Turkey Information Systems Internal Technology Control Officer (ISCO)

Join our EMEA Regional Cybersecurity and Technology controls team to navigate complex risk landscapes and fortify technology governance, regulatory compliance making a pivotal impact in our firm's robust risk strategy.

An IS internal control function is built and appointed in order to check compliance of IS management-related activities in bank and bank’s external service providers, and processes supporting said activities, and IS controls Regulation on Information Systems and Electronic Banking Services of Banks established therefore with the applicable laws and regulations and bank’s internal policies, procedures and standards. An IS internal control supervisor is appointed and IS internal control activities are carried out under responsibility of that supervisor

Job responsibilities

• Sending reports and notifications to the related units and top management for taking actions and making up shortages detected as a result of controls; and
• Sending notices to the related units and top management about process or systematic improvement suggestions understood to be needed as a result of controls; and
• Upon demand, forming opinions about modifications and innovations planned in bank’s products and processes or about bank’s internal policies, procedures and process documents in relation therewith; and
• Attending the meetings of project and working groups, boards and committees related to critical processes within its fields of responsibility, and expressing suggestions aimed to minimize the risk in those meetings; and
• Periodically reporting to top management, audit committee and internal control unit manager in respect of follow-up of risks arising out of IT management and outsourcing for services; and
• Preparing IS internal control inspection plans every year in such manner to indicate the planned and scheduled inspections to be executed next year, and getting approval of bank audit committee therefor.
• support EMEA Regional Cybersecurity and Technology controls team to navigate complex risk landscapes and fortify technology governance, regulatory compliance making a pivotal impact in our firm's robust risk strategy across MENA region
   

Required qualifications, capabilities, and skills

• Bachelor’s degree or/and 7+ years of experience in an International Bank’s technology risk management, information security, or a related field.
• Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards.
• Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders.
• Proficient knowledge of risk management frameworks, regulations, and industry best practices 
• Excellent proven problem-solving and troubleshooting skills.
• Good interpersonal and stakeholder management skills.
• Fluent in writing, speaking, and listening in Turkish and English
• Ability to handle multiple issues through channels like intake portal, symphony, and emails.
• Ability to document business processes and flows.
• Ability to work with technology teams to integrate systems into business operations and services.
• General knowledge about Cloud (AWS, Azure, GAIA etc) 
   

Preferred qualifications, capabilities, and skills

• CISM, CRISC, CISSP, or other industry-recognized risk certifications

 

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.
   We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.