JPMorgan Chase is a leading global financial services firm with assets of $2.5 trillion and operations in more than 60 countries.
The firm is a leader in investment banking, commercial banking, financial services for small business and consumers, financial transaction processing, asset management and private equity.
Technology & Cybersecurity Operational Risk Management (Tech ORM) is a firm-wide group within Compliance with oversight responsibility for the implementation of the JPMC CCOR (Compliance, Conduct and Operational Risk) framework for Global Technology.
Tech ORM provides an independent view of Technology & Cybersecurity risk to the firm’s management and Board of Directors.
Tech ORM interacts directly with executive leadership, key functional areas of Technology and Operational Risk Officers across lines of business.
Key responsibilities include :
Significant Event Review - Review significant events over a defined economic threshold, including but not limited to, examination of event and resolution, back-testing against ISRA / CORE results, metrics, escalations, reporting, and scenarios
Drive the development of the regional and legal entity alignment to CCOR framework , including KRIs, Loss Data, CORE and Scenario Analysis, as well as, liaise with EU regulators in respect of Operational Risk matters, as needed
Key Performance Indicators & Analytics - Governance of Key Performance Indicators including analysis of trends, outliers and underlying drivers;
also includes support for the quarterly firm-wide Qualitative Operational Risk Appetite process
Continuous Testing & Monitoring - Perform oversight of operational risks through participation in Control Committees, senior level work streams, major change management programs, point-in-time issue escalation, industry and regulatory meetings, internal strategic efforts and review of internal operational risk events.
Example : Perform assessments of select areas with high or increasing operational risk covering : Select businesses, functions, processes or activities (e.
g. Cyber & Cloud Architecture)Scope and effectiveness of change management programs linked to improving the operational risk profile
Promote and instill a strong culture of Tech and Cyber Operational Risk Management (Tech ORM) and operational excellence, partner with the EU Legal Entity business and Compliance to continually improve processes and business operating models, supporting business growth and informing risk-based decision making
Stay abreast of EU Industry news and regulatory developments to facilitate a more proactive approach to risk identification and mitigation.
Review root cause analysis on internal Tech operational risk events and those that occur externally in the industry
Emerging Risk Assessment - Participate in assessment of emerging risks as part of strategic business risk reviews, analysis of regulatory and market developments, New Business Initiative Approvals and review of external operational risk events
This role will be located in Luxemburg or Frankfurt but would require the successful candidate to travel frequently in the region to manage LEs within the EU in order to provide oversight for Tech ORM functions.
ECB tech exams are likely to feature as part of this role).
EU Technology regulations knowledge is a must ( i.e. CSSF, Bafin and ECB)
Excellent communication skills and writing fluency required
15+ years’ experience in technology with recent experience (5+years) focused on financial services experience highly desired.
Knowledge of the JPMC technical environment and standards is advantageous.
Broad and deep knowledge of current and emerging technologies and threat vectors is required
Ability to understand complex technical systems and the business processes they support and synthesize the corresponding risks and controls and recommend adjustments if required.
Understanding of technology risk management and control principles
Proven ability to anticipate and identify risks and effective mitigants
Excellent analytical and problem-solving skills, inquisitive nature and comfort challenging current practices
Confidence to take ideas forward and to challenge others, where appropriate
Adept at developing relationships with senior business executives with a reputation for partnering across organization lines to mitigate risks
Highly disciplined, able to work with limited supervision and make independent decisions with a track record of leading by influence
Strong organizational, project management, and multi-tasking skills with demonstrated ability to manage expectations and deliver results
High level of professionalism, self-motivation, and sense of urgency
Bachelor’s Degree in Computer Science, Computer Engineering, Engineering, Information Security or related field; post graduate degree a plus
Experience in technology development and operational risk oversight within the financial services industry.
CISSP, CCSP, CISA, CISM, CRISC, CGEIT, CSX-S or CSX-E a plus.
About J.P. Morgan Chase & Co :
J.P. Morgan serves one of the largest client franchises in the world. Our clients include corporations, institutional investors, hedge funds, governments and affluent individuals in more than 100 countries.
J.P. Morgan is part of JPMorgan Chase & Co. (NYSE : JPM), a leading global financial services firm with assets of $2.1 trillion.
The firm is a leader in investment banking, financial services for consumers, small business and commercial banking, financial transaction processing, asset management, and private equity.
A component of the Dow Jones Industrial Average, JPMorgan Chase serves millions of clients and consumers under its JPMorgan and Chase, and WaMu brands.
J.P. Morgan offers an exceptional, family friendly benefits program and a highly competitive compensation package. J.P. Morgan is an Equal Opportunity Employer.