JPMorgan Strategic Indices Structuring - Cross-Assets 

United States, New York, New York 

807414028

As an Information Systems Security Officer Analyst in our cybersecurity tech controls team, you will contribute to the successful management of technology-aligned aspects of Governance, Risk, and Regulatory Compliance in line with the firm's standards and country specific requirements. Leverage your broad knowledge in risk management principles and practices to assess and monitor risks and implement and performs effective controls, regulatory compliance assessments, risk identification, control evaluation, and security governance is crucial in advising on complex situations and enhancing the firm’s risk posture. Through collaboration and analytical skills, you will contribute to the overall success of the Technology Risk & Services team and ensure compliance with regulatory obligations and industry standards.

Job responsibilities

• Assess and monitor technology risks, ensuring compliance with firm standards, Saudi Arabia regulatory requirements, and industry best practices
• Support regulatory audits.
• Support the implementation of effective controls in collaboration with cross-functional teams and stakeholders.
• Manage review of application and Technology infrastructure in accordance with regulatory requirements.
• Drive security into local projects.
• Execute and evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm’s risk posture
• Analyse complex situations, provide advice on risk management strategies, and support the implementation of risk mitigation measures

Required qualifications, capabilities, and skills

• Bachelor´s degree information security or related fields.
• Knowledge in risk identification, assessment, and control evaluation, with a strong understanding of industry standards.
• Ability to analyse complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders.
• Knowledge of risk management frameworks, regulations, and industry best practices
• Excellent proven problem-solving and troubleshooting skills.
• Good interpersonal skills.
• Fluent in writing, speaking, and listening in English
• Ability to handle multiple issues through channels like intake portal, symphony, and emails.
• Ability to document business processes and flows.
• Ability to work with technology teams to integrate systems into business operations and services.
• General knowledge about Cloud (AWS, Azure, GAIA etc.)

Desired qualifications will be a plus ,

• CISM, CRISC, CISSP, or other industry-recognized risk and risk certifications preferred