Tech Risk and Controls Lead
JPMorgan Chase
- Columbus, OH
- Permanent
- Full-time
- Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations
- Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals
- Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work
- Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance
- Lead key meetings and standing sessions with entire digital leadership team
- Provide reporting and data analysis
- Identify and aggregate thematic risks and trends
- Implement and, where needed, establish governance processes to reduce risk from failed internal processes, inadequate identification of risks, inadequate controls, and emerging risks
- 5+ years of experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation
- Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements
- Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies
- Demonstrated ability to influence executive-level strategic decision-making and translating technology insights into business strategies for senior executives
- Experience interacting with auditors (2nd line, 3rd line, PCI, regulators, etc.) and delivering quality audit responses
- Proactively monitor Key Risk Indicators to identify non-compliance and assist in remediation with controls to address security, risk, and control gaps
- Ability to work with data from disparate sources to build a cohesive view on risk
- Ability to manipulate and translate data
- Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies
- CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred
- Experience in banking and financial services