Vice President - Information Security Management - SOC
NY, United States
JPMorgan Chase & Co.
Job Description
As a Vice President - Information Security Management at JP Morgan Chase within Cybersecurity & Technology Controls organization, this role calls for a strong manager with experience leading performance of controls attestation (SOC1, SOC2, SOX) engagements and understanding of SOC-Attest readiness, scoping and execution and issue management processes. The selected candidate will support the operations of the SOC Controls Attestation teams, facilitating efficient team operations across audit and regulatory exam scopes, driving resolution of concerns, to ensure the ability to meet the demands of internal and external clients across all lines of business. This role includes oversight of SOC administrative and financial activities, creation-maintenance of procedural documentation, operations status monitoring, and driving continuous process improvement. The role requires ongoing interactions with Controls Attestation Leads and teams, key CTC-technology stakeholders, SOC owners, and effective status reports to ensure a no surprises environment. Successful execution of responsibilities requires a candidate who is highly organized, with strong process management, analytical, documentation, and presentation-communication skills.
Job Responsibilities:
- Coordinate with Cyber and Tech Controls (CTC) Controls Attestation teams, x-LOB technology management, Finance & Business Management, and other key stakeholders to:
- Drive consistency in execution, and enhancements to controls-attest operations
- Communication to key stakeholders to ensure a no surprises environment, and facilitate development, maintenance and delivery of consistent and meaningful reporting and metrics
- Improve team tools, processes and best practices, identifying potential problems and points of friction and working to find solutions in order to maximize efficiency
- Oversee remedial work streams, assessing effectiveness of proposed solutions and driving timely and effective solutions
- Driving, developing, maintaining high quality process documentation, status reporting, and presentations
- Develop educational / guidance resources for use by CTC personnel
- People leadership, including performance management and development
Job Requirements:
- Formal training or certification on information security management* concepts and 5+ years applied experience with solid knowledge of controls attestation processes
- Minimum of three years of Manager level experience as Consulting firm practitioner (”Big Four” experience a definite plus), performing IT Controls audits, including experience leading planning and execution of SOC and/or SOX audits
- Strong organizational-leadership skills, with proven ability to deliver quality results in a deadline-driven environment
- Detail oriented, quality-focused; with strong documentation and reporting skills
- Confidence and self-assurance, including ability to reach across the firm to engage appropriate management, set agendas, lead calls with senior management and drive actions to meet program objectives
- A problem solver with proven ability to evaluate processes, controls, identify weaknesses and potential solutions
- Ability to work effectively in a global team environment and drive results in a matrixes organization
- A strong sense of ownership, commitment to quality and attention to detail
- Excellent interpersonal skills - verbal communications, written communications, and track record of collaboration
- Intellectual rigor, emotional intelligence, high energy and a passion for the delivery of high quality project outcomes
- MS Office applications (PowerPoint, Excel, Word)
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. For those in eligible roles, we offer discretionary incentive compensation which may be awarded in recognition of firm performance and individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Banking Finance Monitoring SOC SOC 1 SOC 2 SOX
Perks/benefits: Competitive pay Health care Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs