Emea - Technology Compliance - Senior Associate/vp - London, United Kingdom - JPMorgan Chase Bank, N.A.

JPMorgan Chase Bank, N.A.

Verified Company

London, United Kingdom

1 week ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

As part of Technology & Cyber Compliance, Conduct and Operational Risk (\"CCOR\"), you are at the center of keeping JPMorgan Chase strong and resilient.

You help the firm grow its business in a responsible way by anticipating new and emerging risks, and using your expert judgement to solve real-world challenges that impact our company, customers and communities.

Our culture is all about thinking outside the box, challenging the status quo and striving to be best-in-class.

As the Technology Compliance Officer in our Technology & Cyber CCOR team, you will have the opportunity to materially contribute and develop the Technology Compliance programme through your deep knowledge and experience of European and global technology and cybersecurity laws, rules and regulations.

You will provide advice and challenge to the technology and cybersecurity function and will play a critical role in regulatory engagement.

You will work closely with the wider Technology & Cybersecurity CCOR team who is responsible for the design and oversight of the 2nd Line of Defence independent risk management program for technology and cybersecurity risks.

As part of the team, you will also be able to broaden this platform to work on legal entity, regional and global initiatives, in addition to being part of local and firmwide community, diversity, equity and inclusion initiatives.

Job responsibilities

Provide regulatory advice for technology compliance related matters, including outsourcing and cloud technology related matters
Review regulations and impact assessments, and work with divisional partners to advise the relevant owners on the development of policies and procedures within the legal entity and across other group legal entities as necessary
Keep abreast of technology and data privacy regulatory and legislative changes and provide advice to enable the business to implement applicable changes and operate in a compliant and controlled manner
Drive the development of the regional and legal entity alignment to CCOR framework, including IT Risk Profile, KRIs, Loss Data, Scenario Analysis
Support review significant events (including security events) over a defined economic threshold, including but not limited to, examination of event and resolution, backtesting against the firm's risk management framework results, metrics, escalations, reporting, and scenarios
Participate in the assessment of emerging risks as part of strategic business risk reviews, analysis of regulatory and market developments, New Business Initiative Approvals and review of external risk events

Required qualifications, capabilities, and skills

Strong experience in cybersecurity governance, operational risk or compliance experience within the financial services industry highly desired or experience in an equivalent role in Technology industry
UK technology regulation knowledge is a prerequisite and ideally have an understanding of EU regulation (i.e. MaRisk, BAIT, CSSF, EBA Guidelines etc.)
Knowledge and experience with Information Security and Risk Management standards and frameworks such as NIST, MITRE ATT&CK and ISO 27001/27002 and modern development practices and supporting toolsets (e.g. Agile, DevOps, Git)
Ability to understand complex technical systems and the business processes they support and synthesize the corresponding risks and controls and recommend adjustments if required
Understanding of technology risk management and control principles with a proven ability to anticipate and identify risks and effective mitigating actions
Strong organizational, project management, multitasking and stakeholder management skills with demonstrated ability to manage expectations and deliver results with a high level of professionalism, selfmotivation, and integrity
Bachelor's Degree in Computer Science, Computer Engineering, Engineering, Information Security or related field; postgraduate degree would be beneficial

Preferred qualifications, capabilities, and skills

Professional certifications such as CISSP, CCSP, CISA, CISM, CRISC are beneficial

J.P.

Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors.

Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success.

We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any