Tech Risk and Controls Lead
About The Position
Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management. As a Technology Risk and Controls Lead at JPMorganChase within Cybersecurity Technology and Controls, you will identify and mitigate compliance and operational risks in line with the firm's standards. You will spearhead GRC transformation and change initiatives, leveraging your technical skills and deep understanding of controls to manage risks associated with technology risk management. You will design, implement, and continuously enhance risk management frameworks, ensuring technology controls are effectively designed and adhere to regulatory, legal, and industry standards. You will be part of a team that values high performance, operational excellence, and innovation.
Requirements
- Formal training or certification on security concepts and 5+years of applied experience in technical program management, cybersecurity, or technology controls roles
- Proficiency in cybersecurity domains, including policies and standards, risk and control assessments, and regulatory compliance
- Proficiency in regulatory, legal, and industry standards such as NIST, ISO 27000 family, COBIT, FSP
- Experience in developing, implementing, and operating robust risk and control frameworks to mitigate technology failure and cybersecurity risks
- Ability to ensure decisions or constraints affecting program delivery are effectively escalated and addressed in a timely manner
- Strong verbal and written communication skills to translate technical risks into business impacts and engage with stakeholders at all levels
- Strong analytical skills to dissect complex challenges, conduct thorough root cause analysis, and develop effective solutions
- Proven ability to apply critical thinking and structured problem-solving techniques to address issues and drive continuous improvement in risk management practices
Nice To Haves
- CISM, CRISC, CISSP, or similar industry-recognized risk certifications
Responsibilities
- Lead and execute complex, cross-functional GRC programs and initiatives, ensuring strategic outcomes and alignment with business objectives
- Communicate program status, execution risks, issues, and key decisions to senior stakeholders, maintaining transparency and fostering informed decision-making
- Identify, manage, and mitigate delivery risks, proactively addressing potential roadblocks and implementing contingency plans to maintain program momentum
- Partner with key stakeholders to iterate on design, implement, and continuously operate and enhance technology risk and control frameworks, ensuring they meet industry standards and regulatory requirements
- Promote a culture of high performance, operational excellence, and innovation within the GRC team, driving continuous improvement in risk management practices
Benefits
- competitive total rewards package including base salary determined based on the role, experience, skill set and location
- commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions
- comprehensive health care coverage
- on-site health and wellness centers
- a retirement savings plan
- backup childcare
- tuition reimbursement
- mental health support
- financial coaching
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
