TRC Analyst

Key Responsibilities :

Risk Mitigation & Controls

-Maintain a strong risk and control framework for Kinexys technology within Onyx.

-Collaborate with Cyber Technology & Controls, TRC, and application owners to execute risk and compliance agendas.

-Manage remediation of CORE issues, action plans, risk assessments, and control testing.

-Develop processes, policies, and procedures to address identified control gaps.

-Monitor regulatory changes and assess their impact on the control environment.

-Work with Business Controls to maintain a repository of artifacts and evidence.

-Ensure compliance with JPM Technology control standards and industry regulations.

Technology & Security Oversight

-Ensure security best practices in blockchain-based applications, cloud, and distributed ledger technologies.

-Work with engineering and security teams on CI/CD, SDLC, APIs, AWS Cloud, DevOps, and enterprise operations.

-Oversee security architecture and access management (Azure AD, AWS).

-Familiarity with internal JPM systems (Archer, CORE, SEAL, AOS, 4Site, DNA, DFR) is a plus.

Project Management & Governance:

-Lead policy and control improvements, enhancing transparency and governance.

-Manage multiple workstreams while engaging with senior leadership and regulators.

-Tailor complex regulatory requirements into clear, actionable messages.

-Document findings and create reports for executive leadership and regulatory stakeholders.

Main Skills & Qualifications

Technical Skills:

-Risk & ControlsManagement (Information Security, Cyber Risk, Compliance)

-Cloud Platforms: AWS, Azure AD

-Blockchain & Distributed Ledger Technologies

-Information Security & Cybersecurity Architecture

-CI/CD, DevOps, API Security, SDLC

-Technology Governance & Compliance (Regulatory & Audit Experience)

-JIRA, Confluence, SharePoint (Collaboration & Documentation Tools)

Industry Experience:

-Financial Services & Wholesale Payments

-Regulatory Frameworks & RiskAssessments

-JPM Internal Systems (Archer, CORE, SEAL, etc.)

Soft Skills:

-Leadership & Influence (Ability to engage stakeholders at all levels)

-Strong Analytical & Problem-Solving Skills

-Excellent Communication & Technical Writing (Convey complex security/risk concepts effectively)

-Project & Process Management (Managing governance initiatives, audits, risk programs)

-Adaptability (Working in emerging businesses with ambiguity and fluid priorities)

Certifications:

-CISA (Certified Information Systems Auditor)

-CRISC (Certified in Risk and Information Systems Control)

-CISSP (Certified Information Systems Security Professional) or other security certification.

Interested candidates can share their cv to swarna.karaka@scienstechnologies.com