Global Supplier Services - Supplier Assurance Senior Associate

JPMorgan Chase

  • Metro Manila
  • Permanent
  • Full-time
  • 16 days ago
Job Category: Operating Risk & Control MgtJob Description:Join the Supplier Assurance Services (SAS) team, part of Global Supplier Services (GSS), reporting directly to JPMC's Chief Procurement Officer. SAS is accountable for executing global risk management and assessment programs for all in-scope suppliers within JPMC's Corporate Third-Party Oversight (CTPO) program, supporting Cybersecurity and Technology (CTC) functions, and enhancing JPMC's supply chain security posture. As a Supplier Control Assessor within SAS, you will be responsible for performing technical risk and control assessments of supplier environments, including infrastructure, application stacks, and other technologies. You will ensure compliance with JPMC Corporate Policies & Standards and validate that technical risks are managed, and security controls are implemented. You will partner with CTC and Lines of Business (LOBs) to focus on assessing supplier control environments and managing action plans and risk acceptances.Job Responsibilities:
  • Engage with multiple LOB Delivery Managers for firm-wide suppliers to ensure compliance with required assessments per JPMC policy and procedures.
  • Drive all aspects of the control assessment of suppliers.
  • Assess completed questionnaires and supporting fieldwork materials to ensure they are complete and meet JPMC expectations.
  • Lead supplier assessments, providing overall IT and cybersecurity risk and controls expertise.
  • Identify control breaks and vulnerabilities within suppliers' IT environments.
  • Document findings and work with the LOB Delivery Manager and Information Security Manager to resolve findings through action plans (APs) or seek risk acceptance (RA) approvals.
  • Validate evidence from suppliers before action plans are closed.
  • Escalate issues associated with suppliers as needed.
  • Identify opportunities for process improvements to deliver increasing operational efficiency in the processes, identify opportunities for improving supplier posture and JPMC's supplier management processes, including expanded monitoring, KRI tracking, etc.
  • Assist with various SAS program initiatives, working closely with SAS Leads.
  • Support internal education and best practices sharing with peers and colleagues, as well as third-party education and awareness, as needed.
Required Qualifications, Capabilities, and Skills:
  • More than 5 years of experience in Technology, Technology Risk & Controls, Technology Audit, Cybersecurity, Application Security, Cloud Security (SaaS, PaaS & IaaS), and Third-Party Outsourcing Risk Management within a large enterprise-level environment.
  • 4+ years of work experience in one or more areas of infrastructure (e.g., UNIX, Windows), databases (e.g., Oracle, SQL Server), and networks.
  • Understanding of industry risk frameworks (ISO27001, NIST, etc.).
  • Strong written and verbal presentation skills at the senior management level.
  • Experience debating issues with senior decision-makers and pushing back when necessary.
  • Strong written and verbal presentation skills at the senior management level across various business groups.
Preferred Qualifications, Capabilities, and Skills:
  • CISSP, CISA, or CCSP certification is a plus.
About Us:JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our for more information about requesting an accommodation.About the Team:Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success.Global Supplier Services (GSS) manages the source-to-pay cycle, engaging with suppliers, negotiating contracts, conducting risk assessments and evaluating the customer experience. Global teams support sourcing, third party oversight, procurement and payment operations, supplier relationship management and customer experience.

JPMorgan Chase

Similar Jobs

  • Global_Reward Consultant_Ph_Senior Associate

    EY

    • Taguig City, Metro Manila
    At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're …
    • 24 days ago

  • Risk Assurance-IT Senior Associate

    PwC

    • Makati City, Metro Manila
    Line of Service Assurance Industry/Sector Not Applicable Specialism Assurance Management Level Senior Associate Job Description & Summary A career within Information Techno…
    • 2 months ago