Senior Tech Risk and Controls Manager (all genders)

Posted 3 Days Ago
Be an Early Applicant
Berlin
Hybrid
Senior level
Financial Services
We’re one of the world’s biggest technology-driven companies
The Role
As a Senior Tech Risk and Controls Manager, you'll manage cybersecurity and technology risks, ensuring effective identification, communication, and resolution. You'll design governance controls, conduct risk assessments, and collaborate with engineering and security teams to enhance security measures. Your role will involve monitoring key risks, implementing regulatory changes, and driving improvements in the cybersecurity landscape.
Summary Generated by Built In

Job Description
Excited by the opportunity to build innovative digital retail banking products and services in a start-up environment, backed by one of the leading financial service providers worldwide?
Join us at JPMorgan & Chase Co. at our newest European hub for Chase bank, located in the heart of Berlin. In this exciting chapter of continued growth and expansion for Chase, as a passionate Senior Tech Risk and Controls Manager you will be responsible for providing guidance and solutions that assist in the management of cybersecurity and technology risk for the firm.
Working with our cybersecurity team, you'll be at the forefront of innovation designed to strengthen our operations.
Working in Cybersecurity and Technology Controls (CTC), you'll design and implement processes, governance controls and tools that safeguard the firm's computing environment. You will have the opportunity to explore a wide range of cybersecurity and technology risk management topics and engage directly with engineering, business, and other control functions to collaborate and solve problems that allow us to create trust at scale. Managing risks and overseeing cybersecurity and technology, you'll gain key insight into today's complex risk and regulatory landscape.
Job responsibilities:

  • Ensure technology risk impacting the business is effectively identified, quantified, communicated, and managed, including recommendations for resolution and identifying the root cause/key themes.
  • Provide guidance and advice to technology teams and ensure controls are hardened through testing and as part of production deployments.
  • Provide first line oversight and monitoring of key risks across technology, including core architecture and infrastructure, data management, development, and cyber security.
  • Support regional oversight and governance by leveraging specific KPIs and KRIs.
  • Work closely with the security architecture teams to ensure security controls are reviewed as part of new product designs or current product enhancements.
  • Interface with technology and other supporting corporate functions on an on-going basis for business-as-usual risk activities, reporting, and project initiatives.
  • Evaluate regulatory and policy changes relating to cybersecurity and technology impacting the International Consumer business.
  • Partner with Product Security, Controls, Business and Engineering to raise awareness and drive improvements in Cybersecurity landscape.


Required qualifications, capabilities, and skills

  • Deep understanding in relevant regulations related to Retail Banking in Germany as well as the EBA Guidelines on ICT and Security Risk Management or the EBA Guidelines on Outsourcing Arrangements, and/or ISO27001, DORA, GDPR and NIST frameworks.
  • Knowledge in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, third party risk management and data protection with experience in medium to large environments.
  • Analytical skills including solving and communicating complex problems, data analytics, measurement and reporting needed to drive continuous improvement
  • Experience working with Cloud and relevant modern engineering practices, such as containerization, access management, monitoring and/or CI/CD security.
  • Understanding in application and infrastructure high-availability and resiliency architectures
  • Ability to collaborate and navigate organizational levels/boundaries to safeguard the firm's computing environment in a complex risk and regulatory landscape
  • Ability to clearly translate and communicate cyber risk via written, verbal and presentation formats to various stakeholders in Cyber, Technology and Business.
  • Excellent communication skills in German and English


Preferred qualifications, capabilities and skills

  • 5+ years of experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation
  • Certified in CISA, CISM, CRISC, CISSP, CCSP, ISO/IEC 27001 Lead Implementer or similar
  • Deep understanding of IT risk management operating models, three lines-of-defense frameworks, integrated risk management practices, and/or risk intelligence capabilities.
  • Experience operating within a regulated industry.


About Us
J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
About the Team
Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success.

Top Skills

Cloud Computing
Cybersecurity
Data Management

What the Team is Saying

Nick S.
Lupe C.
Edwin T.
Dawn T.
Meng M.
The Company
HQ: New York, NY
289,097 Employees
Hybrid Workplace
Year Founded: 1799

What We Do

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $3.7 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small businesses, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world’s most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands.

Technology fuels every aspect of our company and is at the heart of everything we do. With over 50,000 technologists globally and an annual tech spend of $12 billion, we are dedicated to improving the design, analytics, development, coding, testing and application programming that goes into creating high quality software and new products.

Learn more about technology at our firm, explore resources from our Distinguished Engineers, AI & ML researchers, and other experts; access the latest episode of our TechTrends podcast, and more at www.jpmorgan.com/technology. Information about JPMorgan Chase & Co. is available at www.jpmorganchase.com.

©2023 JPMorgan Chase & Co. All rights reserved. JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans.

Why Work With Us

Our technologists work on a diverse range of solutions that include strategic technology initiatives, big data, mobile, electronic payments, machine learning, cybersecurity, enterprise cloud development, and other state-of-the-art technologies.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

JPMorganChase Teams

Team
Product + Tech
About our Teams

JPMorganChase Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Typical time on-site: Flexible
Company Office Image
HQNew York, NY
SG
Bengaluru, Karnataka
Bournemouth, GB
Brooklyn, NY
Buenos Aires, Avaya
Chicago, IL
Dallas, TX
Dublin, IE
Glasgow, GB
Houston, TX
Hyderabad, Telangana
London, GB
Mumbai, Maharashtra
Philadelphia, PA
San Francisco, CA
Tampa, FL
Westerville, OH
Wilmington, DE
Learn more

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account