Bengaluru, Karnataka, India
2 days ago
Associate, Third-Party Assessments

The Supplier Assurance Services (SAS) team performs comprehensive risk assessments of suppliers within JPMC’s Corporate Third-Party Oversight (CTPO) program. SAS also supports JPMC’s Cybersecurity and Technology functions by designing and implementing controls and processes to further enhance the security posture of JPMC’s supply chain. SAS is part of Global Supplier Services (GSS), reporting directly to JPMC’s Global Head of Corporate Third-Party Oversight.

Job Summary

As an Associate, Third-Party Assessments within the Supplier Assurance Services (SAS) team, you will play a crucial role in performing comprehensive risk assessments of suppliers. You will support Global Assessment Operations and ensure the quality review of Third-Party Assessment as per Process Assurance process. You will also be involved in designing and implementing controls and processes to enhance the security posture of JPMC’s supply chain. This role provides an opportunity to engage with stakeholders and contribute to the future of Third-Party cybersecurity assessments for JPMC.

Job responsibilities:

Drive and perform end to end quality review of Third-Party Assessment as per Process Assurance process in line with the operational procedures and standards. Assist the execution of the Assessments and control documentation as per standards, ensuring appropriate documentation and in compliance with program guidelines and standards. Also, challenging information provided to support the control design and operating effectiveness for TPRM Controls and escalate areas of concern and non-compliance to upper management. Identify trends, common quality issues and partner with supplier control assessment operations to enhance quality of supplier control assessments. Develop and deliver education/best practices with peers and colleagues, as well as global hubs and actively participate in strategic and tactical initiatives for global operations. Interfacing with regional hubs/operational leads and support for governance policies and program initiatives implementation. Contribute to and follow-up of internal and external audits or any regulatory initiatives regarding Third Party Oversight where required. Identify opportunities for automation to reduce manual intervention for various data related process and Identify opportunities for process improvement to deliver operational efficiency in the process. Support administration updates for the firm's supplier assessment system of record and support for various record hygiene related tasks.

Required qualifications, capabilities, and skills:

Minimum 8+  years of relevant experience in Risk Management, Technology Risk & Controls, Technology Audit, and Third-Party Outsourcing Risk Management within a large enterprise level environment either in control delivery, control review, operations, or assessment capabilities Good understanding of relevant aspects of the Third-Party Oversight and Supplier Assurance Programs, lifecycle, execution best practices and supplier risk awareness. Experience working in Supplier Management, Risk and Controls Management, Technology Audit, or Information Security team(s). Problem-solving attitude and take the initiative when the opportunity arises and ability to demonstrates initiative with proven flexibility, adaptability, and reliability. Demonstrated technical understanding of pertinent business areas. Sound judgment, learning agility, and an elevated level of professional and personal integrity. Effective communication (written and verbal) and social skills; ability to effectively interact with senior/executive management.

Preferred qualifications, capabilities, and skills:

CISSP, CISA, CISM, CCSP or CRISC certification or similar is a plus. Background in technology Audit, Quality Review, Governance, risk, and compliance
Confirm your E-mail: Send Email