Search for Jobs

172 Results
JPMorgan Chase
Tampa, Florida, United States (on-site)
2 days ago
Swiss Re
Bratislava, Slovakia (on-site)
2 days ago
Swiss Re
Bratislava, Slovakia (on-site)
2 days ago
Under Armour
Baltimore, Maryland, United States (on-site)
2 days ago
Sana BioTech
Seattle, Washington, United States (on-site)
2 days ago
JPMorgan Chase
Bengaluru, India (on-site)
3 days ago
JPMorgan Chase
Wilmington, Delaware, United States (on-site)
3 days ago
JPMorgan Chase
Wilmington, Delaware, United States (on-site)
3 days ago
ICF
Arlington, Virginia, United States (on-site)
3 days ago
Nextracker
Fremont, California, United States (on-site)
3 days ago
Wells Fargo
Irving, Texas, United States (on-site)
3 days ago
Verizon
Dublin, Ireland (on-site)
3 days ago
Swiss Re
Madrid, Spain (on-site)
4 days ago
Federal Reserve Bank of Chicago
New York, New York, United States (on-site)
4 days ago
ICF
New Delhi, India (on-site)
4 days ago
ICF
Reston, Virginia, United States (on-site)
4 days ago
Sun Life Financial (U.S.) Services Company, Inc.
Wellesley Hills, United States (remote)
4 days ago
Sun Life Financial (U.S.) Services Company, Inc.
Wellesley Hills, United States (remote)
4 days ago
Sun Life Financial (U.S.) Services Company, Inc.
Kansas City, United States (remote)
4 days ago
Nextracker
Fremont, California, United States (on-site)
4 days ago
Nextracker
Fremont, California, United States (on-site)
4 days ago
Nextracker
Fremont, California, United States (on-site)
4 days ago
Johnson & Johnson
Danvers, Massachusetts, United States (on-site)
4 days ago
Leidos
Aurora, Colorado, United States (on-site)
5 days ago
Fred Hutchinson Cancer Center
Seattle, Washington, United States (on-site)
5 days ago
1 - 25 Results of 172

Description

To do that, you will participate in a broad range of regulatory and non-regulatory assessments including firm wide technology risk assessment program (CORE), SOX, PCI, Application Risk (ARA) and Infrastructure Control Assessment (ICA). You will analyze evidence requirements for the firm's technology assets against multiple control requirements and become a subject matter expert in the Technology Control and Regulatory Assessment data ecosystem. You will play an important role in engaging respective Program and Assessment Leads / Information Security Managers / Asset Owners across multiple business areas and domains. You will work to identify commonalities amongst control requirements and aligned measurement step lists that would allow for a unified "Assess Once, Use Many" approach. You will reduce effort and time spent to create readily consumable risk assessment results by utilizing software such as Alteryx, SQL, Tableau and Excel Pivots. Your objective is to help modernize and automate the manual risk identification process. You will do collaborate with risk programs, and through creative outside the box thinking, create new ways that blend collected risk data into ready-to-assess results, in an effort to modernize and reduce costly manual assessment overhead.

Your support of the noted risk assessment programs will require you to work with various global teams to understand their technical requirements and assess controls against them. You will make recommendations, based on your experience, of how we can automate the way we perform assessments across the firm as we move towards a Continuous Controls Monitoring (CCM) and as we apply other compliance automation tools. You may work on other regulatory and process risk assessment programs as well as our Evidence Management Team controls to grow and expand. Your assessment duties extend to all lines of business in the firm and will include continuously enhancing your knowledge on specific controls across a range of technologies, applications, processes, and infrastructure.

PRIMARY DUTIES AND RESPONSIBILITIES:
  • Assist with the ongoing firm wide technology risk controls assessment programs, test and evaluate the evidence of the controls and identify any significant control deficiencies, work with the appropriate Assessment Leads / Information Security Managers to identify and assess proposed remediation steps to adhere to those controls, and address other assessment findings where necessary.
  • Assist with other compliance and risk assessment programs for Global Technology, including participating in workshops to improve our ability to identify inherent risk and to adjust the descriptions of and approaches to properly obtain evidence of control effectiveness.
  • Use innovative data analysis methodologies and tools such as Alteryx, SQL, Tableau, and Microsoft Excel to identify the assets to be assessed and analyze the available evidence
  • Through tools such as Alteryx: Compile, analyze, and effectively present trending reports to identify opportunities that increase efficiency, ensure quality and support prioritization of work.
  • Experience with data mining methods, statistical analysis, & data visualization methods utilizing tools such as Alteryx, Tableau, Qlik Sense , Excel etc.
  • Test the evidence of the technical controls and document the tests in our assessment results systems of record.
  • Conduct Assessments to gather risk specific information about technology applications.
  • Conduct initial quality reviews of submitted evidence through internal tools. Ensuring basic evidence standards are meet as well as program specific standards.
  • Work with technology teams to gather control design requirements and facilitate discussions to bring to closure identified control issues.
  • Interface with the UAT and Quality Assurance team to improve assessment testing processes. Work actively with the Assessment Leads and Information Security Managers to improve technical assessment guidance.
  • Participate in additional key control projects related to the overall enhancement of the assessment function.
  • Exhibit a continuous learning mindset for security education & awareness.

QUALIFICATIONS:
  • Bachelor's degree, preferably in Cybersecurity (information assurance), Computer Science or Information Technology.
  • Two years internal or external technology audit or risk assessment experience.
  • Experience with Tableau, Qlik Sense, Cognos etc. a plus.
  • Have experience with audit and / or technology risk assessment processes and an understanding of internal controls and how they protect the firm and its clients.
  • Ability to effectively develop and communicate recommendations based on various technical compliance and control assessment results.
  • Experience with, or willingness to learn, Alteryx, Tableau, Excel Pivots.
  • Detail oriented with ability to examine and evaluate processes, controls and issues to determine risk areas.
  • Ability to eloquently describe and defend the process followed in performing assessments and evaluating results to stakeholders and management.
  • Can work independently and can collaborate comfortably in a matrix organization within a broader team.
  • Excellent verbal and written communication skills, including the ability to effectively participate in and sometimes lead discussions and meetings with internal management and other groups involved in technology control assessments.
  • Proficient in MS Office - Microsoft Word, Excel, and PowerPoint. Quickly adapt to new tools and software applications.
  • Basic time management and project management skills.
  • CRISC, CISM / CISA, or other industry-recognized risk and information assurance certifications preferred.


About the Team

JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We recognize that our people are our strength and the diverse talents and perspectives that they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as any mental health or physical disability needs. (If you are a US or Canadian applicant with a disability and wish to request an accommodation to complete the application process, please contact us by calling the Accessibility Line (US and Canada Only) 1-866-777-4690 and indicate the specifics of the assistance needed.)

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. For those in eligible roles, we offer discretionary incentive compensation which may be awarded in recognition of firm performance and individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans

Job Information

  • Job ID: 71694638
  • Workplace Type: On-Site
  • Location:
    Tampa, Florida, United States
  • Company Name For Job: JPMorgan Chase
  • Position Title: Information Security Associate - Technology Risk Assessments & Cyber Data Analysis
  • Job Function: Other
  • Job Type: Full-Time

Please refer to the company's website or job descriptions to learn more about them.

View Full Profile

Jobs You May Like
Filters
Workplace Type
Job Function
Clearance Level
State
Country