Vacancy expired!
Our Information Security professionals are passionate about information security and control solutions for computing environments. While managing a world-class team of technology experts, you'll partner with one or more disciplines, lines of business, regions or locations to respond to evolving business requirements and emerging threats. You'll also leverage your expert knowledge of today's ever-changing cybersecurity and risk landscape to influence IT operations across the firm. Responsibilities include offering guidance, best practices and support across businesses, leading risk reviews and vulnerability assessments, identifying threats, communicating with senior leaders and other stakeholders, and managing budgets.This role requires a wide variety of strengths and capabilities, including:
Bachelor’s degree or equivalent experience
Strong leadership skills with exceptional communication and presence
Advanced knowledge of multiple IT control and project management practices, and experience working across large environments
Ability to collaborate with high-performing teams and individuals throughout the firm to accomplish common goals
Expertise in application and infrastructure high-availability and resiliency architectures with demonstrated experience in business
Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management and data protection.
The purpose of this role is to ensure the security and resiliency of the Firm's computing environment, protect customer and employee confidential information, and comply with regulatory requirements globally. We accomplish this through strong information security leadership and active collaboration with line of business information risk managers to provide high quality security solutions and services that are focused on improving the Firm's risk posture. The IT Risk team is composed of firm-wide functions (IT Risk Management, Infrastructure Security Solutions, Identity & Access Management, and Application security) as well as business-aligned risk & resiliency management teams that effect the technology risk program across JPMC.
High Availability and Disaster Recovery forms part of the Resiliency Function within Cyber Security and it primarily focuses on the ability of JPMorgan Chase, Cyber Security and its businesses to continue to provide all products and services in the event of disruption. The disruptions could be minor (e.g. affecting a small segment) or major (e.g. affecting multiple businesses or a geographic area). The mission of High Availability and Disaster Recovery is to recover essential services and technology as a line of Business and in support of our businesses.
Drive technology resiliency compliance and governance reporting programs.As the JPMC operating environment becomes more complicated, it is of vital importance that the organizations resiliency capabilities keep pace with that level of change. As part of the Global DR testing group and working with both Corporate Sector Technology and the Lines of Business, the GTRM Resiliency Lead, has primary responsibility for ensuring that our current and future technology infrastructure reflects JPMCs continually evolving systems/business resiliency requirements.
Alignment – Provide for strategic direction of Resiliency and the alignment of GTRM and the LOBs with respect to services and projects.
Value Delivery – Confirm that the GTRM/LOB organization is designed to drive maximum business value from services provided. Oversee the delivery of value by the resiliency program to the business, and assess ROI.
Risk Management – Ascertain that processes are in place to ensure that risks have been adequately managed. Include assessment of the risk aspects of IT investments.
Resource Management – Provide high-level direction for sourcing and use of resiliency resources. Oversee the aggregate funding of technology resiliency at enterprise level. Ensure there is an adequate IT capability and infrastructure to support current and expected future resiliency requirements.
Performance Measurement – Verify strategic compliance, i.e. Achievement of strategic resiliency objectives. Review the measurement of performance and the contribution of IT resiliency to the business (i.e. technology goals met and delivery of promised business value).
Ensures overall compliance to the corporate resiliency standards.Ensures that all technology plans are developed and maintained, in accordance with Policy and Strategy, across all of Corporate Sector Technology.Reports regularly on the status and capability of Corporate Sector Technology, highlighting exposures, gaps, and audit exceptions.Provides control reporting for LOBs including scorecards and metrics, identifying remediation plans to bring about resolution.Facilitates two-way communication on issues, risks, follow up actions and resolutions.Develops deliverables to meet Corporate Sector Technology resiliency requirements based on an agreed approach.Supports and implements Resiliency Governance Team initiatives
Has a detailed understanding of Corporate Technology business requirements and ensure that resiliency plans are developed and maintained to the highest standards. To ensure compliance by Cyber Security to JPMC resiliency policies and guidelines.To ensure all resiliency related issues are recorded on appropriate corporate systems and tracked to resolution.Provide governance and oversite on our resolution and recovery program
Maintains an awareness of industry, business, product, technology and control issues that relate to resiliency and share them within the Corporate Technology community. Works with Senior Managers to ensure that resiliency Strategy and Plans are aligned with current Corporate Technology compliance requirements. Acts as point of contact with Business Continuity Coordinators (BCCs), Business Continuity Technologists (BCTs) and Corporate Sector Technology on all aspects of Strategy and Governance.Provides guidance and support for all resiliency related issues and requirements.Communicates the practical implications of resiliency related decisions, issues and risks to BCCs, BCTs and Corporate Sector Technology.
Establishes and maintains working relationships with Audit, Operations/Information Risk Management and Global Resiliency/Crisis Management. Assesses different options to provide effective relationship management and recommends an approach.Works to identify opportunities to improve and refine Business Continuity Service to meet business needs.Contributes to continuous improvement of the Business Continuity Operating Model.Supports knowledge sharing within the Business Continuity teams and holds information sharing sessions. People Management:
The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm’s cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group’s number one priority is to enable the business by keeping the firm safe, stable and resilient.When you work at JPMorgan Chase & Co., you’re not just working at a global financial institution. You’re an integral part of one of the world’s biggest tech companies. In 14 technology hubs worldwide, our team of 40,000+ technologists design, build and deploy everything from enterprise technology initiatives to big data and mobile solutions, as well as innovations in electronic payments, cybersecurity, machine learning, and cloud development. Our $9.5B+ annual investment in technology enables us to hire people to create innovative solutions that will not only transform the financial services industry, but also change the world.At JPMorgan Chase & Co. we value the unique skills of every employee, and we’re building a technology organization that thrives on diversity. We encourage professional growth and career development, and offer competitive benefits and compensation. If you’re looking to build your career as part of a global technology team tackling big challenges that impact the lives of people and companies all around the world, we want to meet you.JPMorgan Chase is an equal opportunity and affirmative action employer Disability/Veteran.
