The cybersecurity and technology regulatory and public policy landscape continues to rapidly evolve requiring the firm to maintain a deep understanding of the policies, processes and priorities of the regulatory authorities and public agencies in order to develop proactive strategies to meet regulatory expectations and foster sound public policy. As an experienced leader in cybersecurity and technology policy, you will play a leading role in shaping the key regulatory, public policy, technology and security issues facing the firm, the industry and the financial system globally. This is a tremendous opportunity within the Cybersecurity & Technology Controls (CTC) group - the Chief Information Security Officer's organization - which has as its top priority enabling the business by keeping the firm safe, stable and resilient.
As an experienced leader in Cybersecurity & Technology Controls (CTC), Technology & Cyber Policy & Partnership Team, you will support and drive the development of engagement strategies based on research and analysis of new government policies, regulations, industry initiatives and emerging technology trends. You will also regularly meet with partners in industry and government to share ideas and advance the firm's policy priorities. Working in this role will sharpen your understanding of cyber risk management and strategy, while allowing you to continue to develop your leadership, management and communication skills. While the role requires a deep understanding of cybersecurity and technology regulatory policy and regulatory expectations, success hinges on teamwork and leadership and will require building relationships and leading partners and stakeholders across initiatives. Prior instances of applying this experience at a large financial institution would be an advantage.
Job responsibilities
- Lead the firm’s Technology and Cybersecurity Policy and Partnerships work in APAC
- Engage in direct advocacy with policy makers and regulators across APAC jurisdictions to advance policy priorities and mitigate legislative and regulatory risk
- Identify opportunities and develop strategies to engage key stakeholders on a range of issues using different means to do so
- Anticipate significant regulatory, policy and political trends related to technology and cybersecurity and develop strategies to navigate the environment
- Directly support the regional chief information security officer to ensure their awareness and understanding of key regulatory and public policy developments impacting the firm
- Assess and communicate impacts from regional regulatory or policy developments to the firm’s global technology and cybersecurity strategies and clearly communicate that to central leadership
- Collaborate with cross-functional partners in region such as Government Relations, Compliance, Legal, Chief Data and Analytics Office and the Third Party risk management team on priority policy issues
- Build strong external relationships and represent the firm with the public sector, industry peers, trade associations, think-tanks, academia, and consortia in order to advance JPMC’s cyber and tech policy priorities
- Manage the production and dissemination of materials to support engagement with external stakeholders
Required qualifications, capabilities, and skills
- Bachelor’s Degree in any relevant area such as Computer Science, Cybersecurity, public policy or international relations
- 7+ years of understanding of financial and cross-sectoral technology and cybersecurity regulations and government policy making in region, as well as international relations
- Proven track record of leading a strategic policy program and managing external stakeholders such as regulators, industry associations and others
- Ability to liaise between cybersecurity and technology teams, as well as cross-functional partners such as government relations and legal
- Superior analytical skills to enable accurate assessment of changes in the regulatory landscape and impact to the firm
- Excellent written and verbal communication skills; ability to break down complex problems and articulate them clearly to a non-technical audience
- Results-oriented with a bias to action. Takes initiative to identify areas to add value and executes quickly and accurately
- Strong ability to think strategically, prioritize issues and manage competing tasks