Information Security - Quality Assurance
- JMorgan
- 2 to 4 Yrs
- Hyderabad
- 6 years ago
- Email to a friend
- Report this job
Job Description
As a Cybersecurity & Technology Controls (CTC) organization, we have aligned our cybersecurity, access management, controls and resiliency teams to help accelerate the adoption of GT Vision and as a function, become a strategic enabler for the businesses we support. As CTC, we will proactively help the firm and put in place the capabilities and solutions necessary to become a leading technology company from technology controls, resiliency and security standpoint
POSITION SUMMARY:The Assessment & Assurance department sits within the Cybersecurity & Technology Controls (CTC) Governance & Controls group and owns the Risk Assessments & Measurement product.
As an independent function within Assessment & Assurance, the Quality Assurance ( QA ) Team is responsible for:
Defining a technology quality management program that defines, measures and monitors quality and supports continuous improvement in line with firmwide requirements.
Developing and conducting a continuous quality testing program against internal and regulatory requirements to ensure quality, completeness and accuracy of technology assessments delivered, including pre-closure review of significant issues and findings.
Specifically on the centralized assessment execution model that strives to optimize control testing processes and drive efficiencies, the QA Team is integral to ensuring that the centralized assessments meet the quality requirements from internal and regulatory requirements aspects.
This position is part of the global QA Team and will be based in Hyderabad, India.
PRIMARY RESPONSIBILITIES:
Perform independent QA testing activities to validate quality, completeness and accuracy of technology assessments delivered, including pre-closure review of significant issues and findings stemming from these assessments
Perform analysis on QA findings to discern trends and focus areas for appropriate management
Participate in the development of technology quality management program that includes (but not limited to) framework, methodology, policy, standard, guidelines, and QA testing runbooks
Actively cross-trains in application of QA methodology and practices across technology assessments
Actively develops methods for team effectiveness; questions and investigates the reliability and integrity of data, the validity of conclusions, and the appropriateness of assumptions made
Work with appropriate stakeholders (e.g. assessment leads and Information Security Managers (ISMs)) to identify improvement and operational excellence opportunities related to assessment quality, assessment process and the QA program.
Effectively supports the team's collective mission and objectives through personal accountability over work tasks and business results
Communicate findings and reasonable practices with appropriate stakeholders
Actively support continuous internal education practices with peers and colleagues in subject matter areas related to information security, quality assurance, and technology risk management.
Participate in additional key control projects related to the enhancement of technology risk assessment and measurement programs
QUALIFICATIONS:
At least 10 years experience in information security and/or technology risk management, assurance services or risk & control assessments, including at least 2 years experience in executing risk & control assessments and testing.
Has a strong background in technology risks and controls, technology audit, technology regulatory controls testing, and/or application and infrastructure risk and security assessments
Adept at meeting deadlines in a high-pressure, multi-stakeholder environment whilst maintaining high quality work
Effective at deep-diving and investigating issues to determine root causes, discern risk implications and successfully broker practical resolutions
Proficient verbal and written communication skills, including the ability to effectively
Good track record of task ownership and collaboration
Controls mindset that is evident by adherence to controls and standards
Reasonable knowledge of key global and regional regulations and associated technology requirements, e.g. Sarbanes-Oxley, Payment Card Industry Data Security Standard, etc.
The following are qualifications and experiences that are advantageous to the candidacy but not mandatory:
Familiarity with the firm's technology risk, control and/or compliance assessments and processes;
Experience with the build-out and execution of a new team, process or procedure, the ability to identify risks and issues, and the capability to successfully navigate them through to completion; and/or
Relevant professional certification attained, e.g. CISA, CRISC, CRMA, Six Sigma, and/or PMI-RMP.
Employement Category:
Employement Type: Full timeIndustry: Banking / Financial ServicesRole Category: General / Other SoftwareFunctional Area: Not ApplicableRole/Responsibilies: Information Security - Quality AssuranceContact Details:
Company Name: JMorganLocation(s): Hyderabad
Keyskills: communication skills quality assurance commercial banking functional testing financial services manual testing accountability access management reliability testin
Similar positions
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in