Information Security Officer
Join our dynamic team as a Saudi Arabia Information Security Officer within the CEEMEA Cybersecurity and Technology Controls team. In this role, you will play a pivotal part in navigating complex risk landscapes and fortifying technology governance, contributing significantly to our firm's robust risk strategy.
Job Summary
As a Saudi Arabia Information Security Officer, you will be responsible for managing technology-aligned aspects of Governance, Risk, and Compliance in accordance with the firm's standards and regulatory requirements. You will leverage your extensive knowledge in risk management principles and practices to assess and monitor risks, implement effective controls, and enhance the firm’s risk posture. Your expertise in risk identification, control evaluation, and security governance will be crucial in advising on complex situations and ensuring compliance with regulatory obligations and industry standards. Through collaboration and analytical skills, you will contribute to the overall success of the Technology Risk & Services team.
Job Responsibilities
- Assess and monitor technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices.
- Support the implementation of effective controls in collaboration with cross-functional teams and stakeholders.
- Evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm's risk posture.
- Analyze complex situations, provide advice on risk management strategies, and support the implementation of risk mitigation measures.
Required Qualifications, Capabilities, and Skills
- Minimum of 5 years of experience in the Saudi Arabian financial sector, working with international firms or auditor companies, with expertise in technology risk management, information security, or a related field.
- Proficient knowledge of SAMA and NCA regulations related to Technology, Cybersecurity, and Data Protection, with experience in addressing these regulatory requirements.
- Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards.
- Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders.
- Proficient knowledge of risk management frameworks, regulations, and industry best practices.
Preferred Qualifications, Capabilities, and Skills
- Higher education in Cybersecurity, Information Security, or Technology.
- Industry-recognized risk certifications such as CISM, CRISC, or CISSP.
This role offers an exciting opportunity to make a significant impact on our firm's risk strategy and technology governance. If you are passionate about risk management and have the required expertise, we encourage you to apply and join our team.
J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.