Information Security Management - Audit and Regulatory
Tampa, FL, United States
JPMorgan Chase & Co.
Our Information Security professionals are passionate about information security and control solutions for computing environments. While managing a world-class team of technology experts, you'll partner with one or more disciplines, lines of business, regions or locations to respond to evolving business requirements and emerging threats. You'll also leverage your expert knowledge of today's ever-changing cybersecurity and risk landscape to influence IT operations across the firm. Responsibilities include offering guidance, best practices, and support across businesses, leading risk reviews and vulnerability assessments, identifying threats, communicating with senior leaders and other stakeholders, and managing budgets.
This role will be focusing on Audit & Regulatory issues, coordinating audit, 2nd line and regulatory engagements across the Compute Network and Storage portfolio. The Audit and Regulatory VP will focus on creating an audit-ready environment for products and services in the portfolio, including working with product teams to establish consistent and comprehensive audit documentation, establishing audit and regulatory engagement guidelines and processes and leveraging the use of automation for the collection, maintenance and dissemination of evidence for global regulatory and audit engagements. The Audit and Regulatory Lead will be expected to partner with senior leaders and members across the portfolio, IP risk partners, as well as with first line risk and controls functions, internal audit and second-line of defense stakeholders to drive adherence to existing policies and standards, regulatory requirements and effective risk & controls.
This role requires a wide variety of strengths and capabilities, including:
- Bachelor’s degree or equivalent experience
- Strong leadership skills with exceptional communication and presence
- Advanced knowledge of multiple IT control and project management practices and experience working across large environments
- Ability to collaborate with high-performing teams and individuals throughout the firm to accomplish common goals
- Expertise in application and infrastructure high-availability and resiliency architectures with demonstrated experience in business
- Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection
- Build and cultivate an audit-ready culture across the Compute, Network and Storage portfolio
- Coordinate, track and monitor Requests for Information (RFI) responses for audit and regulatory examinations
- Maintain calendar of upcoming global audit, second-line and regulatory engagements
- Interacts with Internal Audit, Compliance, Conduct & Operational Risk (CCOR) and Cybersecurity & Technology Controls (CTC) Global Regulatory Engagement teams
Qualifications:
- 7+ years of experience in Technology and preferable within the finance sector.
- Experience working in internal audit, independent risk management, or second-line of defense function.
- Experience working in a matrix management model, utilizing virtual teams.
- Experience working both independently and, in a team,-oriented, collaborative environment is essential.
- Excellent communicator at all levels of the organization.
- Strong influencing skills, comfortable executing against recommendations and plans by overcoming barriers and resistance.
- Ability to forge strong relationships and build a wide network throughout the firm.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. For those in eligible roles, we offer discretionary incentive compensation which may be awarded in recognition of firm performance and individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Banking Compliance Finance Governance Risk management Vulnerability management
Perks/benefits: Competitive pay Health care Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs