JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.5 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at www.jpmorganchase.com
The Internal Audit Department has over 1,000 auditors globally. As one of the key control functions in JPMorgan Chase & Co, the Internal Audit Department is an independent assessment function established to evaluate, test, and report on the adequacy and effectiveness of management systems of internal controls.
The Global Technology Internal Audit group provides global audit coverage for multiple technology organizations within JPMorgan Chase, including Cybersecurity and Technology Controls (CTC), Global Technology Infrastructure (GTI), and Corporate Technology (CT). These businesses deliver a wide range of technology services for the firm globally and partner with all lines of businesses. In addition, they ensure the security and resiliency of the firm's computing environment, protect customer and employee confidential information, and comply with regulatory requirements globally.
This position is for a VP-level auditor within the Global Technology Internal Audit group and will be responsible for performing and leading CTC audits in a fast-paced environment. Based in Singapore, it will also be responsible for partnering with team members and auditors in other business areas to develop risk and control assessments through audit activities for information security technologies. This position is ideal for an individual who has knowledge of various technologies, technology processes and practices, and risk management strategies to effectively identify, evaluate and monitor risks and controls.
The ideal candidate must be a self-starter who is an experienced technology or cybersecurity professional, thinks and communicates well, and willing to lead and/or support both global and regional audit activities.
Responsibilities of this role will include:
Leading technology audits covering centralized access management functions, in addition to focused areas of cybersecurity such as digital forensics, threat intelligence or penetration testing as well as more general process reviews within cybersecurity.
Monitoring various major cybersecurity development initiatives and performing continuous risk assessments of coverage areas.
Attention to detail to ensure accuracy and completeness of audit coverage.
Participate in all aspects of audit activities including risk assessments, planning, testing, control evaluation, workpaper documentation, report drafting, issue clearance with technology stakeholders across lines of business including CTC, and follow-up/ verification of issue closure.
In addition, the candidate will develop senior cybersecurity and technology controls stakeholder relationships as well as partner with Internal Audit team members in other business areas (e.g. Corporate & Investment Bank, Consumer & Community Banking, etc.) to ensure the delivery of a seamless program of control and audit risk coverage.