Assessment & Exercise Planner – EMEA Resiliency Testing
Come join JPMorgan’s newly formed Firmwide Technology Resiliency (FTR) organization, tasked with ensuring the Firm’s technology estate can maintain effective operations and support the ongoing, critical functioning of Essential Business Services in the face of today’s evolving threat landscape. The FTR team partners across all JPMC Lines of Business and Corporate Functions to drive & deliver the following:
- Proactive, threat-informed testing, simulations, & assessments that validate readiness and drive down residual risk
- An end-to-end technology resiliency control framework linked to robust governance & reporting structures to ensure appropriate visibility and accountability
- A multi-year, prioritized resiliency investment strategy focused on uplifting core tooling, capabilities, and controls to enable the Firm’s top strategic priorities across key areas such as Public Cloud, Technology Modernization, AI/ML, and ongoing business expansion (among others)
- Ongoing regulatory & financial industry engagement to support the strengthening of sector-level resiliency & readiness
- Proactive threat and vulnerability analyses that ensure the above activities are grounded in the current risk landscape and most plausible disruptive scenarios
Primary Roles/Responsibilities
- Participate in effective planning, design, conduct, and evaluation of both internal and external resiliency simulations and testing in accordance with the firm’s business and technology resiliency standards as well as global regulatory frameworks
- Support across all aspects of exercise project management, spanning the entire engagement lifecycle (i.e., plan, design, conduct, and assess) to include scheduling meetings, reserving venues, facilitating discussions, and providing senior leader project updates
- Coordinate with key stakeholders across the firm to develop tailored, all-hazards simulation scenarios that achieve business, resiliency, technology, and/or cyber incident response objectives
- Support post-exercise after-action analysis, reporting, and assessment, synthesize corrective actions, implement tracking/monitoring of progress, and design future simulations to validate improvements
- Identify and address opportunities in process, procedures, tooling and knowledge management
- Support overall team strategy and capability uplift initiatives to drive rapid maturity
Key Qualifications
- Demonstrated ability to manage multiple, parallel, complex engagements collaboratively with a diverse set of stakeholders, subject matter experts, and senior leaders to build requirements and execute across a core set of project milestones
- Preferred 3+ years of experience in planning, developing, and coordinating incident response playbooks, runbooks, or other key operational processes across a large organization. General knowledge of, and experience working within, the financial services sector is preferred
- Familiarity with how key international financial systems operate, to include an understanding of the current threat landscape, operational resiliency considerations, and possible systemic risk scenarios. Experience formulating and/or interpreting threat and risk analyses of cyber adversary techniques, technology disruptions, terrorist attacks, severe weather, and other major hazards
- Experience developing and presenting briefings to senior leaders in addition to large group meeting facilitation and logistics planning
- Excellent writing skills and ability to communicate effectively. Proficiency in the use of Microsoft Office and related technologies. Background in metrics development, risk analysis & visualization, and automation is a plus.
- The ideal candidate must demonstrate exceptional organizational skills necessary to plan, design, and coordinate the development of simulations and ensure crisis management and incident response procedures are integrated across the firm
- Ability to perform occasional weekend work to support data center testing events