CAIA's Career Center is an easy-to-use, comprehensive resource connecting job seekers with employers in the growing AI field. Use your knowledge and credibility to advance your career or build a talented team for your organization. Opportunities targeted to CAIA Charterholders are prioritized.
In order to search for jobs specifically for CAIA Charterholders or those pursuing the CAIA Charter please enter “CAIA” in the search panel.
This will enable you to search for CAIA specific roles globally.
Global Technology Regulatory Change Management - VP
February 4, 2020
The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm's cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group's number one priority is to enable the business by keeping the firm safe, stable and resilient.
Our Information Security professionals are passionate about information security and control solutions for computing environments. While managing a world-class team of technology experts, you'll partner with one or more disciplines, lines of business, regions or locations to respond to evolving business requirements and emerging threats. You'll also leverage your expert knowledge of today's ever-changing cybersecurity and risk landscape to influence IT operations across the firm. Responsibilities include offering guidance, best practices and support across businesses, leading risk reviews and vulnerability assessments, identifying threats, communicating with senior leaders and other stakeholders, and managing budgets.
This role requires a wide variety of strengths and capabilities, including:
Bachelor's degree or equivalent experience
Strong leadership skills with exceptional communication and presence
Advanced knowledge of multiple IT control and project management practices, and experience working across large environments
Ability to collaborate with high-performing teams and individuals throughout the firm to accomplish common goals
Expertise in application and infrastructure high-availability and resiliency architectures with demonstrated experience in business
Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management and data protection
Excellent command of Cybersecurity organization practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies
Keen understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity
Noted cybersecurity expert, keeping technical skills current and participating in multiple forums
Expertise in Agile and can work with at least one of the common frameworks
Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with focus on recommendations for enhancements or remediation
Knowledge of cybersecurity & technology controls such as:
Demonstrated ability to author Standards and Procedures, perform threat modeling, assess control design and operating effectiveness as well as articulate risks
Ability to develop and maintain strong partnerships with key stakeholders at both working & executive levels, and to work across diverse businesses and regions, balancing the needs of multiple organizations
Outstanding verbal, interpersonal and written communication and presentation skills, including demonstrated ability to interact with both technical and non-technical stakeholders
Relevant professional certification (e.g., CISSP, CISA, CRISC) or willingness to pursue
Conducting regular review and update of the regulatory change, assignment, and prioritization matrices to ensure the information defined is complete and accurate.
Overseeing the changes captured in the centralized regulatory change management tool and provide decision making over issues on resourcing, prioritization, and processing timeliness.
Running the regular GTRCM forum to confirm ownerships, supporting SME(s), and communicate changes to relevant stakeholders.
Managing the coordination with SME(s) to conduct high level gap analysis of the regulatory change and ensure timely engagement with location Information Security Manager (ISM) / Control Domain Authority (CDA) / Advocacy Groups for early influencing with Regulators if there are any potential red flag(s) identified.
Providing guidance and coaching to GTRCM team members as appropriate to ensure consistency and adherence to the regulatory change management operating procedures.
Performing quality review of the regulatory change analysis results and control gaps identified by the GTRCM team members to ensure consistency and quality deliverables are produced in a timely manner.
Partnering with the Global Technology Policies and Controls team to ensure policy area owners are informed of regulatory changes and relevant updates are applied in a timely manner.
Overseeing and ensuring proper closure of regulatory change disposition in a timely manner, and escalate to senior management as appropriate.
Providing input to strategic discussions on GTRCM and associated processes for identifying improvement opportunities.
Providing regular management reporting to senior management on GTRCM.
Leading Global Technology's participation within the firm's LRCM program.
Over 10 years of experience in IT Risk and Compliance, Audit or IT Security, ideally with managerial experience preferably at a global financial services organization.
Possessed excellent knowledge of global regulatory environment, risk and control terminology and firm-wide practices.
A demonstrated ability to analyze technology-focused regulations (from US and international agencies), articulation of risk and impact on JPM technology controls frameworks, implementations and programs.
High level of independence, energy and integrity, demonstrates respect for a diversity of opinions and styles, and accepts accountability and responsibility.
A highly motivated leader and team player with excellent analytical, written and verbal communications skills.
Strong people management and organization skills, reviewing deliverables from team members and delivering quality output with great attention to detail.
An ability to work in a demanding, fast paced environment and handle multiple, competing priorities at one time.
An ability to persuade and influence; to be tactful yet assertive with strong collaboration and negotiation skills.
An ability to develop and maintain strong client and stakeholder relationships.
An ability to be flexible, follow tight deadlines, and to operate under pressure when required.
An ability to push for progress, confidence to speak up/ push back and provide timely escalation to senior management as appropriate
Excellent reporting skills and presentation preparation skills for senior management.
When you work at JPMorgan Chase & Co., you're not just working at a global financial institution. You're an integral part of one of the world's biggest tech organizations. In our global technology centers, our team of 50,000 technologists design, build and deploy everything from enterprise technology initiatives to big data and mobile solutions, as well as innovations in electronic payments, cybersecurity, machine learning, and cloud development. Our $11B annual investment in technology enables us to hire people to create innovative solutions that are transforming the financial services industry.
At JPMorgan Chase & Co. we value the unique skills of every employee, and we're building a technology organization that thrives on diversity. We encourage professional growth and career development, and offer competitive benefits and compensation. If you're looking to build your career as part of a global technology team tackling big challenges that impact the lives of people and companies all around the world, we want to meet you.