Workplace Solutions - KYC Program Manager Cork, Ireland Job Identification: 210579116 Job Category: Business Analysis Business Unit: Asset & Wealth Management Posting Date: 11/27/2024, 07:51 PM Job Schedule: Full time Regulated role: Fitness and Probity Regime Ireland (CF/PCF)? No Job Description Do you have experience in program/project management and are you interested in defining and influencing change to achieve operational excellence? As a Program Manager in JP Morgan Workplace Solutions, you will be managing projects to deliver significant results across businesses, products, and stakeholders. In this role, you will be responsible for end-to-end project management contributing to achieving operational excellence. You will manage complex, high visibility cross-functional programs or projects by developing a plan, assessing potential risks and benefits, and building relationships to work across teams. You will assist in the overall coordination and management of the program, including status, scorecards, and other key project management functions. If you are a motivated and creative-thinking individual that can manage strategic plans to deliver defined outcomes, you may be the perfect fit! Job Responsibilities: Coordinate with various areas of Operations, Technology, and senior management to build business requirements, procedures, and processes. Steer project planning and analysis, including creating detailed project plans, documenting business requirements, detailing issues and problems, and drafting business and technical work/data flows. Create high-quality presentations used for executive-level management communication and transparency into project strategy and progress. Identify opportunities for process improvement, efficiency, standardization, scalability, and initiate and oversee implementation. Serve as a point of contact for escalations and issue resolution. Ensure effective communication regarding any process changes, the benefits of these, and their impact on the organization and its employees. Identify training needs and develop programs to ensure that employees have the skills and knowledge required to adapt to the change. Engage with stakeholders to gain buy-in and support for the change initiative as well as monitor the progress of change initiatives and gather feedback to make necessary adjustments. Required Qualifications, Capabilities, and Skills: 5+ years of project management or relevant industry experience. Excellent communication and presentation skills across various stakeholders and senior management. Proficient in Microsoft Office. Strong organizational, time management, prioritization, and critical thinking skills. End-to-end project management experience, including scoping, business case development, implementation, and change management. Preferred Qualifications, Capabilities, and Skills: Knowledge of project management methodologies (such as Waterfall or Agile) and tools (such as Confluence or JIRA). Project Management Professional or equivalent certification is a plus. J.P. Morgan Wealth Management Solutions comprises a workforce of more than 2500 professionals spanning across 50 cities globally. Within WM Solutions, diversity is not only a fundamental necessity but a business imperative, and we are committed to building an equitable workforce that represents the communities we serve. We understand the importance of inclusion, work-life balance, and our robust benefits (including comprehensive parental leave offerings, inclusive family-building programs, and discounted childcare) reflect the wide-ranging needs of our increasingly diverse workforce. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals, and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. About the Team J.P. Morgan Asset & Wealth Management delivers industry-leading investment management and private banking solutions. Asset Management provides individuals, advisors, and institutions with strategies and expertise that span the full spectrum of asset classes through our global network of investment professionals. Wealth Management helps individuals, families, and foundations take a more intentional approach to their wealth or finances to better define, focus, and realize their goals. #J-18808-Ljbffr
As a Security Software Engineer at JPMorgan Chase within Cybersecurity and Technology Controls, you'll serve as a seasoned member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behaviour. You'll directly enable Cyber Operations users and stakeholders through delivery and refinement of critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions in support of the firm’s business objectives. Job responsibilities Engages and improves the whole lifecycle of services - from inception and design through deployment, operation, and refinement Develops, tests, deploys, maintains, and enhances software/tooling solutions Manages individual project priorities, deadlines, and deliverables Performs design and code reviews Executes standard security solutions in accordance with existing playbooks to satisfy security requirements for internal clients (e.g., product, platform, and application owners) Designs, develops, and improves services to scale as the firm's cloud usage grows Contributes to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification in software engineering or computer science Basic experience developing security engineering solutions Experience with Python development Experience in developmental toolsets such as Git and Jenkins Understanding of architecture and design across different systems Knowledge of industry-wide technology trends and best practices Ability to work in large, collaborative teams to achieve organisational goals Passionate about contributing to an innovative culture Preferred qualifications, capabilities, and skills Experience with development in cloud, including serverless application development in AWS and/or GCP Experience with RESTful services Experience with Linux/Unix shell Experience with Infrastructure as Code (IaC) – Terraform #J-18808-Ljbffr
