Tech Risk and Controls - Infrastructure Platforms

Description

Join a team where your expertise helps protect critical infrastructure and enable innovation at scale. You will help shape how we identify, manage, and report technology risk while partnering closely with stakeholders across technology and control functions. You will work in a dynamic environment where strong judgment, collaboration, and a continuous-improvement mindset are valued.

As a Technology Risk & Controls Lead at JPMorganChase within Enterprise Technology and Infrastructure Platforms, you will drive the oversight and execution of the technology risk and control environment for Data and Specialty Services. You will provide guidance to technology-aligned process owners, evaluate control design and effectiveness, and partner with control managers and other stakeholders to deliver a clear view of technology risk posture and its impact to the business.

Job responsibilities

Identify, assess, quantify, and communicate technology risks, including root cause analysis and actionable remediation recommendations

Partner with technology leaders and control partners to drive consistent execution of technology risk management processes

Execute control governance activities, including policy adherence, issue management, and control performance measurement

Monitor control effectiveness, identify gaps, and recommend enhancements to strengthen compliance and risk posture

Lead audit and regulatory exam engagement activities, including evidence coordination and response management

Prepare recurring governance materials that communicate the state of the control environment to senior stakeholders

Investigate and respond to metrics, triggers, and alerts that indicate potential control issues, including findings and exceptions

Review standards and controls against regulatory expectations and industry practices and recommend improvements

Build trusted relationships across teams to enable cross-functional delivery against shared risk objectives

Maintain risk and control documentation and structure within required governance tooling and taxonomies

Required qualifications, capabilities, and skills

Formal training or certification on risk management, technology controls, cybersecurity, or related concepts and 5+ years of applied experience in technology risk management, information security, or a related field

Experience applying risk management frameworks, industry standards, and financial services regulatory expectations

Demonstrated expertise in risk assessment and reporting, control evaluation, control design, and governance

Proven ability to influence senior stakeholders and translate technology risk insights into business-focused outcomes

Strong written and verbal communication skills, including the ability to create clear governance materials for leadership audiences

Experience supporting audits and/or regulatory examinations, including issue response and evidence management

Ability to manage multiple priorities while maintaining high standards for quality, timeliness, and attention to detail

Preferred qualifications, capabilities, and skills

Understanding of enterprise risk management practices in a technology environment

Knowledge of financial services regulations and how they apply to technology risk and controls

Working knowledge of infrastructure and platform technologies (for example: networking, Linux, cloud platforms, third-party SaaS, architecture, or engineering practices)

Experience using ServiceNow for risk, controls, issues, or workflow management

Industry certifications such as CISM, CRISC, CISSP, or equivalent