Apply Now    

Cybersecurity Risk Lead

Req #: 170013155
Location: Jersey City, NJ, US
Job Category: Technology
Job Description:

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at http://www.jpmorganchase.com/.

 

Global Cybersecurity ensures the security and resiliency of the Firm’s computing environment, enabling it to protect customer and employee confidential information, and comply with regulatory and audit requirements globally. We accomplish this through strong information security leadership and active collaboration with line of business information risk managers to provide high-quality security solutions and services that are focused on improving the Firm's risk posture.

 

Within Global Cybersecurity, the Governance, Risk & Control (GRC) maintains corporate cybersecurity policies and the cybersecurity risk and control framework. The group also collaborates with both internal and external risk and control organizations (e.g. operational risk, internal audit, regulators) on cyber security issues of mutual interest. We are looking for an individual to assist with the execution of JPMC’s Cyber Risk Assessment Methodology.

 

Roles and Responsibilities

include but are not limited to: 

  • Assist in the development and execution of a repeatable methodology to test Global Security Standards against threats defined by actor, target, intent, and vector.
  • Conduct formal risk assessments of the JPMC technology environment using the methodology.
  • Collaborate with the Cybersecurity Standards team on control evaluation using a defined set of high level threats.
  • Drive/lead the Cybersecurity risk assessment and resulting issue and action plan management on Global Cybersecurity Processes and Products.
  • Partner with Procedure Owners in multiple organizations and technologies to ensure that Procedures are appropriate and fully integrated with Cybersecurity Standards and Global Cybersecurity Solutions.
    • Leverage standards and control objective expertise to assist in the document substantiation closure summaries for regulatory, audit, and self-identified cybersecurity risk issues and action plans.

  • Bachelors’ degree in computer science, information systems or related field; advanced degree preferred
  • 8+ years of overall IT experience preferred.
  • 7+ years of technology experience, ideally including experience in the Financial Services and Cybersecurity or related fields.
  • Experience in cybersecurity risk assessment methodologies, including attack trees, goal question metric (GQM) methodologies, process self-assessments and cybersecurity OCTAVE-style self assessments
  • Knowledge of Financial Industry Information Security Requirements and Cybersecurity Control Standards;
  • Certified Information Security Auditor (CISA) or willingness to pursue.
  • Strong knowledge of cryptographic algorithms and implementations required.
  • Outstanding verbal, interpersonal and written communication and presentation skills, including demonstrated ability to interact with both technical and non-technical stakeholders
  • Strong organizational and time management skills; ability to manage multiple and conflicting priorities in a global organization, and to adapt in a fast-paced environment
  • Demonstrated ability to author Standards and Procedures.
  • Ability to develop and maintain strong partnerships with key stakeholders, and to work across diverse businesses and regions, balancing the needs of multiple organizations
  • Effective negotiation and influencing skills.
  • Ability to both learn from colleagues and think outside the box


"LI/POST"


Apply Now    

Join our Talent Community

Not ready to apply? Leave your information with us and we will keep you up to date with new career opportunities.

Other Information

Apply Using LinkedIn

You can also apply using your LinkedIn® profile. It may save you some time because your information will be automatically transferred into our system. Just click on the LinkedIn logo when you get to the application screen and follow the directions.

Submit an Updated Résumé

During the application process, be sure you have an up-to-date copy of your Résumé, your cover letter and any other documentation you would like to submit.