Your seniority as a security engineer puts you in the ranks of the top talent in your field. Play a critical role at one of the world's most iconic financial institutions where security is vital. As a Security Engineer III at JPMorgan Chase within the Cybersecurity Technology team, you serve as a seasoned member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Carry out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions in support of the firm’s business objectives. Job responsibilities Executes security solutions design, development, and technical troubleshooting with the ability to apply knowledge of existing security solutions to satisfy security requirements for internal clients (e.g., product, platform, application owners). Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems. Design and develop enhancements to the firmwide scanning system. Create interfaces with other services in the firm as needed. Engage in Application Performance Tuning. Understands Change Procedures and liaison between Development, Quality Assurance and Production Support teams. Provide L4 support for a portfolio of static scanning tooling. Work on an internally developed application to scan source code for cyber security vulnerabilities. Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities. Leads delivery of continuity-related awareness, training, educational activities, and exercises. Adds to team culture of diversity, equity, inclusion, and respect. Automate tasks to reduce support tickets. Perform peer code reviews. Conduct documentation of the new enhancements and services. Ensure project's audit compliance for every release. Present static scanning tools to the technology teams. Package and support releases of vendor tools. Work with vendors in problem isolation and resolution. Required qualifications, capabilities, and skills Formal training or certification on BS/BA degree concepts and proficient applied experience. Experience developing security engineering solutions. Cloud technologies including AWS. Enterprise Database technologies such as Oracle. Enterprise Level Software Development and Web development. Expertise in application, data, and infrastructure architecture disciplines. Advanced knowledge of architecture and design across all systems. Proficient in multiple modern programming languages like Python. Overall knowledge of the Software Development Life Cycle. Solid understanding of agile methodologies such as CI/CD, application resiliency, and security. #J-18808-Ljbffr
Join our team to innovate in risk mitigation, leveraging your skills in a fast-paced, impactful environment. As a Tech Risk & Controls Associate in the Workplace Solutions team at J.P. Morgan Chase, you will be a part of a team that supports the implementation of risk mitigation strategies, controls, and action plans for the firm. Working closely with the technology risk teams and cross-functional partners, you contribute your skills and insights to the continuous improvement of risk management methods. As a valued member of the team, you will have the opportunity to learn and grow in a dynamic and fast-paced environment, making a tangible impact on technology risk and controls at the firm. Job responsibilities Assist in monitoring technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices. Collaborate with stakeholders to develop and implement risk mitigation strategies, controls, and action plans for technology-aligned processes. Monitor and evaluate the effectiveness of implemented controls, contribute to the recommendations for improvements and addressing gaps in risk management. Communicate risk-related findings and updates to relevant stakeholders, ensuring alignment with organizational objectives and risk appetite. Required qualifications, capabilities, and skills Experience or equivalent expertise in technology risk management, information security, or a related field. Proficient in risk identification, assessment, and control evaluation, with a strong understanding of industry standards. Demonstrated ability to analyze complex issues, develop risk mitigation strategies, and communicate effectively with stakeholders. Exposure to risk management frameworks, regulations, and industry best practices. Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or other industry-recognized risk certifications. #J-18808-Ljbffr
Vice President - Third-Party Cyber Security Architect Contribute to leading-edge security and resilience efforts, advancing protective strategies and propelling continuous improvement. As an Assessments & Exercises Vice President in Cybersecurity and Technology Controls Assurance organization, you will contribute significantly to enhancing the firm's cybersecurity or resiliency posture by using industry-standard assessment methodologies and techniques to proactively identify risks and vulnerabilities in people, processes, and technology. Design and deploy risk-driven tests and simulations (or manage a highly-skilled team that does) and inform analysis to clearly outline root-causes. In this role, evaluate preventative controls, incident response processes, and detection capabilities, and advise cross-functional teams on security strategy and risk management. Job responsibilities Design and execute testing and simulations – such as penetration tests, technical controls assessments, cyber exercises, or resiliency simulations, and contribute to the development and refinement of assessment methodologies, tools, and frameworks to ensure alignment with the firm’s strategy and compliance with regulatory requirements. Evaluate controls for effectiveness and impact on operational risk, as well as opportunities to automate control evaluation. Collaborate closely with cross-functional teams to develop comprehensive assessment reports – including detailed findings, risk assessments, and remediation recommendations – making data-driven decisions that utilize continuous improvement. Utilize threat intelligence and security research to stay informed about emerging threats, vulnerabilities, industry best practices, and regulations. Apply this knowledge to enhance the firm's assessment strategy and risk management. Engage with peers and industry groups that share threat intelligence analytics. Required