Apply on Employer Site

Chase · 5 months ago

Technology Operational Risk Management Lead - Vice President

8181 Communications Pkwy Bldg B, Plano, TX, 75024, US

Full-time

Onsite

Mid, Senior Level

5+ years exp

JPMorgan Chase is a leading financial institution that offers innovative financial solutions. The Technology Operational Risk Management Lead will assess and evaluate global cybersecurity risks, lead risk assessments, and collaborate with various lines of defense to enhance the company's cybersecurity posture.

BankingFinancial Services

Responsibilities

Engage with technology and cybersecurity technologists to evaluate processes and risks

Assess risk impacts at the line of business and enterprise level

Work with technology areas to identify risk concentrations globally and understand how security controls mitigate them or identify residual risks

Write and present assessments highlighting control efforts or risks to Executive Directors, Managing Directors, and members of the Risk Operating Council

Exhibit strong organizational management skills necessary to collaborate with peers and deliver results

Maintain a high level of professionalism and expertise to be recognized as an expert in an assigned security control domain

Keep abreast of current cyber trends, vulnerabilities and emerging technologies

Perform independent assessments of operational risks though operational risk monitoring programs (e.g., significant event reviews, deep dive reviews, risk metrics, operational risk appetite, independent risk management assessments)

Qualification

Cybersecurity experienceRisk management understandingTechnical architecture knowledgeVulnerability managementIncident responseCloud security best practicesCommunication skillsPenetration testingEndpoint protectionData loss preventionEmail securitySIEMDDoSNIST CSF knowledgeFFIEC knowledgeSecurity certifications

Required

5+ years of experience as a technologist with experience in cybersecurity / technology development, engineering, or technical architecture within financial services organizations

Strong understanding of risk management at the enterprise level

Knowledge and experience in cybersecurity organization practices in some of the following: vulnerability management, penetration testing, incident response, endpoint protection, data loss prevention, email security, SIEM, DDoS, public cloud security configuration best practices, etc

Ability to understand complex technical systems, the business processes they support, assess the inherent risks, and recommend mitigating security controls

Highly disciplined and able to work with limited supervision to execute long running projects with results

Exceptional verbal and written communication skills

Knowledge of common frameworks such as NIST CSF, FFIEC etc