-
JPMorgan Chase & Co.
- London
- JPMorgan Chase & Co. - London
Cybersecurity & Technology Controls Regional Lead
Our Internal Audit Function is an independent function that provides objective assurance guided by a philosophy of adding value to improve the operations of the organization. It assists the organization in accomplishing its objectives by bringing a systematic and disciplined approach to evaluate and improve the effectiveness of the organization’s governance, risk management, and internal control processes. The team’s priorities are focused on strong governance, transparency, strategic engagement and fostering a diverse and inclusive culture that focuses on people development.
The Enterprise Technology group provides global audit coverage for multiple technology organizations within JPMorgan Chase including Global Technology Infrastructure, Corporate Technology, and Cybersecurity & Technology Controls (CTC). These businesses deliver a wide range of technology services for the firm globally and partner with all lines of businesses. In addition, they ensure the security and resiliency of the Firm’s computing environment, protect customer and employee confidential information, and comply with regulatory requirements globally.
Role Description
An exciting opportunity has opened up within the EMEA Enterprise Technology Audit team for a Cybersecurity & Technology Controls Regional Lead reporting to the Senior Audit Director responsible for EMEA audit coverage of this line of business. The successful candidate will manage a UK based team in executing the regional and global audit plan covering cybersecurity, identity & access administration, technology controls, firmwide technology assessments, and technology resiliency, and will be responsible for ensuring that appropriate regional coverage is included within our global audit strategy.
Responsibilities include
Establish strong relationships with senior Cybersecurity & Technology Controls business leaders to continuously monitor risk in this area
Simplify and communicate complex issues and themes to senior level stakeholders and business audit teams
Monitor key risk indicators, significant change activities and escalate emerging issues to senior management
Drive plan creation and updates based on changing business risk profile
Remain relevant with evolving industry and regulatory changes impacting CTC business
Work closely with other technology auditors in the region and globally (e.g. Corporate & Investment Bank, Consumer & Community Banking, etc.) to ensure the delivery of a seamless program of control and audit risk coverage.
Line Management responsibility – Maintain effective standards for efficient management of resources, schedules and budgets
Hold their team accountable for high quality delivery within budget
Provide direction to their team regarding appropriate audit scope and execution
Support and develop their team, including active continuous coaching Plan Execution
Leading technology audits covering centralized access management or technology control functions, in addition to focused areas of cybersecurity such as digital forensics, threat intelligence or penetration testing as well as more general IT process reviews within the CTC organization.
Monitoring various major cybersecurity and access management development initiatives, and performing continuous risk assessments of coverage areas.
Participate in all aspects of audit activities including risk assessments, planning, testing, control evaluation, workpaper documentation, report drafting, issue clearance with CTC stakeholders, and follow-up/verification of issue closure.Qualifications:
Solid Technology/Audit experience
Bachelor’s degree in Technology/Accounting/Finance/Business, knowledge of information security controls, infrastructure technology, technology governance and assessments
Enthusiastic, self-motivated, willing to be challenged and take personal responsibility
Excellent verbal and written communication skills
Ability to build strong partnerships across the technology and business teams
Ability to multitask and execute audit activities with minimal supervision
A relevant information security or cybersecurity professional certification is expected e.g. CEH, GIAC, CISA, CISM, CISSP
About J.P. Morgan Chase & Co:
J.P. Morgan serves one of the largest client franchises in the world. Our clients include corporations, institutional investors, hedge funds, governments and affluent individuals in more than 100 countries. J.P. Morgan is part of JPMorgan Chase & Co. (NYSE: JPM), a leading global financial services firm with assets of $2.1 trillion. The firm is a leader in investment banking, financial services for consumers, small business and commercial banking, financial transaction processing, asset management, and private equity. A component of the Dow Jones Industrial Average, JPMorgan Chase serves millions of clients and consumers under its JPMorgan and Chase, and WaMu brands.
J.P. Morgan offers an exceptional benefits program and a highly competitive compensation package. J.P. Morgan is an Equal Opportunity Employer