Technology Governance, Risk and Control Senior Associate

Job Description
We have an exciting and rewarding opportunity for you to take your Tech Risk & Controls career to the next level.
As a Technology Governance, Risk and Controls Senior Associate within the Cybersecurity and Technology Controls organization aligned to Asset and Wealth Management you will contribute to the successful management of technology-aligned aspects of Governance, Risk, and Control in line with the firm's standards.
Within the Governance, Risk and Control (GRC) team you will leverage your broad knowledge in risk management principles and practices to assess and monitor risks, evaluate implementation of effective controls and oversee issue remediation. All of which are crucial in strengthening Asset and Wealth Technology's controls and risk mitigation.
This role requires a combination of in-depth expertise and highly effective organizational skills, and is crucial in advising on complex control execution scenarios and enhancing the AWM's risk posture.
You will work closely with various partners across the firm, including, colleagues in CTC, Enterprise Technology product & engineering, Technology Risk and Controls, and Technologists in our Businesses and Corporate Functions. Your ability to work effectively with a diverse set of stakeholders is essential.
Job responsibilities

• Monitor and evaluate the effectiveness of controls executed by AWM Technology ensuring compliance with firm standards.
• Conduct detailed walkthroughs with Senior Technologists/Process Owners to ensure a comprehensive understanding of technology processes and workflows.
• Develop and execute robust control test scripts designed to identify control weaknesses, determine root causes, and identify solutions, in line with Firmwide measurement steps.
• Document test steps and results in comprehensive and organized manner to sufficiently support and justify testing conclusions.
• Communicate findings and contribute to the recommendations for improvements, recognize opportunities to strengthen controls and improve operational efficiency ensuring alignment with organizational objectives and risk appetite.
• Develop and maintain strong relationships with stakeholders in Cybersecurity and Technology Controls, Enterprise Technology, and AWM Technologists, becoming a trusted partner whilst supporting process owners in managing execution of controls and provide transparency to stakeholders.
• Perform ongoing oversight to accurately represent and maintain AWM's complex technology operations within the Compliance Operational Risk Evaluation (CORE) system.
• Conduct thorough root cause analysis to identify the underlying causes and themes of issues, developing actionable insights and recommendations to address these root causes and prevent recurrence.
• Maintain oversight of technology owned issues through to delivery with validation of completeness of remediation in addressing root cause and repeatability.
• Ensure robust, accurate documentation throughout the issue Lifecycle with appropriate approvals and management in CORE timely and within firmwide issue management standards.
• Collaborate with Operational Risk Management and Audit on identified Issues and control gaps, whilst fostering a culture of risk awareness and promoting best practices in risk management across the AWM Risk organization.

Required qualifications, capabilities, and skills

• Proven experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation.
• Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards.
• Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders.
• Proficient knowledge of risk management frameworks, regulations, and industry best practices.

Preferred qualifications, capabilities, and skills

• CISM, CRISC, CISSP, or other industry-recognized risk certifications

About Us
J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
About the Team
Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success.