Home
Jobs
JPMorganChase
Technology Risk & Controls Lead

Technology Risk & Controls Lead

On site

London, United Kingdom

Full Time

27-02-2025

Share this job:

Score my CV Apply

Job Specifications

Job Description

The Technology Risk and Controls Framework Manager is a Vice President role within CTC’s Technology Risk and Control (TRC) organisation. Reporting into the firmwide technology Chief Controls Manager, TRC leads the definition and execution of our technology Governance, Risk & Compliance (GRC) discipline, which provides the framework for managing the firm’s corporate Information Risk Management program.

This role, which requires a combination of in-depth expertise and highly effective organizational skills, is critical to the overall success of the Information Risk Management program. The candidate must be a highly motivated individual with strong leadership and influencing skills. They will be able to leverage their experience to advance the firm’s framework for managing technology risks and controls, which aligns technology policy with cybersecurity & technology control solutions and (based on metrics and quantitative assessment) appropriately informs the firm’s Operational Risk Management reporting. Note that although the framework is established and operational, the space is dynamic, rapidly evolving, and is subject to continuous reassessment and changing priorities.

The position will work closely with various partners across the firm, including but not limited to colleagues in CTC, Enterprise Technology product & engineering, Information Risk Managers and Technologists in our Businesses and Corporate Functions, Operational Risk Management & Compliance, Audit, as well as regional partners across the globe. The ability to work effectively with a diverse set of stakeholders is essential. The role requires creativity, critical thinking, strong communication and influencing skills, and the ability to work across a large and complex organization that features prominently in both U.S. critical infrastructure and the global financial ecosystem.

Responsibilities

Working within the CTC-TRC Frameworks Team, in partnership with stakeholders from across Global Technology, you will lead the ongoing program to accurately represent and maintain the firm’s complex technology operations within the Corporate Operational Risk Environment (CORE) system. This includes:
Defining the Risk Identification framework, and executing it with other Risk Identification partners to ensure identified technology risks are reflected into CORE, which provide the firm’s risk management functions ability to report, monitor and mitigate emerging risks.
Consulting with technology owners in Product, Engineering and Operations to appropriately model their processes, sub-processes, risks and controls for assessment.
Ensuring technology risk and controls reference data (e.g., risk scenarios, policies, standards, procedures, etc.) is available and aligned for use in CORE, such that assessments are consistent and can be justifiably informed by the performance data gathered from the technology estate (i.e., metrics & measures).
Consulting with business-aligned information risk managers to ensure technology assessments are aligned and inform business operational risk assessments in a meaningful, actionable manner.
Collaborating closely with Operational Risk Management and Business Controls Management to ensure that technology risk and control taxonomies are optimised, with supporting systems able to interoperate.
Driving and leading change initiatives across the Firm’s Risk Organisation (both Technology and Business) to improve the understanding of technology risk.
As the CORE system is used to manage and report the firm’s Operational Risk (including information, technology & cybersecurity risk), it is referenced by a majority of the independent assessments, audits and regulatory exams that the firm’s technology is continuously subject to. As a result, there are a significant number of partners from across Global Technology and beyond interested in the content of CORE. Effective communications, influencing and stakeholder management are key aspects of this role, including with senior and executive management.
Skills / Qualifications

Proven experience in the technology risk & controls and information risk management fields (e.g., identification of technology risks & effective mitigants, technology risk & controls assessments, associated governance & reporting, etc.)
Knowledge of compliance, conduct, and operational risk management frameworks and processes
Experience in using common technology controls industry best practice (e.g., from NIST, ISO, ISACA, etc.) frameworks
Experience in identifying use cases and business logic for continuous controls monitoring, and partnering with product and engineering teams to develop and implement
Good working knowledge of technology-relevant financial services regulation (e.g., FFIEC handbooks, etc.)
Good working knowledge of common & current information technology implementations (additional weight given for familiarity with Public and Private Cloud Implementation)
Inquisitive nature and comfort challenging current practices; proven track record of driving ideas forward and influencing
Adept at developing relationships with senior business executives; reputation for partnering across organization lines to mitigate risks
Strong organizational, project management, and multi-tasking skills with demonstrated ability to manage expectations and deliver results. Use of work management platform such as JIRA to ensure operational discipline.
Demonstrated written and oral communication skills and excellent analytical and problem-solving skills
Experience in identifying and using data from large data sets to support enterprise scale initiatives via analytics (such as AI/ML techniques, Alteryx, Tableau)
Ability to collaborate with high-performing teams and diverse stakeholders to accomplish common goals, including experience working with geographically distributed and culturally diverse colleagues
High level of professionalism, self-motivation, and sense of urgency
Ability to be flexible, follow tight deadlines, and to operate under pressure when required

ABOUT US

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected u...

