Supplier Cybersecurity Controls Assessor

In this role as an Associate, Supplier Cybersecurity Controls Assessor at JPMorgan Chase, you will be a part of the Supplier Assurance Services (SAS) team, which is responsible for conducting thorough risk assessments of suppliers within the Corporate Third Party Oversight (CTPO) program. Your primary focus will be on designing and implementing controls and processes to enhance the security posture of JPMorgan Chases supply chain. You will report directly to the Global Head of Corporate Third Party Oversight as part of the Global Supplier Services (GSS) team.

• *Key Responsibilities:**
• Engage with multiple LOB Delivery Managers to ensure compliance with required assessments per JPMorgan Chase's policy and procedures.
• Lead control assessments of medium and low-risk suppliers, assessing IT and cybersecurity risks and controls.
• Identify control breaks and vulnerabilities within supplier IT environments.
• Document findings and collaborate with stakeholders to resolve issues through action plans or risk acceptance approvals.
• Drive compliance and best risk management practices throughout the organizations.
• Identify opportunities for process improvements and operational efficiency.
• Assist with various SAS program initiatives under the guidance of SAS Leads.
• *Qualifications Required:**
• 8+ years of experience in Technology, Technology Risk & Controls, Cybersecurity, and Third-Party Outsourcing Risk Management in an enterprise-level environment.
• Good understanding of Third-Party Oversight and Supplier Assurance Programs.
• Experience in Supplier Management, Risk and Controls Management, Technology Audit, or Information Security.
• Strong written and verbal presentation skills at the senior management level.
• *Preferred Qualifications:**
• CISSP, CISA, CISM, CCSP, or CRISC certification is a plus.

JPMorgan Chase, a leading financial institution with a rich history of over 200 years, is dedicated to providing innovative financial solutions to a wide range of clients. The company values diversity and inclusion, making it an equal opportunity employer that does not discriminate based on any protected attribute. Accommodations are made for applicants' and employees' religious practices, beliefs, or physical disability needs. JPMorgan Chase is committed to fostering a supportive and inclusive work environment for all individuals. In this role as an Associate, Supplier Cybersecurity Controls Assessor at JPMorgan Chase, you will be a part of the Supplier Assurance Services (SAS) team, which is responsible for conducting thorough risk assessments of suppliers within the Corporate Third Party Oversight (CTPO) program. Your primary focus will be on designing and implementing controls and processes to enhance the security posture of JPMorgan Chases supply chain. You will report directly to the Global Head of Corporate Third Party Oversight as part of the Global Supplier Services (GSS) team.

• *Key Responsibilities:**
• Engage with multiple LOB Delivery Managers to ensure compliance with required assessments per JPMorgan Chase's policy and procedures.
• Lead control assessments of medium and low-risk suppliers, assessing IT and cybersecurity risks and controls.
• Identify control breaks and vulnerabilities within supplier IT environments.
• Document findings and collaborate with stakeholders to resolve issues through action plans or risk acceptance approvals.
• Drive compliance and best risk management practices throughout the organizations.
• Identify opportunities for process improvements and operational efficiency.
• Assist with various SAS program initiatives under the guidance of SAS Leads.
• *Qualifications Required:**
• 8+ years of experience in Technology, Technology Risk & Controls, Cybersecurity, and Third-Party Outsourcing Risk Management in an enterprise-level environment.
• Good understanding of Third-Party Oversight and Supplier Assurance Programs.
• Experience in Supplier Management, Risk and Controls Management, Technology Audit, or Information Security.
• Strong written and verbal presentation skills at the senior management level.
• *Preferred Qualifications:**
• CISSP, CISA, CISM, CCSP, or CRISC certification is a plus.

JPMorgan Chase, a leading financial institution with a rich history of over 200 years, is dedicated to providing innovative financial solutions to a wide range of clients. The company values diversity and inclusion, making it an equal opportunity employer that does not discriminate based on any protected attribute. Accommodations are made for applicants' and employees' religious practices, beliefs, or physical disability needs. JPMorgan Chase is committed to fostering a supportive and inclusive work environment for all individuals.