence on product teams
• Participate and contribute in risk identification, assessment and treatment
• Ability to operate on multiple tasks whilst continuing to deliver a high level of results
• Advise and manage operational risk in line with the firm\'s standards
• Support and co-ordinate interaction with 2nd Line of Defense, Audit, Regulators & Customers
• Support requests for information on control obligations
• Identify areas for systematic and process improvement
• Drive operational risk management subject matter expertise
• Support and advise process owners in managing operational risk
• Provides a transparent view of the operational risk posture to stakeholders

Required qualifications, capabilities, and skills

• Formal training or certification on Information Security concepts and 3+ years applied experience"
• Advanced knowledge of multiple IT control and project management practices, plus experience working across large environments
• Ability to collaborate with high-performing teams and individuals throughout the firm to accomplish common goals
• Expertise in application and infrastructure high-availability and resiliency architectures
• Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection
• Ability to understand and translate technical risk to enable the business through risk advisory on the products you support
• CISA / CISM / CISSP / CRISC is a plus
• Broad knowledge of industry controls (NIST, ISO, PCI, SOC)
• Technical understanding of cloud and on-prem computing (Public, Private, Hybrid)
• Experience in information security management and/or governance
• Good understanding of risk identification, assessment, monitoring and reporting

Preferred qualifications, capabilities, and skills

• Strong business acumen
• Passion to solve issues
• Self-motivated and with a desire to learn

About Us: J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world\'s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants\' and employees\' religious practices and beliefs, as well as mental health or physical disability needs. Visit our for more information about requesting an accommodation.

About the Team: Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we\'re setting our businesses, clients, customers and employees up for success.

JPMorgan Chase