Access to key business systems is one of the top priorities for JPMorgan Chase & Co. To manage cybersecurity and business risk within the firm, we operate a number of key access management controls to keep those risks to a minimum while still maintaining a secure, efficient operating business environment. To achieve such goals, we need to design, enhance and drive controls so that they are aligned to the needs of the business while balancing with the necessary governance and policies on cybersecurity. We have created a team that consistently designs these controls and models them based on security and business goals in partnership with business, technology and controls organizations. The Segregation of Duties Control Administration team is a business control team focused on identifying and addressing potential conflicting access across the firm related to trading and payment activities. Partnership with business and technology is a key component of this role to enhance the control as per the business' needs and regulatory requirements.
Responsibilities
1. Collaborate in the re-engineering of the Segregation of Duties control while it continues to be executing under the current model by gathering business requirements and discussing with Technology partners.
2. Strengthen controls by identifying gaps and making change recommendations in order to enforce and enhance data integrity.
3. Present periodic reporting to senior management and stakeholders of the control by providing current status of the control and trigger key discussions when required.
4. Develop detailed understanding of the business areas in order to design the control and rules aligned with their operating models.
5. Address compliance and audit requirements by putting in place strategic solutions and providing recorded evidence.
6. Produce, update and monitor input data for the control on a periodic basis.
7. Analyze certification outputs of conflicting access performed by the business and drive solutions for non conflicting accesses found.
Requirements
1. Demonstrated relevant work experience in a Business Analyst, Program/Project Management, Technical Lead or similar role.
2. Knowledge in analytical and data analysis tools with experience in handling larger data sets.
3. Strong, proactive task-based approach with focus on delivery and implementation.
4. Ability to lead individuals and projects and experience with presenting a proposal or solution.
5. Ability to work with limited supervision and make independent decisions.
6. Excellent interpersonal skills, written skills and strong, broad-based communications skills - ability to discuss range of topics with a variety of business managers from operations through executive and build strong working relationships.
7. Self-motivated & confident with the ability to demonstrate leadership, challenging and influencing change where necessary.
8. Bachelor's degree in a financial, controls, or operational domain or Computer Science, Information Science, Information Technology and/or field such as information security.
Desired but not Required
1. Experience in Identity & Access Management (IAM), Information Security, or Cybersecurity.
2. Experience Segregation of Duties Access Controls (SOD).
3. Experience with statistical tools.
4. Understanding of risk assessment methodologies and standards with expectations to track risks and manage them.
J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as any mental health or physical disability needs.
#J-18808-Ljbffr