VP, GTI Information Security Manager

JP Morgan

Location: Dorset

Job Type: Full time


Our Global Technology Infrastructure group is a team of innovators who love technology as much as you do. Together, you’ll use a disciplined, innovative and a business focused approach to develop a wide variety of high-quality products and solutions. You’ll work in a stable, resilient, and secure operating environment where you—and the products you deliver—will thrive.

In GTI Architecture our goal is to accelerate our evolution into a software-based infrastructure, creating the policies, tools and processes that our development teams can leverage; GTI Architecture delivers innovative, high quality, cost effective, fit-for-purpose infrastructure technology solutions for application partners firm wide. You will work as part of a strong, supportive team to create, review, and apply solutions based on our long-term strategy, while guiding the organization towards a strategic target state.

Our Information Security professionals are passionate about information security and control solutions for computing environments. While working with a world-class team of technology experts, you'll partner with one or more disciplines, lines of business, regions or locations to respond to evolving business requirements and emerging threats. You'll also leverage your expert knowledge of today's ever-changing cybersecurity and risk landscape to influence IT operations across the firm. Responsibilities include offering guidance, best practices, and support across businesses, leading risk reviews and vulnerability assessments, identifying threats, communicating with senior leaders and other stakeholders.

The role will be responsible for providing technology risk and control leadership by working in close consultation across the technology and business organizations to provide technology and data control support, partnering to strengthen the overall control foundation to satisfy business and regulatory requirements. It requires risk and security professionals who can quickly understand security weaknesses in the Public and Private Cloud spaces, prioritize remediation, and provide support to engineering and architecture teams during audit and regulatory exams. You will also partner and collaborate with other security teams in support of the broader JPMorgan Cyber Security and Risk Programs to help secure the bank.

This role requires a wide variety of strengths and capabilities, including:

  • Security Architecture experience including leading, designing and delivering secure technology solutions for a number of years.
  • At least 7 years work experience in the area of technology risk. Successful candidate is likely to have held one of the roles such as Security Architect, IT Risk Manager, Risk Manager, IT Manager, Information or IT Security Manager, IT Audit Manager, IT Incident Manager or Business Continuity Manager, security analyst.
  • Bachelor’s degree or equivalent experience
  • Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection
  • Strong product governance or general governance experience
  • Experience or exposure to any type of tech audit
  • Extensive experience with securing cloud(both Public and private), multitenant and Hybrid environments.
  • Experience conducting architecture reviews to find and evaluate application and infrastructure security risks using Threat Modeling methodologies (e.g. STRIDE)
  • Conduct manual, language agnostic code review to identify security related vulnerabilities
  • Advanced knowledge of multiple IT control and project management practices and experience working across large environments
  • Ability to collaborate with high-performing global teams and individuals throughout the firm to accomplish common goals in a matrixed organization
  • Expertise in application and infrastructure high-availability and resiliency architectures with demonstrated experience in business
  • Relevant business experience/qualifications/knowledge: Expertise established in assessing and articulating technology risk in the context of various other operational risks and challenges facing the organization.
  • Strong leadership skills with exceptional communication and presence
  • Demonstrated understanding of Operational Risk Management and Technology Controls concepts and terminology.
  • Stakeholder engagement skills, including ability to be influence and interact with senior levels of management, serve as a trusted partner to various technology and business stakeholders.
  • Strategic and technical thinking, understanding of systems, infrastructure and various types of applications.
  • A strong sense of ownership, commitment to quality and attention to detail to deliver excellence.
  • Strong problem resolution, written and verbal communication and listening skills.

When you work at JPMorgan Chase & Co., you’re not just working at a global financial institution. You’re an integral part of one of the world’s biggest tech companies. In 20 technology centers worldwide, our team of 50,000 technologists design, build and deploy everything from enterprise technology initiatives to big data and mobile solutions, as well as innovations in electronic payments, cybersecurity, machine learning, and cloud development. Our $10B+ annual investment in technology enables us to hire people to create innovative solutions that will are transforming the financial services industry.

At JPMorgan Chase & Co. we value the unique skills of every employee, and we’re building a technology organization that thrives on diversity. We encourage professional growth and career development, and offer competitive benefits and compensation. If you’re looking to build your career as part of a global technology team tackling big challenges that impact the lives of people and companies all around the world, we want to meet you.

About Us

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as any mental health or physical disability needs.

You’ve got this!