About the Company

With a history tracing its roots to 1799 in New York City, JPMorganChase is one of the world's oldest, largest, and best-known financial institutions—carrying forth the innovative spirit of our heritage firms in global operations across 100 markets. We serve millions of customers and many of the world’s most prominent corporate, institutional, and government clients daily, managing assets and investments, offering business advice and strategies, and providing innovative banking solutions and services. Social Media Terms a... Know more

Related Jobs

Company Name: Cyber Nexus
Job Title: Senior Information Security Consultant
Job Description: About the Company - This is a great opportunity to join an exciting start up cyber security company providing digital resilience, security assessments and standards. This is an exciting opportunity to be the first consultant to join the organisation and play a key role in the growth and help shape the offerings to their customers. They specialise in implementing ServiceNow’s IRM product to improve their clients security posture. With a particular focus on Policy & Compliance, Risk Management, Third-Party Risk Management, Privacy Management. About the Role - Lead cybersecurity consultancy engagements, including risk assessments, compliance audits, and security architecture reviews. Provide expert guidance on frameworks such as ISO 27001, NIST, NIS2, DORA, Cyber Essentials, GDPR compliance and EU AI Act. Develop and implement tailored cybersecurity strategies. Conduct cybersecurity gap analyses, remediation planning, and security programme development. Serve as a trusted advisor to clients, understanding their security challenges and business objectives. Communicate cybersecurity risks, recommendations, and remediation strategies effectively to both technical and non-technical audiences. Assist with identifying opportunities for expanding cybersecurity services and contribute to business growth initiatives. Support the development of proposals, statements of work, and service offerings. Responsibilities -Proven experience in cybersecurity consulting, risk management, or compliance roles. -Strong knowledge of security frameworks, regulations, and best practices (e.g., ISO 27001, NIST, NIS2, DORA, CIS, Cyber Essentials, GDPR, EU AI Act). -Experience in conducting risk assessments, security audits, and implementing security controls. -Excellent communication, and project management skills. -Ability to translate complex cybersecurity concepts into business-relevant recommendations. -Relevant cybersecurity certifications (CISSP, CISM, CISA) are desirable. -Experience implementing a security / GRC platform / Tool. Such as ServiceNow IRM

Company Name: Informanagement UK Ltd
Job Title: Telesales executive
Job Description: Salary - 28k - basic plus commission Uxbridge Full Time - Part time hours also available. We are a dynamic publishing and software business based in a new office in Uxbridge, established for over 17 years with other offices in The Netherlands and Germany. We publish content and information specifically for Accountancy firms and Solicitors to use for client communication and marketing. The current team have been growing the business for 17 years in a row with an increasing range of services specifically for accountancy firms. Telesales executive - THE ROLE: We are looking for a dynamic telemarketer to generate appointments/meetings at Partner/Director level within accountancy firms for one of the business development team to attend. Telesales executive - KEY RESPONSIBILITIES: Build your own pipeline of leads and opportunities and then manage that lead pipeline to generate meetings/appointments for the business development team to attend Cold calling to schedule meetings/appointments to senior level decision makers Sell over the phone some specific lower level products at key times during the year and chase up order forms where necessary Record data in the CRM system accurately Updating and managing the company CRM system and sending follow up emails to prospects Follow up mailings to clients and prospects Source new leads online, uncover new opportunities Other administrative tasks as required KEY PERSONAL ATTRIBUTES REQUIRED: Desire to succeed and enjoys uncovering opportunities Articulate in speech and conversation. Can speak English fluently. Attention to detail - accuracy in data entry and spelling. Can craft a sales email to prospects without typing errors and send confirmation emails with accurate meeting information Enthusiastic with a positive attitude Highly self-motivated and can work under pressure Desire to be part of a winning team and a team player Patient and able to handle rejection on the phone Proactive - able to think on your feet and react appropriately to different situations Some cold calling experience is preferable but not a pre-requisite The most important quality an applicant can have for us is the right attitude and be able to fit in to an existing team. HOURS AND BENEFITS: Monday to Friday 8.30am to 5.00pm. 25 days holiday plus statutory bank holidays Part time hours or school day hours are available for the right candidate and can be discussed during the interview stage SALARY: 28k + commission This is an exciting opportunity to join a dynamic and growing business where you will receive excellent training and support and will perform an integral role within the team

Uxbridge, United Kingdom

On site

Full Time

04-03-2025

Company Name: North Tower Consulting
Job Title: Software Developer - Various Levels
Job Description: North Tower Consulting Limited is a leading customised software solutions consultancy based in Cheltenham. Founded in 2019, we have grown substantially, delivering expert services in Cyber Security, Cloud Computing, Lifecycle Management, and more. We are known for our commitment to delivering projects on time and with excellence, earning a reputation for reliability and professionalism. We are deeply committed to Corporate Social Responsibility (CSR), achieving significant milestones in this area. We continue to serve a diverse range of clients, both public and private, adapting our innovative solutions to meet their evolving technical and lifecycle needs. Our mission is to deliver impactful offerings, valued skill sets, and working collaboratively with you to build a trusted partnership for your success. Position: The Role: We are looking for skilled software developers to join our team. In this role, you will be responsible for revising, updating, refactoring, and debugging code, while creating efficient algorithms to solve complex problems. You will integrate third-party programs into our systems and coordinate the workflow within the team. Key responsibilities also include developing data audit, archiving, and restoration processes, as well as performing peer code reviews and maintaining technical documentation. You will contribute to and adhere to coding standards, using the latest development tools to rapidly create solutions that align with the company's needs. Working within an Agile team, you will develop high-quality software while ensuring exceptional customer care is always provided. Additionally, you will identify areas for improvement based on client feedback and continuously enhance software programs to improve functionality and security. You will be involved in the full Software Development Lifecycle, troubleshooting and providing root cause analysis and resolution to problems. Keeping up to date with technological advancements, DevOps practices, and programming languages is essential. You will also attend CPD events as agreed with your Line Manager and handle any other reasonable requests as part of your duties. These roles will be client based 5 days per week. Requirements: Applicants must hold an active DV or enhanced DV Clearance to be eligible.

Bishop'S Cleeve, United Kingdom

On site

Full Time

27-02-2025

Company Name: First Point Group
Job Title: Vice President - Design and Construction | Data Centres | Global Data Centre Innovator | London
Job Description: VP - Design and Construction | Data Centres | Global Data Centre Innovator Our client is a leading global Data Centre provider specialising in the design, development, and operation of high-performance, scalable facilities. With a strong presence across key markets, they support hyperscalers, cloud providers, and large enterprises by delivering cutting-edge infrastructure solutions tailored to meet the growing demands of the digital economy. Their commitment to innovation, sustainability, and operational excellence ensures they provide reliable and efficient data center environments. As part of their expansion, they are seeking top-tier talent to help drive the next generation of mission-critical facilities. Contract Type: Permanent Location: London Area, Hybrid Competitive Base Package + Benefits + Bonus Position Overview As the Vice President of Design & Construction, you will play a crucial role in managing and administering construction functions across all active markets. You will lead a team of construction directors responsible for each campus, ensuring compliance with financial controls and policies while driving the execution of all phases of construction. Your expertise and leadership will be instrumental in delivering reliable and efficient data centre environments to major hyperscale, cloud, and enterprise companies. Responsibilities Oversee the management and administration of construction functions across all active markets. Manage a team of construction directors responsible for each campus. Hold teams accountable to manage overall campus CAPEX budgets. Ensure all regions comply with financial controls and policies. Drive teams to execute all phases of construction, including pre-construction, competitive bidding, team selection, construction, commissioning, and project closeout. Ensure customer satisfaction and remediate any issues with their services in future builds. Act as a thought leader and drive coordination and integration of internal stakeholders across all regions. Requirements Extensive experience in CSA (civil, structural, architectural), MEP (mechanical, electrical, plumbing), and construction management. 10-15 years of experience in a management role required, circa 15-20 years preferred. Proven track record of successfully managing large-scale construction projects. Strong leadership and team management skills. Excellent communication and stakeholder management abilities. Willingness to travel. If you are interested in this role, please respond to this advert directly with an updated CV or email it to Csmith@firstpointgroup.com

London, United Kingdom

Hybrid

Full Time

03-03-2025