qualifications, capabilities, and skills 5+ years of experience in cybersecurity or resiliency, with demonstrated exceptional organizational skills to plan, design, and coordinate the development of offensive security testing, assessments, or simulation exercises. Knowledge of US financial services sector cybersecurity or resiliency organization practices, operations risk management processes, principles, regulations, threats, risks, and incident response methodologies. Ability to identify systemic security or resiliency issues as they relate to threats, vulnerabilities, or risks, with a focus on recommendations for enhancements or remediation, and proficiency in multiple security assessment methodologies (e.g., Open Worldwide Application Security Project (OWASP) Top Ten, National Institute of Standards and Technology (NIST) Cybersecurity Framework), offensive testing tools, or resiliency testing equivalents. Excellent communication, collaboration, and report writing skills, with the ability to influence and engage stakeholders across various functions and levels. Preferred qualifications, capabilities, and skills CISSP, CISA, CISM, CCSP or CRISC certification is a plus. Background in Product Security, Incident Response, Technology/Cyber Audit. #J-18808-Ljbffr
Dublin EUR 100,000 - 125,000 Be among the first applicants. 4 days ago Introduction Trade & Working Capital (TWC) is a division of J.P. Morgan Payments. We connect counterparties with market-leading Supply Chain Finance, Receivables Finance, Contract Monetization, Inventory Finance, Working Capital Lending, Export Agency Finance, Commercial Letters of Credit, Standby Letters of Credit, and Guarantees. Our institutional strength, practical expertise, comprehensive technology, and financial partner network enable us to deliver global solutions, when and where our clients need them, by leveraging one of the world’s largest Trade Finance investor networks to scale funding and support this growing asset class on a global basis. Job Summary As a Trade & Working Capital Sales – Payments – Vice President within J.P. Morgan’s Europe & UK Trade & Working Capital Sales team, you will be responsible for owning a large and diverse client portfolio, promoting the achievement of business goals including the annual sales plan at target margins across a large and diverse portfolio of Irish & Dutch clients to meet their local and outbound requirements and inbound requirements of Subsidiary clients. Job Responsibilities Own a large and diverse client portfolio, driving the achievement of business goals including the annual sales plan at target margins. Originate and structure new opportunities with clients across Core Trade and Structured Trade solutions, covering Supply Chain Finance, Dynamic Discounting, and more. Collaborate with Payments functional teams and coverage bankers to execute the sales strategy, expand market share, and increase client engagement. Deepen client relationships into traditional Treasury & Trade functions, whilst fostering new relationships into Procurement, Sales, eCommerce, Sustainability, and other relevant client touchpoints. Develop compelling financial and working capital analyses to formulate proposals for new business. Drive strategic account planning for targeted clients, balancing client needs with firm-wide priorities. Direct the development of complex products and solutions through partnership with internal stakeholders. Oversee the entire sales process, including onboarding and implementation. Address business issues such as risk, legal, and compliance, managing resolutions effectively. Build and drive collaborative firm-wide relationships. Uphold the firm’s culture and conduct standards, including training and supervision of staff. Required Qualifications, Capabilities, and Skills Established senior sales management experience with a proven track record in Trade, Transaction Banking, and managing complex client relationships. Strong knowledge of Credit and all TWC solutions. Proven ability to operate effectively in a matrix organization under pressure. Excellent communication, influencing, and negotiation skills. Effective collaboration and relationship-building skills in a client-facing role. Self-starter with a positive attitude and teamwork spirit. Preferred Qualifications, Capabilities, and Skills A self-starter who thrives with the challenge of building – preferably with a track record of successfully leading ambitious strategic initiatives with exposure to various functions, including sales, product, client service, and operations. Proficiency in Dutch and other European languages in addition to fluency in English is a plus. Extensive knowledge of Irish & Dutch headquartered corporates, as well as Irish & Dutch based multinational subsidiaries. Proficiency in financial tools like Bloomberg, Capital IQ, etc., alongside knowledge of Artificial Intelligence (AI) and trends/applications within the TWC space. Candidates with non-banking corporate or fin-tech backgrounds with strong track records of delivering results, driving change, creativity, and communication impact will be considered. Preferred job location: Dublin, Ireland. #J-18808-Ljbffr
You’re at the forefront of delivering secure software solutions. Join us a valued member of a top-performing team. As a Security Engineer II at JPMorgan Chase within the Cybersecurity Technology team, you are part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As an emerging member of the security engineering team, you execute basic software solutions through the design, development, and troubleshooting of multiple components within a technical area, while gaining skills and experience to grow within your role. Job responsibilities Executes standard security solutions in accordance with existing playbooks to satisfy security requirements for internal clients (e.g., product, platform, and application owners) Writes secure and high-quality code using the syntax of at least one programming language with limited guidance Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize probability and impact of threats when determining specific vulnerabilities Supports delivery of continuity-related awareness, training, educational activities, and exercises Adds to team culture of diversity, equity, inclusion, and respect Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems Design and develop enhancements to the firmwide scanning system. Create interfaces with other services in the firm as needed. Engage in Application Performance Tuning. Understands Change Procedures and liaises between Development, Quality Assurance and Production Support teams. Provide L4 support for a portfolio of static scanning tooling. Work on an internally developed application to scan source code for cyber security vulnerabilities. Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities. Automate tasks to reduce support tickets. Perform peer code reviews. Conduct documentation of the new enhancements and services. Ensure project's audit compliance for every release. Present static scanning tools to the technology teams. Package and support releases of vendor tools. Work with vendors in problem isolation and resolution. Required qualifications, capabilities, and skills Basic experience developing security engineering solutions Demonstrable ability to code in one or more languages (preferably Python) Proficient in multiple modern programming languages like Python Experience across the whole Software Development Life Cycle Exposure to agile methodologies such as CI/CD, application resiliency, and security Working knowledge of information and network security, IT risk management, and architectural concepts and patterns Proficient in specialized tools (e.g., vulnerability scanner) used to analyze incident data Formal training or certification on BS/BA degree concepts and proficient applied experience Preferred qualifications, capabilities, and skills Cloud technologies including AWS J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. #J-18808-Ljbffr
Job Description You're at the forefront of delivering secure software solutions. Join us as a valued member of a top-performing team. As a Security Engineer II at JPMorgan Chase within the Cybersecurity Technology team, you are part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As an emerging member of the security engineering team, you execute basic software solutions through the design, development, and troubleshooting of multiple components within a technical area, while gaining skills and experience to grow within your role. Job Responsibilities Executes standard security solutions in accordance with existing playbooks to satisfy security requirements for internal clients (e.g., product, platform, and application owners). Writes secure and high-quality code using the syntax of at least one programming language with limited guidance. Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize probability and impact of threats when determining specific vulnerabilities. Supports delivery of continuity-related awareness, training, educational activities, and exercises. Adds to team culture of diversity, equity, inclusion, and respect. Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems. Designs and develops enhancements to the firmwide scanning system. Creates interfaces with other services in the firm as needed. Engages in Application Performance Tuning. Understands Change Procedures and acts as a liaison between Development, Quality Assurance, and Production Support teams. Provides L4 support for a portfolio of static scanning tooling. Works on an internally developed application to scan source code for cyber security vulnerabilities. Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities. Automates tasks to reduce support tickets. Performs peer code reviews. Conducts documentation of the new enhancements and services. Ensures project's audit compliance for every release. Presents static scanning tools to the technology teams. Packages and supports releases of vendor tools. Works with vendors in problem isolation and resolution. Required Qualifications, Capabilities, and Skills Basic experience developing security engineering solutions. Demonstrable ability to code in one or more languages (preferably Python). Proficient in multiple modern programming languages like Python. Experience across the whole Software Development Life Cycle. Exposure to agile methodologies such as CI/CD, application resiliency, and security. Working knowledge of information and network security, IT risk management, and architectural concepts and patterns. Proficient in specialized tools (e.g., vulnerability scanner) used to analyze incident data. Formal training or certification on BS/BA degree concepts and proficient applied experience. Preferred Qualifications, Capabilities, and Skills Cloud technologies including AWS. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals, and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About the Team Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers, and employees up for success. #J-18808-Ljbffr
The Cybersecurity and Technology Controls Assurance organisation is comprised of highly skilled and passionate cybersecurity professionals whose mission is to create a shared understanding of firmwide tech, data and cyber risk enabling our business and customers to make risk-informed decisions. We are seeking an energetic, accomplished, and motivated Cybersecurity Assessor to join our Third-Party Assurance team. Job Summary: As a Vice President - Third-Party Cyber Security Architect within the Cybersecurity and Technology Controls Assurance organisation, you will play a crucial role in assessing the health and security of JPMC’s Third-Party suppliers. You will identify risks and gaps in their control maturity, evaluate suppliers’ infrastructure, application and control environments, and provide transparency into the cyber resilience, recoverability and operational/data risks associated with key relationships. This role offers the opportunity to engage with various stakeholders, requiring excellent leadership skills and the ability to navigate complex organisations and build relationships across Business and Technology teams. Your work will have a critical impact on our company, as