Turkey Information Systems Security Officer

Join our EMEA Regional Cybersecurity and Technology controls team to navigate complex risk landscapes and fortify technology governance, regulatory compliance making a pivotal impact in our firm's robust risk strategy.

As a Turkey Information Systems Security Officer in Central Europe, Middle East, Sub-Sahara Africa and Turkey Cybersecurity and Technology controls team, you will contribute to the successful management of technology-aligned aspects of Governance, Risk, and Regulatory Compliance in line with the firm's standards and country specific requirements. Leverage your broad knowledge in risk management principles and practices to assess and monitor risks and implement effective controls. Your role in regulatory compliance assessments, risk identification, control evaluation, and security governance is crucial in advising on complex situations and enhancing the firm’s risk posture. Through collaboration and analytical skills, you will contribute to the overall success of the Technology Risk & Services team and ensure compliance with regulatory obligations and industry standards.

Job responsibilities

• Assess and monitor technology risks, ensuring compliance with firm standards, Turkey regulatory requirements, and industry best practices
• Support regulatory audits
• Support implementation of effective controls in collaboration with cross-functional teams and stakeholders
• Evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm's risk posture
• Analyze complex situations, provide advice on risk management strategies, and support the implementation of risk mitigation measures 

Required qualifications, capabilities, and skills

• Bachelor’s degree or 5+ years of experience in an International Bank’s technology risk management, information security, or a related field.
• Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards.
• Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders.
• Proficient knowledge of risk management frameworks, regulations, and industry best practices 
• Excellent proven problem-solving and troubleshooting skills.
• Good interpersonal and stakeholder management skills.
• Fluent in writing, speaking, and listening in Turkish and English
• Ability to handle multiple issues through channels like intake portal, symphony, and emails.
• Ability to document business processes and flows.
• Ability to work with technology teams to integrate systems into business operations and services.
• General knowledge about Cloud (AWS, Azure, GAIA etc) 

Preferred qualifications, capabilities, and skills

• CISM, CRISC, CISSP, or other industry-recognized risk and risk certifications preferred

 

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.
   We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.