JPMorgan Tech Risk Controls Director - Metrics & Governance 

United States, New Jersey, Jersey City 

15176022

As a Technology Risk and Controls Director in Cybersecurity & Technology Controls, you will be responsible for driving strategic Governance, Risk, and Controls (GRC) initiatives with a strong focus on metrics. You will spearhead the delivery of GRC transformation and change initiatives, leveraging technical skills and a deep understanding of controls aimed at improving the governance and lifecycle of technology controls end-to-end, ensuring controls are effectively documented and adhere to regulatory, legal, and industry standards.

Job Responsibilities:

• Lead and execute complex, cross-functional GRC programs and initiatives, with a focus on optimizing our Global Technology metrics governance operating model to enhance efficiency and effectiveness.
• Drive efforts to modernize our metrics to align with current trends and leverage new and emerging technologies.
• Communicate program status, execution risks/issues, and key decisions to senior stakeholders, maintaining transparency and fostering informed decision-making.
• Identify, manage, and mitigate delivery risks, proactively addressing potential roadblocks and implementing contingency plans to maintain program momentum.
• Partner with key stakeholders to iterate on design, implement, and continuously operate and enhance technology risk and control frameworks, ensuring they meet industry standards and regulatory requirements.
• Promote a culture of high performance, operational excellence, and innovation within the GRC team, driving continuous improvement in risk management practices.

Required qualifications, capabilities, and skills:

• Formal training or certification on cybersecurity concepts and 10+ years applied experience. In addition, 5+ years of experience leading technologists to manage, anticipate, and solve complex technical items within your domain of expertise.
• Proficiency in technical information security and/or IT general controls domains, including policies and standards, risk and control assessments, and regulatory compliance.
• Extensive background in developing, implementing, and operating robust risk and control frameworks to mitigate technology operational risk.
• Ability to ensure decisions or constraints affecting program delivery are effectively escalated and addressed in a timely manner.
• Strong verbal and written communication skills to translate technical risks into business impacts and engage with stakeholders at all levels.
• Strong analytical skills to dissect complex challenges, conduct thorough root cause analysis, and develop effective solutions.
• Proven ability to apply critical thinking and structured problem-solving techniques to address issues and drive continuous improvement in risk management practices.