Join our Saudi Arabia EMEA Regional Cybersecurity and Technology controls team to navigate complex risk landscapes and fortify technology governance and regulatory compliance, making a pivotal impact in our firm's robust risk strategy. As an Information Systems Security Officer Analyst, you will contribute to the successful management of technology-aligned aspects of Governance, Risk, and Regulatory Compliance in line with the firm's standards and country-specific requirements.
You will leverage your broad knowledge in risk management principles and practices to assess and monitor risks and implement effective controls, regulatory compliance assessments, risk identification, control evaluation, and security governance. This role is crucial in advising on complex situations and enhancing the firm’s risk posture. Through collaboration and analytical skills, you will contribute to the overall success of the Technology Risk & Services team and ensure compliance with regulatory obligations and industry standards.
Job Responsibilities:
- Assess and monitor technology risks, ensuring compliance with firm standards, Saudi Arabia regulatory requirements, and industry best practices.
- Support regulatory audits.
- Implement effective controls in collaboration with cross-functional teams and stakeholders.
- Manage the review of application and Technology infrastructure in accordance with regulatory requirements.
- Drive security into local projects.
- Execute and evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm’s risk posture.
- Analyze complex situations, provide advice on risk management strategies, and support the implementation of risk mitigation measures.
Required Qualifications, Capabilities, and Skills:
- Bachelor's degree in information security or related fields.
- Knowledge in risk identification, assessment, and control evaluation, with a strong understanding of industry standards.
- Ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders.
- Knowledge of risk management frameworks, regulations, and industry best practices.
- Excellent problem-solving and troubleshooting skills.
- Good interpersonal skills.
- Fluent in writing, speaking, and listening in English.
- Ability to handle multiple issues through channels like intake portal, symphony, and emails.
- Ability to document business processes and flows.
- Ability to work with technology teams to integrate systems into business operations and services.
- General knowledge about Cloud (AWS, Azure, GAIA, etc.).
Desired Qualifications:
- CISM, CRISC, CISSP, or other industry-recognized risk and risk certifications preferred.
Location: Riyadh, Riyadh, Saudi Arabia (On-site)
Job Type: Full-time
Company Overview: J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals, and institutional investors. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and value diversity and inclusion at our company.
