Rodeo
ResourcesPartnersSign in

JPMorganChase

Tech Risk and Controls Lead

London
Posted 1 day ago
Sign up to applySee more jobs like this

How your CV stacks up

1Upload CV
2Analyse CV
3Improve CV

Upload your CV to see how well it fits this job role

?%

Tech Risk and Controls Lead

Job Description

Out of the successful launch of Chase in 2021, we are on a mission to continue creating products that solve real world problems and put customers at the center—all in an environment that nurtures skills and helps you realize your potential. Our team is key to our success. We're people-first. We value collaboration, curiosity, and commitment.

As a Vice President at JPMorganChase within the Accelerator Business, you are the heart of this venture, focused on getting smart ideas into the hands of our customers. You have a curious mindset, thrive in collaborative squads, and are passionate about new technology. By your nature, you are also solution-oriented, commercially savvy, and have a head for fintech. You thrive in working in tribes and squads that focus on specific products and projects – and depending on your strengths and interests, you'll have the opportunity to move between them.

While we're looking for professional skills, culture is just as important to us. We understand that everyone's unique – and that diversity of thought, experience, and background is what makes a good team, great. By bringing people with different points of view together, we can represent everyone and truly reflect the communities we serve. This way, there's scope for you to make a huge difference – on us as a company, and on our clients and business partners around the world.

Job Responsibilities

  • Coordinate and respond to auditor RFIs, interviews, and walkthroughs by triaging asks, assigning owners, quality-checking responses, and packaging audit-ready evidence.
  • Drive remediation of control gaps by translating findings into actionable engineering backlog items with clear acceptance criteria and target dates.
  • Review Technology Control Standards and associated requirements, and ensure control procedures and documentation remain current and aligned to firm expectations.
  • Execute onboarding and compliance checks for required firm tooling and telemetry by verifying coverage, correctness, and timely adoption for newly onboarded services.
  • Lead end-to-end delivery of custom control procedures by defining control intent, aligning stakeholders, implementing operational steps, and confirming.
  • Develop and track mitigation plans for residual risks by setting risk-reduction actions, owners, milestones, and governance checkpoints.
  • Run application oversight governance (AO Governance) by monitoring control posture, overdue findings, and control exceptions, and ensuring timely remediation.
  • Perform thematic analysis of control and audit findings to identify systemic risks and propose preventative controls, automation, or process improvements.
  • Produce risk reporting and executive-ready updates by consolidating metrics, summarizing key risks, and preparing materials for firmwide forums.
  • Support vulnerability management governance by monitoring overdue and near-due items, recommending mitigations, and converting remediation into prioritized engineering backlogs.
  • Define and track control health KPIs/KRIs by establishing reporting routines that demonstrate control effectiveness, sustainability, and risk reduction over time.

Reasons to use Rodeo

I’m in my final year doing Economics and I don’t know whether to apply for grad schemes now or do a masters first. What do you think?

Honest answer — it depends on where you want to end up. A lot of top grad schemes (Big 4, civil service, banking) don’t need a masters. Let’s look at the ones you’d be competitive for now, and we can decide if a masters actually adds anything.

Also worth knowing: most autumn 2026 applications are open now. Timing matters more than you think.

Start with a chat, not a search bar

Grad scheme, placement, apprenticeship? Not sure what you want yet — that's fine. Your agent talks it through with you and turns "I have no idea" into a shortlist.

P

Graduate Consultant — 2026 Scheme

PwC·London, UK
£35,000/yr

Why you're a good match

Strong

Your economics background and your summer at a regional bank line up with what PwC looks for on the consulting scheme. Applications close in four weeks.

See breakdown
Save jobNot relevant
View details

It searches the market for you

Every day your agent scans the market matching roles against what actually matters to you, not just keywords on a CV.

Why you're a good match

You’ve got the grades and the economics background, and your bank internship is exactly the experience this scheme looks for. Apply soon — deadlines close within the month.

See breakdown
Strong

Experience fit

Your summer at the bank plus your econometrics coursework map directly to the day-one responsibilities on this scheme — client modelling, market briefings, and deal support.

See breakdown
Strong

Only hits

No noise. No "maybe this fits." Just roles with a clear explanation of why they're right — and where to focus when applying.

Required Qualifications, Capabilities And Skills

  • Professional certifications such as Cloud Certifications, CISSP, CISM, or GIAC.
  • Strong working knowledge of GRC tools like Archer, infrastructure as code, and control enforcement in dynamic and hybrid environments.
  • Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection.
  • Extensive experience in Technology with a strong understanding of Operational Risk and Controls including Tech/Cyber Risk.
  • Ability to work with data from disparate sources to build a cohesive view on risk.
  • Strong written and verbal communication skills with the ability to effectively communicate and present security risk concepts with business and technology partners.
  • Experience working in regulated industries, in particular leveraging technology standards, frameworks, compliance, and industry-recognized best practice/standards (e.g., ITIL, NIST, ISO, PCI, SOC).
  • Collaboration with internal and external technology audits (3rd Line of Defense), CCOR Operational Risk Management deep dives and testing (2nd Line of Defense), and the ability to advocate on behalf of subject matter experts.

Get help with your application

Your very own career expert that helps elevate your application to the next level.

Get help applying for this job

ABOUT US

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals, and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

About The Team

Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers, and employees up for success.

Control Management maintains a strong and consistent control environment through a joint accountability model that aligns managers with each function and region to mitigate operational risk. The team focuses on four areas: Control Design & Expertise, Risks & Controls Identification/Assessment, Issues & Control Deficiencies, and Control Governance & Reporting.

Trusted by 25,000+ job seekers

“It took my CV and asked me questions relevant to understanding what kind of jobs to suggest for me. Suggestions were almost perfect. Jobs were exactly what I’ve been looking for.”

Jessica, London

Get help applying for this job

Skills

Cloud Certifications
CISSP
CISM
GIAC
GRC Tools
Infrastructure As Code
Control Enforcement
Operational Risk
Information Security
Risk Assessments
Regulatory Compliance
Incident Management
Vulnerability Management
Data Protection
Technology Standards
Audit Collaboration

Location

London, England, United Kingdom

Sign up to applySee more jobs like this