Technology Cybersecurity Operational Risk Management Lead - Vice President
About The Position
As a Cybersecurity Operational Lead in the Compliance, Conduct, and Operational Risk team, you will collaborate across the first, second, and third lines of defense to assess global cybersecurity risks across the JPMorganChase technology estate. You will lead risk assessments, significant event reviews, and control monitoring across security configuration and security operations domains. You will apply hands-on security control experience to evaluate large environments, communicate risk and control effectiveness to senior leaders, and recommend mitigation actions. You will help us strengthen operational resilience through consistent oversight and credible challenge.
Requirements
- 5 years plus of experience as a technologist in cybersecurity, technology development, engineering, or technical architecture within financial services
- Strong understanding of enterprise risk management concepts and practices
- Experience in cybersecurity practices such as vulnerability management, penetration testing, incident response, endpoint protection, data loss prevention, email security, SIEM, DDoS, or public cloud security configuration
- Ability to understand complex technical systems and the business processes they support, assess inherent risk, and recommend mitigating controls
- Ability to work with limited supervision and deliver results on long-running projects
- Exceptional written and verbal communication skills
- Knowledge of cybersecurity frameworks such as NIST CSF or FFIEC
Nice To Haves
- Experience translating on-premises security configurations and operational processes into multi-cloud environments
- Understanding of how cloud and on-premises controls support regulatory compliance requirements
- One or more information security or cloud certifications, such as CISSP, CISM, GIAC, CCNA Security, AWS Security Specialty, or Azure Security Engineer
Responsibilities
- Engage with technology and cybersecurity teams to evaluate processes, controls, and risks
- Assess cybersecurity risk impacts at the line of business and enterprise levels
- Identify global risk concentrations and evaluate control effectiveness and residual risk
- Write and present risk and control assessments to Executive Directors, Managing Directors, and governance forums
- Coordinate with peers to deliver long-running assessments and oversight activities on schedule
- Maintain domain expertise in an assigned security control area and provide credible challenge and guidance
- Monitor cyber trends, vulnerabilities, and emerging technologies to inform oversight priorities
- Perform independent operational risk assessments through monitoring programs, including significant event reviews, deep dives, risk metrics, and risk appetite assessments
Benefits
- comprehensive health care coverage
- on-site health and wellness centers
- a retirement savings plan
- backup childcare
- tuition reimbursement
- mental health support
- financial coaching
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Manager
Education Level
No Education Listed
