Information Security Management - Audit and Regulatory

Our Information Security professionals are passionate about information security and control solutions for computing environments. While managing a world-class team of technology experts, you'll partner with one or more disciplines, lines of business, regions or locations to respond to evolving business requirements and emerging threats. You'll also leverage your expert knowledge of today's ever-changing cybersecurity and risk landscape to influence IT operations across the firm. Responsibilities include offering guidance, best practices, and support across businesses, leading risk reviews and vulnerability assessments, identifying threats, communicating with senior leaders and other stakeholders, and managing budgets.

This role will be focusing on Audit & Regulatory issues, coordinating audit, 2nd line and regulatory engagements across the Compute Network and Storage portfolio.  The Audit and Regulatory VP will focus on creating an audit-ready environment for products and services in the portfolio, including working with product teams to establish consistent and comprehensive audit documentation, establishing audit and regulatory engagement guidelines and processes and leveraging the use of automation for the collection, maintenance and dissemination of evidence for global regulatory and audit engagements.  The Audit and Regulatory Lead will be expected to partner with senior leaders and members across the portfolio, IP risk partners, as well as with first line risk and controls functions, internal audit and second-line of defense stakeholders to drive adherence to existing policies and standards, regulatory requirements and effective risk & controls.

This role requires a wide variety of strengths and capabilities, including:

• Bachelor’s degree or equivalent experience
• Strong leadership skills with exceptional communication and presence
• Advanced knowledge of multiple IT control and project management practices and experience working across large environments
• Ability to collaborate with high-performing teams and individuals throughout the firm to accomplish common goals
• Expertise in application and infrastructure high-availability and resiliency architectures with demonstrated experience in business
• Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection
• Build and cultivate an audit-ready culture across the Compute, Network and Storage portfolio
• Coordinate, track and monitor Requests for Information (RFI) responses for audit and regulatory examinations
• Maintain calendar of upcoming global audit, second-line and regulatory engagements
• Interacts with Internal Audit, Compliance, Conduct & Operational Risk (CCOR) and Cybersecurity & Technology Controls (CTC) Global Regulatory Engagement teams

Qualifications:

• 7+ years of experience in Technology and preferable within the finance sector.
• Experience working in internal audit, independent risk management, or second-line of defense function.
• Experience working in a matrix management model, utilizing virtual teams.
• Experience working both independently and, in a team,-oriented, collaborative environment is essential.
• Excellent communicator at all levels of the organization.
• Strong influencing skills, comfortable executing against recommendations and plans by overcoming barriers and resistance.
• Ability to forge strong relationships and build a wide network throughout the firm.

JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. For those in eligible roles, we offer discretionary incentive compensation which may be awarded in recognition of firm performance and individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans