Apply Now    

Cybersecurity Risk Lead

Req #: 170013155
Location: Jersey City, NJ, US
Job Category: Technology
Potential Referral Amount: 0 US Dollar (USD)

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at


Global Cybersecurity ensures the security and resiliency of the Firm’s computing environment, enabling it to protect customer and employee confidential information, and comply with regulatory and audit requirements globally. We accomplish this through strong information security leadership and active collaboration with line of business information risk managers to provide high-quality security solutions and services that are focused on improving the Firm's risk posture.


Within Global Cybersecurity, the Governance, Risk & Control (GRC) maintains corporate cybersecurity policies and the cybersecurity risk and control framework. The group also collaborates with both internal and external risk and control organizations (e.g. operational risk, internal audit, regulators) on cyber security issues of mutual interest. We are looking for an individual to assist with the execution of JPMC’s Cyber Risk Assessment Methodology.


Roles and Responsibilities

include but are not limited to: 

  • Assist in the development and execution of a repeatable methodology to test Global Security Standards against threats defined by actor, target, intent, and vector.
  • Conduct formal risk assessments of the JPMC technology environment using the methodology.
  • Collaborate with the Cybersecurity Standards team on control evaluation using a defined set of high level threats.
  • Drive/lead the Cybersecurity risk assessment and resulting issue and action plan management on Global Cybersecurity Processes and Products.
  • Partner with Procedure Owners in multiple organizations and technologies to ensure that Procedures are appropriate and fully integrated with Cybersecurity Standards and Global Cybersecurity Solutions.
    • Leverage standards and control objective expertise to assist in the document substantiation closure summaries for regulatory, audit, and self-identified cybersecurity risk issues and action plans.

  • Bachelors’ degree in computer science, information systems or related field; advanced degree preferred
  • 8+ years of overall IT experience preferred.
  • 7+ years of technology experience, ideally including experience in the Financial Services and Cybersecurity or related fields.
  • Experience in cybersecurity risk assessment methodologies, including attack trees, goal question metric (GQM) methodologies, process self-assessments and cybersecurity OCTAVE-style self assessments
  • Knowledge of Financial Industry Information Security Requirements and Cybersecurity Control Standards;
  • Certified Information Security Auditor (CISA) or willingness to pursue.
  • Strong knowledge of cryptographic algorithms and implementations required.
  • Outstanding verbal, interpersonal and written communication and presentation skills, including demonstrated ability to interact with both technical and non-technical stakeholders
  • Strong organizational and time management skills; ability to manage multiple and conflicting priorities in a global organization, and to adapt in a fast-paced environment
  • Demonstrated ability to author Standards and Procedures.
  • Ability to develop and maintain strong partnerships with key stakeholders, and to work across diverse businesses and regions, balancing the needs of multiple organizations
  • Effective negotiation and influencing skills.
  • Ability to both learn from colleagues and think outside the box


Apply Now    

Join our Talent Community

Not ready to apply? Leave your information with us and we will keep you up to date with new career opportunities.

Things to note

Sign in to our application system to continue your job search or update your profile.

Current employees sign in here. Contractors sign in here.

Any information you provide is confidential and will only be viewed by our recruiters in an effort to fill open positions. In addition, the information you provide is subject to our privacy policy practices.

Please note that J.P. Morgan will not accept unsolicited approaches or speculative CVs, nor will J.P. Morgan be responsible for any related fees, from Third Party Firms who are not preferred suppliers.

The firm invites all interested and qualified candidates to apply for employment opportunities.

Need disability related assistance?

If you are a US or Canadian applicant with a disability who is unable to use our online tools to search and apply for jobs, please click here.

Important links

Click here to view the "EEO is the Law" poster.

Click here to view the "EEO is the Law" supplemental poster.

Click here to view our U.S. Pay Transparency Policy.

JPMorgan Chase is an equal opportunity and affirmative action employer Disability/Veteran.