well as our clients and our business partners around the world. Job responsibilities: Partner effectively with third-party SME’s to conduct detailed evaluations of security controls and practises to identify and articulate risks and gaps in security posture to key stakeholders. Assess suppliers compliance with cybersecurity standards and exposure to industry risks, provide insights into corrective actions and mitigations that will help to strengthen cyber resilience. Identify opportunities for process improvement throughout the assessment lifecycle, delivering operational efficiencies and improving supplier assurance. Providing guidance and advice to Business, Technology and Third-Party supplier groups on cybersecurity best practise. Support development of supplier risk metrics to articulate the efficacy of suppliers security arrangements. Participate in thematic analysis, identifying trends/common issues in supplier security posture. Partner with Product Security, Tech Risk & Controls and Risk Pillar leads to raise awareness and drive improvements in Third-Party control implementations. Develop and deliver education/best practices with peers and colleagues, as well as third parties. Escalate issues associated with suppliers as needed. Required qualifications, capabilities, and skills: Strong experience in cybersecurity in either control delivery, operations or assessment capabilities. Deep understanding of Key Cybersecurity principles and control implementations that mitigate common threat actor techniques (Email, Network, Endpoint, Resiliency & Recovery (incl. response plans), Monitoring, End User Awareness, vulnerability management, Identity and Access Management). Understanding of industry risk frameworks (ISO27001, NIST Cybersecurity Framework, etc.). Ability to clearly translate and communicate cyber risk via written, verbal and presentation formats to a variety of stakeholders in Cyber, Technology and the Business. Able to collaborate and navigate organisational levels/boundaries to develop improvement plans and recommended mitigations. Highly Analytical, tenacious and inquisitive mindset. Self-starter with drive to deliver results and continuous improvement mindset. Process engineering and re-engineering skills. Preferred qualifications, capabilities, and skills: CISSP, CISA, CISM, CCSP or CRISC certification is a plus. #J-18808-Ljbffr
Job Description The Cybersecurity and Technology Controls Assurance organisation is comprised of highly skilled and passionate cybersecurity professionals whose mission is to create a shared understanding of firmwide tech, data and cyber risk enabling our business and customers to make risk-informed decisions. We are seeking an energetic, accomplished, and motivated Cybersecurity Assessor to join our Third-Party Assurance team. Job Summary: As a Vice President - Third-Party Cyber Security Architect within the Cybersecurity and Technology Controls Assurance organisation, you will play a crucial role in assessing the health and security of JPMC's Third-Party suppliers. You will identify risks and gaps in their control maturity, evaluate suppliers' infrastructure, application and control environments, and provide transparency into the cyber resilience, recoverability and operational/data risks associated with key relationships. This role offers the opportunity to engage with various stakeholders, requiring excellent leadership skills and the ability to navigate complex organisations and build relationships across Business and Technology teams. Your work will have a critical impact on our company, as well as our clients and our business partners around the world. Job responsibilities: Partner effectively with third-party SMEs to conduct detailed evaluations of security controls and practices to identify and articulate risks and gaps in security posture to key stakeholders. Assess suppliers' compliance with cybersecurity standards and exposure to industry risks, providing insights into corrective actions and mitigations that will help to strengthen cyber resilience. Identify opportunities for process improvement throughout the assessment lifecycle, delivering operational efficiencies and improving supplier assurance. Provide guidance and advice to Business, Technology and Third-Party supplier groups on cybersecurity best practices. Support the development of supplier risk metrics to articulate the efficacy of suppliers' security arrangements. Participate in thematic analysis, identifying trends/common issues in supplier security posture. Partner with Product Security, Tech Risk & Controls and Risk Pillar leads to raise awareness and drive improvements in Third-Party control implementations. Develop and deliver education/best practices with peers and colleagues, as well as third parties. Escalate issues associated with suppliers as needed. Required qualifications, capabilities, and skills: Strong experience in cybersecurity in either control delivery, operations or assessment capabilities. Deep understanding of key cybersecurity principles and control implementations that mitigate common threat actor techniques (Email, Network, Endpoint, Resiliency & Recovery (incl. response plans), Monitoring, End User Awareness, vulnerability management, Identity and Access Management). Understanding of industry risk frameworks (ISO27001, NIST Cybersecurity Framework, etc.). Ability to clearly translate and communicate cyber risk via written, verbal and presentation formats to a variety of stakeholders in Cyber, Technology and the Business. Able to collaborate and navigate organisational levels/boundaries to develop improvement plans and recommended mitigations. Highly analytical, tenacious and inquisitive mindset. Self-starter with drive to deliver results and continuous improvement mindset. Process engineering and re-engineering skills. Preferred qualifications, capabilities, and skills: CISSP, CISA, CISM, CCSP or CRISC certification is a plus. Background in Product Security, Incident Response, Technology/Cyber Audit. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. About the Team Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success. #J-18808-Ljbffr
