Tech Risk Engagement Lead - Regulatory Exam Management - Cybersecurity and Technology
New York, NY, United States
JPMorgan Chase & Co.
Step into the role of Tech Risk Engagement Lead and lead the forefront of technological innovation and security. This pivotal position offers the unique opportunity to influence and shape our approach to cyber threats and compliance, balancing progressive digital transformation with robust risk management. Your leadership will be instrumental in navigating the complexities of technology risks, setting the standard for a resilient and forward-thinking tech environment.
As a Tech Risk Engagement Manager in our Cybersecurity and Technology Controls team, you will expertly navigate the dynamic landscape of cyber threats, technology advancements, and regulatory requirements. Leading proactive identification and evaluation of technology risks, you'll collaborate with internal and external stakeholders to help develop and implement robust risk management strategies. Your role is pivotal in maintaining compliance with industry standards and best practices, leveraging your subject matter expertise to provide leaders with insights and recommendations for digital transformation within the firm's risk appetite. You will manage a diverse team, coordinate cross-functional efforts, and influence decision-making, ensuring top-quality service delivery. Your expertise shapes the firm's approach to technology risk and services, fostering a secure and compliant environment.
Job responsibilities
- Coordinate onsite examinations, reviews, and requests by regulators covering Global Technology, including Cybersecurity & Technology Controls, Line of Business Technology, and Firmwide Platforms and Products Technology.
- Provide strategic advice and regular updates to Global Technology senior management regarding the matters being handled, including, but not limited to, the timely escalation and resolution of potential issues.
- Communicate extensively (orally and in writing) with senior management and develop effective relationships with regulators.
- Establish and develop effective relationships within Global Technology, including Cybersecurity & Technology Controls, Line of Business Technology, and Firmwide Platforms and Products Technology. With respect to technology matters, establish and develop effective relationships with Compliance, Conduct and Operational Risk (CCOR); Internal Audit; Control Management; Business Resiliency; Third Party Oversight; Risk; Business; Operations; and Legal.
- Work with the relevant personnel in Global Technology and other Corporate Functions to obtain information/documentation to respond to regulatory requests.
- Review, analyze, and summarize information/documentation responsive to regulatory requests. Provide feedback and strategic advice regarding responses to regulatory requests.
- Prepare personnel (and senior management) for meetings with regulators, including drafting written documents and leading internal prep meetings.
- Coordinate and lead meetings with regulators. Prepare timely meeting summaries and manage follow up requests.
- Identify mitigating facts and circumstances (as applicable) to respond to issues identified during examinations or other engagements.
- Prepare substantive written responses to regulatory requests and examination reports.
- Communicate with the relevant Global Technology personnel regarding regulatory issues, findings by the regulators, and remediation related to those findings.
Required qualifications, capabilities, and skills
- 5+ years of experience or equivalent expertise in technology risk management, cybersecurity, or a related field, with a focus on regulatory compliance and risk mitigation
- Experience in technology and cybersecurity at a large, global financial institution desirable but not required.
- Experience working with senior management at a large, global financial institution or similar organization is required.
- Strong organizational skills and an ability to manage multiple demands and changing priorities. Detail oriented, self-starter with solid prioritization, planning, and time management skills.
- Sound judgment and an ability to make decisions quickly. Strong analytical skills to conduct independent research, reach conclusions, and solve problems.
- Excellent relationship management, influencing, negotiating, and interpersonal skills. Ability to work effectively with all levels of the organization and balance the needs of multiple functions. Experience working across Lines of Business, countries, and regions. Experience working with senior management.
- Strong oral and written communication skills with an ability to convey information in a clear and concise manner that is comprehensive, accurate, and tailored to the audience, including senior management.
Preferred qualifications, capabilities, and skills
- Knowledge of regulatory requirements and technology risk management processes and related controls.
- Sound understanding of risk assessment methodologies, internal controls, and industry technology risk management frameworks such as the Cyber Risk Institute (CRI) Profile, NIST Cybersecurity Framework, ITIL, COBIT, and ISO 2700 desirable, but not required
- Experience with applying principles outlined in regulatory guidance, including but not limited to, U.S. Regulatory Guidance in the Federal Financial Institutions Examination Council (FFIEC) Technology Handbooks
- Bachelor's Degree, or a similar degree.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Banking COBIT Compliance FFIEC ITIL NIST Risk assessment Risk management
Perks/benefits: Competitive pay Health care Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.