Technology Resiliency Lead - Tech Risk & Controls Lead

JPMorgan Chase & Co.•Plano, TX

About The Position

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management. As a Tech Risk & Controls Lead at JPMorgan Chase, Corporate Sector, you will drive the firm’s resiliency governance and technical risk management across critical technology platforms. You will partner with engineering, risk, and business stakeholders to ensure robust recovery strategies, effective controls, and compliance with regulatory standards. Your expertise will help safeguard business continuity, minimize operational disruptions, and embed best-in-class resiliency practices across the portfolio.

Requirements

5+ years of experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation
10 + years of experience in Security and /or Risk Management and / or Corporate Technology with an aptitude in application and platform security
Working knowledge of Cloud and modern application architecture: Core resiliency constructs (Multi AZ basics, backup/restore, health checks, auto scaling) Understanding of distributed systems basics and failure patterns (timeouts, retries, backoff, circuit breakers).
Experience coordinating tests/exercises and documenting results; ability to track remediation to completion.
Proficiency with Excel or similar for management information; able to interpret SLOs and RTO/RPO and communicate clear risk-based updates.
Familiarity with Infrastructure as Code concepts (Terraform or CloudFormation) and automation guardrails; able to review for basic compliance/recovery readiness.
Strong communication, organization, and stakeholder coordination skills.

Nice To Haves

AWS Cloud Practitioner or higher (e.g., AWS Solutions Architect Associate); or comparable certifications.
Exposure to internal audit/regulatory reviews and evidence preparation.
Familiarity with SRE and chaos engineering concepts from a governance/support perspective.
Experience with JIRA and Confluence.

Responsibilities

Lead the resiliency governance framework for applications, aligning artifacts to firm policies and standards.
Maintain and refresh business impact assessments, recovery strategies, plans, and runbooks; ensure version control and quality.
Coordinate the annual test calendar (recovery strategy validation, failover, tabletop/MEPC) and assemble exam-ready evidence.
Schedule, prepare, and track resiliency tests; document results, issues, and remediation actions.
Support controlled chaos experiments with engineering teams using firm-approved tooling; maintain guardrails and safe blast radius; capture outcomes and lessons learned.
Participate in resilience design reviews; contribute questions and observations to strengthen recovery approaches.
Understand modern application patterns (microservices, REST/event driven) and failure handling (timeouts, retries, backoff, circuit breakers) to inform governance reviews.
Publish and track SLOs and recovery objectives (RTO/RPO, MTTR) for critical services; maintain dashboards and management information.
Summarize trends on test coverage, control effectiveness, and issue aging for leadership updates.
Log and track issues, exceptions, and risk acceptances to durable closure; escalate as needed.
Coordinate across technology, cybersecurity, architecture, risk/compliance, and audit teams.