Bring your expertise to JPMorgan Chase. As part of Risk Management and Compliance, you are at the center of keeping JPMorgan Chase strong and resilient. You help the firm grow its business in a responsible way by anticipating new and emerging risks, and using your expert judgement to solve real-world challenges that impact our company, customers and communities. Our culture in Risk Management and Compliance is all about thinking outside the box, challenging the status quo and striving to be best-in-class.

CCOR Outsourcing is part of CCOR Technology & Cybersecurity (“CCOR Tech & Cyber”) group within the Compliance, Conduct and Operational Risk (CCOR) organization and has areas of alignment across all Lines of business (LOBs), Regions and Corporate Functions (CFs), responsible for the independent oversight of first line outsourcing risk management practices and compliance with Outsourcing laws, rules, and regulations. Additionally, CCOR Tech & Cyber provides Firmwide end-to-end independent second line coverage of Technology and Cybersecurity Compliance, Resiliency and Crisis Management, Insider Threat, and Global Supplier Services. 

As an Executive Director (ED), you will be part of the CCOR Outsourcing team responsible for the independent challenge and oversight of the Outsourcing program. You will assist in the identification, measurement, management, monitoring & testing, governance, and reporting of the Outsourcing risk management in the second-line of defense (2LOD).

Additionally, in this position, you will provide Operational Risk Management (ORM) oversight to the CAO sub-functions (i.e., Global Supplier Services, Global Real Estate, Global Document & Business Solutions, Corporate Insurance Services and Amenity Services) as an independent second-line of defense (2LOD) function. You will also provide Operational Risk Management oversight of Global Supplier Services sub-functions including Sourcing & Procurement, Invoice & Payments Management, Corporate Third Party Oversight (Third Party and Inter-Affiliate Oversight) as an independent 2LOD function. You will also support and lead Line of Business & regional coverage of Outsourcing Risk Management.

Job Responsibilities

• Possesses a strong understanding of third party risk management, sourcing, payments, and procurement management and keeps abreast of current trends and emerging risk related to Outsourcing and CAO functions.
• Maintains strong understanding of Outsourcing regulatory and compliance frameworks against the current Outsourcing risk assessment process.
• Develop, strategize and execute Monitoring and Testing activities while identifying emerging and potential manifestation of risk from outsourcing lens and exposure. 
• Work across 2LOD and 1LOD to holistically align outcomes, impact and risk assessment of outsourcing risk.
• Responsible for collaboration and oversight of horizontal line of business and support regional leads as a Global Risk Advisor for Outsourcing Risk and CAO functions.
• Identifies opportunities to streamline, enhance the Outsourcing Program while improving the risk posture and risk management processes.
• Understands risks as related to specific business or technology process area of expertise. Perform deep inspection in targeted processes, significant operational risk events or firm-wide evaluation. 
• Develops key data-driven insights to enable more informed challenge of outsourcing risks across the firm.
• Works with appropriate 2LOD areas to identify potentially elevated outsourcing risk globally and perform assessments of the corresponding inherent risks and mitigating controls. Recommend any adjustments required to meet JPMC policy and controls, regulatory requirements, and industry best practices. 
• Drives communication and awareness of key Outsourcing Risk and Control initiatives and leads or participates in the development of Outsourcing Risk related policies and standards.
• Provides ORM advice on the implementation of appropriate action plans to address identified operational risk and/or control gaps and prepares and/or reviews materials for control committee(s), risk forums, regulators and senior management

Required Qualifications, Capabilities, and Skills

• 10 years of experience in financial services industry; specific experience in Operational Risk, Compliance, Audit, or other controls related area is a plus.
• Proven experience in third party management, and risk governance within a financial services organization.
• Strong knowledge of all risk domains for Supplier Control Assessment/Due Diligence including but not limited to Information Security/Cyber, Business Continuity & Resiliency, Data Privacy, etc.
• Proven ability to anticipate and identify risks and effective mitigants.
• Ability to understand complex business processes and technical systems they support and synthesize the corresponding risks and controls and recommend adjustments if required.
• Demonstrated verbal and written communication skills and excellent analytical skills.
• Ability to collaborate with high-performing teams and individuals throughout the firm to accomplish common goals.
• Excellent problem-solving skills, inquisitive nature and comfort challenging current practices.
• Proven track record of taking ideas forward without supervision, make independent decisions, and challenging others, where appropriate.
• Minimum of Bachelor's degree; plus in Business Administration, Computer Science, Finance, Accounting or related discipline.