Tech Risk Control -Technology Resiliency Lead

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management.

As a Tech Risk & Controls Lead at JPMorgan Chase, Corporate Sector, you will drive the firm's resiliency governance and technical risk management across critical technology platforms.

You will partner with engineering, risk, and business stakeholders to ensure robust recovery strategies, effective controls, and compliance with regulatory standards.

Your expertise will help safeguard business continuity, minimize operational disruptions, and embed best-in-class resiliency practices across the portfolio.

Job responsibilities:


* Lead the resiliency governance framework for applications, aligning artifacts to firm policies and standards.


* Maintain and refresh business impact assessments, recovery strategies, plans, and runbooks; ensure version control and quality.


* Coordinate the annual test calendar (recovery strategy validation, failover, tabletop/MEPC) and assemble exam-ready evidence.


* Schedule, prepare, and track resiliency tests; document results, issues, and remediation actions.


* Support controlled chaos experiments with engineering teams using firm-approved tooling; maintain guardrails and safe blast radius; capture outcomes and lessons learned.


* Participate in resilience design reviews; contribute questions and observations to strengthen recovery approaches.


* Understand modern application patterns (microservices, REST/event driven) and failure handling (timeouts, retries, backoff, circuit breakers) to inform governance reviews.


* Publish and track SLOs and recovery objectives (RTO/RPO, MTTR) for critical services; maintain dashboards and management information.


* Summarize trends on test coverage, control effectiveness, and issue aging for leadership updates.


* Log and track issues, exceptions, and risk acceptances to durable closure; escalate as needed.


* Coordinate across technology, cybersecurity, architecture, risk/compliance, and audit teams.

Required qualifications, capabilities, and skills


* 5+ years of experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation


* 10 + years of experience in Security and /or Risk Management and / or Corporate Technology with an aptitude in application and platform security


* Working knowledge of Cloud and modern application architecture:
+ Core resiliency constructs (Multi AZ basics, backup/restore, health checks, auto scaling)
+ Understanding of distributed systems basics and failure patterns (timeouts, retries, backoff, circuit breakers).


* Experience coordinating tests/exercises and documenting results; ability to track remediation to completion.


* Proficiency with Excel or similar for management information; able to interpret SLOs and RTO/RPO and ...