Insider Threat Program Manager

Global Security (GS) protects the firm's employees and assets throughout the world.

This responsibility includes the development of security and safety policies and procedures, regulatory and legislative compliance, corporate aviation, guard management, alarm response, crisis management, ATM, branch and corporate building security and customer safety, physical crime investigations, workplace violence, fire and life safety, pre-employment screening, fraud and employee investigations.

Within GS, the Threat Detection and Analysis team is responsible for identifying potential threats against the firm and its workforce from internal and external actors and developing strategies to mitigate those threats to protect the firm's reputation, workforce, clients, and assets.

As an Insider Threat Program Manager within our Global Security team, you will enable a mission-critical insider threat capability at global scale-owning strategy, execution, and measurable outcomes that protect our people, data, and platforms, with direct visibility to senior leadership.

You will operate at the nexus of intelligence, analytics, and governance-translating complex signals into decisive action, resilient controls, and clear executive narratives.

You will partner across the enterprise-Cybersecurity, Technology, Risk Management & Compliance, Legal, HR, and Regulatory Affairs-to stay ahead of emerging threats and drive firmwide risk reduction.

You should be highly motivated with strong interpersonal skills, leveraging your insider risk, threat analysis, and/or program management experience to lead multiple assignments in a fast-paced environment.

Your ability to work effectively with a diverse set of stakeholders is essential, and the role requires creativity, critical thinking, strong communication skills, and the ability to drive change across a large global organization.

Job Responsibilities


* Strategy to execution: Implement the insider threat operating model within JPMorganChase -define priorities, success metrics, and deliver the program with clarity, pace, and audit readiness.


* Metrics that matter: Define, automate, and mature key risk indicators (KRI) / Key performance indicators (KPI) and dashboards; turn ambiguous signals into prioritized risks, decisions, and accountable action plans.


* Governance and controls: Run cross-functional forums, align to enterprise risk frameworks, and close control gaps with clear ownership, timelines, and evidence.


* Intelligence and learnings: Curate notable insider events; translate lessons learned into updated controls, playbooks, and targeted awareness that changes behavior.


* Stakeholder enablement: Advise leaders and teams integrating insider risk into assessments and operations; deliver role-specific training and education.


* External benchmarking: Track peer practices and industry frameworks; integrate innovations to keep the program on the leading edge.


* Executive communications: Synt...