Regional Information Security and Tech Governance

**JOB DESCRIPTION** Posting Description** Are you a strategic thinker, passionate about cybersecurity and technology controls and leading great teams? This is for you. The objective of this role is to drive the **IT Risk** Framework and local Information Security Strategy to be in compliance with local laws and regulations and act as a representative in **Information Security matters** with the Local Regulator, Bank Associations and other stakeholders (Clients, Compliance, Senior Management, etc) You will be able to provide end-to-end **governance, control oversight, assured compliance** with regulatory requirements, regulatory change and risk and issue management and analysis. **Responsibilities**: - Develop and maintain strong business and technology relationships, becoming a trusted partner for cybersecurity and technology controls to these groups. - Serve as a point of contact for the location’s regulators, internal audit, compliance and senior business leaders for technology issues, and support the documentation process of information risk control issues/gaps as well as the remediation plans, investigating and resolving control incidents. - Participate in Industry Forums and contribute in Policy & Partnership with peers and regulators and maintain a strong and influential role with local and regional risk managers, control, and technology groups for consistent and prompt implementation of control initiatives. - Provide effective interpretation of IT Risk legislation and regulations of locations, linking them with internal policies and standards and clearly communicate to regional and Global teams providing guidance and prioritization to Technology Business stakeholders ensuring acceptant compliance level according to business risk appetite in a pragmatic fashion. Ensure controls are easy to know, use and sustain - Manage the Information Risk profile and assess the Information Security risks of all information assets through monitoring the technology risk and control processes - Support the building of a culture and climate focused on the pro-active awareness and education of, and continuous improvement in the technology risk environment. - Lead a team of technology professional, expert in risk and controls and promote career path and inclusive environment **Required Qualifications, capabilities and skills** - 10+ years experience in technology or risk management, preferably for financial service sector and/or strong background in IT Risk Advisor/Information Security/Resiliency - Be able to prioritize work, meet tight deadlines, and have strong attention to detail - Ability to multi-task and project management - Resourceful, "hands on", and able to take the initiative - Work well in a fast-paced team-based environment - Strong partnership, leadership and influential skills - Strong problem solving, proactive and analytical capabilities - Desire & ability to learn - Excellent oral and written presentation skills in English **Preferred Qualifications, capabilities and skills** - Experience of local Banking regulations for Technology and for regulatory engagement - Knowledge of local regulation requirements for technology, Controls and/or IT risk and cybersecurity. - Understanding of financial services technology, operations and business processes, investment banking a plus - Solid understanding of key technologies and software development lifecycle - Industry qualification e.g. CISA, CRISC, CISSP, CGEIT is desirable - University Graduate, preferable in technology fields, is desirable **ABOUT US** J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as any mental health or physical disability needs. **ABOUT THE TEAM** The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm’s cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt