Head Of Information Risk Management-Internet & Mobile Banking Job Details

 

The Corporate Internet Group (CIG) creates and supports many of JPMorgan Chase's Internet facing online and mobile banking sites.  The Information Risk Management (IRM) Team within CIG is responsible for overseeing controls and programs necessary to protect customer information, system integrity, and physical assets associated with these systems.

 

We are seeking an experienced leader in information risk management with an emphasis on innovative technology and online threats in a highly competitive environment.  Candidate will have a solid foundation and proven track record in driving strategies in technology risk assessment, risk remediation, and technical controls implementation with a strong focus on Application/Software Security.

 

Responsibilities of the role include, but are not limited to:

•    Develop, implement, and govern CIG's security & threat management program

•    Develop and implement strategies to enhance our online & mobile services and infrastructure to meet emerging threats and mitigate risks

·     Be a thought leader in determining risks and control recommendation for emerging technologies such as mobile banking, social media, and rich internet applications.

·     Collaborate with line of business partners, operations, and technology staff to implement security strategies and processes

•    Partner with the Corporate Information Technology Risk & Security Management and LOB IT teams to ensure the appropriate security solutions are embedded into CIG's infrastructure

·    Serve as a member of JPMC's Corporate IT Risk Leadership group managing the firm's information risk strategy and prioritization

•    Develop, maintain, and communicate operational metrics and status of key initiatives

•    Ensure that all pertinent Information Risk and Control regulatory requirements and applicable JPMC policies are understood by LOB clients, technologists, and IRM team members, and that these policies are implemented and monitored successfully

•    Build and maintain strong business and vendor relationships

•    Provide expertise and knowledge of current industry trends in information risk and security standards to improve controls across the firm; "be a leader" across the organization

•    Select, develop and motivate a team with the skills to design, develop and support technology and services that meet business objectives

·    Assist in the development & execution of a leading software security program

 

·         10-12 years related business experience, with 3-5 years in Risk Management and/or Technology Audit functions is strongly desired.

·         Subject matter expert on technology risk management with complete understanding of IT control policies

·         Proven ability to examine, improve and execute the organization's existing processes and procedures for risk assessment

·         Ability to lead within a cross line of business technology organization, empower people, build rapport, garnering respect and appropriately exercising authority in a collaborative cross-cultural environment.

·         Strong written and verbal presentation skills to a wide variety of senior managers across the organization.

·         Stakeholder engagement skills, including ability to interact with senior levels of management

·         Track record of implementing successful risk management solutions

·         Experience in matrixed/global organization Experienced Information Technology professional with a proven Financial Services track record of more than 7 years in Technology Risk Management, IT audit, technology operations and risk based projects.

·         Strong Practical knowledge of the development lifecycle and project and program management concepts and controls.

·         Strong knowledge of web application security and threat modeling