We are on the lookout for a talented Technology Audit Manager to join our join our Cybersecurity and Technology Controls Internal Audit team. This is your opportunity to play a crucial role in enhancing our organization's governance and operational excellence!
As a Technology Audit Manager within our Cybersecurity and Technology Controls Internal Audit Team, you will execute the annual audit plan, manage audit engagements, perform audit testing and participate in control and governance forums.

Job Responsibilities

• Lead and execute large-scale audits or projects independently, including critical technology functions, cloud-based infrastructure, cybersecurity, risk management, application, and third-party management. Develop effective test plans and perform audit testing to ensure timeliness, accuracy, and quality.
• Identify and assess key risks and controls, executing and documenting work in accordance with JPMorgan & Chase's Internal Audit policy. Design and execute tests to verify control effectiveness to mitigate risk.
• Demonstrate professional skepticism while conducting audits, independently raising findings within established criteria, and keeping management and leadership informed throughout the process.
• Establish and maintain strong client relations during engagements, effectively communicating results to management via written reports and oral presentations. Prepare clear, organized documentation to support work performed.
• Lead continuous improvement by providing objective evaluations of technology processes, enhancing the organization's risk management capabilities, and developing business partnerships within Internal Audit and companywide.
• Adapt to change, embrace bold ideas, and leverage data analytics to enhance audit effectiveness.
• Stay informed about emerging cybersecurity technologies and trends, assessing their impact on the organization's risk landscape.
• Collaborate with IT, security, and business units to ensure a comprehensive approach to cybersecurity risk management.
• Lead and mentor audit teams, fostering a culture of continuous learning and improvement.

Required qualifications, skills and capabilities

• 7+ years of internal or external auditing experience
• Bachelor's degree in Technology, Accounting, Finance, or a related discipline.
• Great understanding of audit methodologies, internal control concepts, and the ability to evaluate and determine the adequacy of control design and operating effectiveness.
• Proficiency with the MITRE ATT&CK Framework, with 3+ years of experience applying it to identify, assess, and mitigate cyber threats.
• Experience in managing and evaluating security controls, with proficiency in the Information Systems Auditing Process and key areas such as Security and Risk Management, Asset Security, Security Architecture and Engineering, Communication and Network Security, Security Operations, and Cyber Resiliency.
• Advanced data analytical skills, adept at interpreting complex data sets and deriving meaningful insights.
• Good strategic thinking skills, with the ability to align audit activities with the organization's strategic objectives and cybersecurity goals.
• Knowledge of IT and Cloud management and control frameworks.
• Experience in a highly formal audit environment, including preparation of formal test of design and test of effectiveness work-papers.
• Certification in one or more of the following audit or security focus areas: CISA, CISSP, SANS, or expertise in cloud platforms such as AWS, Azure, or Google Cloud.
• Excellent verbal and written communication skills, with the ability to effectively communicate complex security concepts to stakeholders at all levels.

Preferred qualifications, skills and capabilities

• Related professional certification such as CIA, CPA, or CRISC is advantageous.
• Familiarity with coding, data analytics, cybersecurity controls, cloud design and controls, and/or distributed technologies is a plus.
• Experience navigating matrixed organizations and interfacing with regulatory agencies is beneficial.
• Experience leading and providing feedback to staff on audit projects or engagements is desirable.
• Experience with Issue Validation and Remediation is preferred.
• In-depth knowledge of financial regulations and compliance requirements related to cybersecurity, such as GDPR, PCI-DSS, SOX, and FFIEC guidelines, is a plus.

ABOUT US
JPMorgan Chase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans

ABOUT THE TEAM:

Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success.

The Audit department provides independent assessments to evaluate, test and report on the adequacy and effectiveness of our governance, risk management and internal controls. The team's priorities are focused on strong governance, transparency, strategic engagement, and fostering a diverse and inclusive culture that develops our talent.