APAC Cyber Security Governance, Risk and Control, VP - Singapore

  • Competitive
  • Singapore
  • Permanent, Full time
  • J.P. Morgan
  • 29 Sep 16

APAC Cyber Security Governance, Risk and Control, VP - Singapore

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.4 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small businesses, commercial banking, financial transaction processing and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about J.P. Morgan is available at www.jpmorganchase.com

The Cybersecurity organization's objective is to ensure that JPMorgan Chase is able to effectively detect, prevent, and respond to cyber threats against our technology infrastructure. The scope of Cybersecurity comprises detection and monitoring of threats and vulnerabilities, managing security incidents, and evolving our preventive infrastructure to keep ahead of the threat. We accomplish this through strong information security leadership and active collaboration with line of business information risk managers to provide high quality security solutions and services that are focused on improving the Firm's risk posture.
Within Global Cybersecurity, the Governance, Risk & Control (GRC) organization is the first line of defense, responsible for controls governance and oversight as well accountable for driving the effectiveness of our technology controls to help design and embed a robust controls environment.

In this role you will be responsible to ensure the robust control, security and resiliency of the computing environment, protect customer and employee confidential information, and align with regulatory requirements.
You will contribute to developing and executing the Cybersecurity GRC framework, methodology, tools and processes to protect technology and information assets. Additionally you will develop, design and monitor firm-wide technology control programs, and you will act as a liaison between management and lines of business regarding technology control issues and planning.


  • Primarily operate technology control processes
  • Drive the identification & classification of technology assets
  • Evaluate control options for identified risks
  • Execute to strategy, framework and program schedule for technology control assessments
  • Guide control-gap remediation and identify compensating controls
  • Review action plans and resolution of control issues/breaks
  • Ensure the implementation of firm-wide risk management policies
  • Monitor the control environment with respect to all technical, financial and operations processes
  • Engage partners in governance forums for awareness and resolve critical issues
  • Conduct or support incident handling and resolution with partners

Skills and Experience
You are a technology and cybersecurity professional with 10 years' experience including:
  • IT and cybersecurity frameworks, policies and standards
  • Operational risk frameworks
  • Regulatory compliance
  • Technology resiliency
  • Identity and access management
  • Incident management
  • Application security and secure systems development lifecycle
  • Vulnerability management
  • Data protection
You can demonstrate the following key competencies:
  • Critical thinking
  • Objective analysis of poorly defined problems
  • Proficient understanding of financial institutions and underlying business processes
  • Regulatory and Audit engagement
  • Partnership and influence
  • Resource management
  • Resolving Conflicts

J.P. Morgan is a place for talented people from all backgrounds and perspectives because our clients come from all backgrounds and perspectives. We encourage a culture of inclusion, where everyone's opinion counts and all employees have the freedom to deliver their absolute best. This is why we work hard and invest in attracting and developing a diverse workforce. Learn more about our Business Resource Groups in how they help our employees build successful careers and reach their greatest potential.