Cyber Operations – Tech Resiliency Strategy & Transformation Head
LONDON, United Kingdom
JPMorgan Chase & Co.
Come join JPMorgan’s newly formed Firmwide Technology Resiliency (FTR) organization, tasked with ensuring the Firm’s technology estate can maintain effective operations and support the ongoing, critical functioning of Essential Business Services in the face of today’s evolving threat landscape. The FTR team partners across all JPMC Lines of Business and Corporate Functions to drive & deliver the following:
- Proactive, threat-informed testing & simulations that validate readiness and drive down residual risk
- An end-to-end technology resiliency control framework linked to robust governance & reporting structures to ensure appropriate visibility and accountability
- A multi-year, prioritized resiliency investment strategy focused on uplifting core tooling, capabilities, and controls to enable the Firm’s top strategic priorities across key areas such as Public Cloud, Technology Modernization, AI/ML, and ongoing business expansion (among other key areas)
- Proactive threat and vulnerability assessments that ensure the above activities are grounded in the current risk landscape and most plausible disruptive scenarios
- Ongoing regulatory & financial industry engagement to support the strengthening of sector-level resiliency & readiness
In this role you will serve as the Head of Strategy & Transformation for Firmwide Technology Resiliency, interfacing closely with the firm’s most senior technology, cybersecurity, and business leaders to pinpoint areas of emerging risk, drive development of new controls, processes, & tooling, and ultimately build both medium & long-term strategy to chart the course for the FTR organization and ensure ongoing delivery across the Firm.
Primary Roles/Responsibilities
- Design and execute strategic priorities for the FTR organization, liaising closely with senior business and technology leaders across all Lines of Business and Corporate Functions
- Lead a team focused on transforming the firm’s technology resiliency capabilities & controls to meet the needs of the evolving threat landscape
- Build and manage the team’s overall book of work (BoW) of testing, strategic programs & investments, root cause analyses, vulnerability assessments, and industry engagements
- Manage the organization’s overall stakeholder engagement strategy, core process uplift activities, and risk management practices
- Build and sustain strong partnerships across Cybersecurity, Technology, Product Management, Operations, Business Resiliency, Third Party Oversight, Risk & Compliance teams to drive program maturity and development of meaningful measurements to communicate ongoing status/progress
- Lead Root Cause analyses and vulnerability assessments, synthesizing corrective actions, dispositioning identified risks, and tracking/monitoring progress until completion
- Lead strategic industry engagement to drive uplifted Resiliency posture of the sector
Key Qualifications
- Preferred BS/MS degree in Information Technology, Operational Resilience, Information Assurance, Cybersecurity, and/or Banking/Finance (equivalent experience accepted in lieu of degree) with at least 10-15 years of relevant, professional work experience
- Ability to design new Operating Models for large organizations that can bring all aspects of the program into strategic alignment to ensure execution across multiple key functions and disciplines
- Demonstrated Experience across Business and Technology Resiliency, Operations, and Strategy
- Keen ability to assess emerging risks & vulnerabilities and synthesize outcomes into clear messaging for executive leadership that drives actions and accountability
- Experience presenting in front of senior leadership, regulatory authorities, large audiences, and industry forums
- Depth and understanding of technology control frameworks and risk management practices; ability to lead design & development of such practices
- Deep experience in critical infrastructure protection & systemic risk analysis
- Demonstrated ability to manage multiple, parallel, complex engagements collaboratively with a diverse set of stakeholders, subject matter experts, and senior leaders to build requirements and execute across a core set of defined milestones
- Familiarity with how key international financial systems operate, to include an understanding of the current threat landscape, operational resiliency regulations, and possible systemic risk scenarios.
- Experience formulating and/or interpreting threat and risk analyses of cyber adversary techniques, technology disruptions, third party outages, and other major hazards
- Excellent writing skills and ability to communicate effectively. Proficiency in the use of Microsoft Office and related technologies. Background in metrics development, risk analysis & visualization, and automation is a plus
When you work at JPMorgan Chase & Co., you’re not just working at a global financial institution. You’re an integral part of one of the world’s biggest tech companies. In 14 technology hubs worldwide, our team of 40,000+ technologists design, build and deploy everything from enterprise technology initiatives to big data and mobile solutions, as well as innovations in electronic payments, cybersecurity, machine learning, and cloud development. Our $9.5B+ annual investment in technology enables us to hire people to create innovative solutions that will not only transform the financial services industry, but also change the world.
At JPMorgan Chase & Co. we value the unique skills of every employee, and we’re building an organization that thrives on diversity. We encourage professional growth and career development and offer competitive benefits and compensation. If you’re looking to build your career as part of an exciting team tackling big challenges that impact the lives of people and companies all around the world, we want to meet you.
J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Banking Big Data Cloud Compliance Finance Governance Machine Learning Monitoring Risk analysis Risk management Strategy Vulnerabilities
Perks/benefits: Career development Competitive pay Health care Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Engineer jobs
- Open Security Researcher jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs