DescriptionWe present an opportunity to make a significant impact on your career and embark on an adventure where you can redefine the boundaries of what's achievable. As a Lead Cybersecurity Engineer at JPMorgan Chase within the Cyber Technology Controls organization, you play a crucial role in an agile team that strives to improve, construct, and deliver trusted market-leading technology products in a secure, stable, and scalable manner.
As a Lead Cybersecurity Engineer at JPMorgan Chase within the Cybersecurity department, you will be an integral part of a team that works to develop high-quality cybersecurity solutions for various collaboration and communication platforms and products on modern cloud-based technologies. You will be responsible for identifying and mitigating security risks, as well as staying abreast of industry trends.
Job responsibilities
- Obtain formal training or certification on cybersecurity concepts and 5+ years applied experience
- Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems
- Develops secure and high-quality production code and reviews and debugs code written by others
- Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls
- Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability
- Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network
- Adds to team culture of diversity, equity, inclusion, and respect
- Deliver threat modeling to identify vulnerabilities in product design and provide control recommendations to mitigate those risks
- Engage in architecture and design reviews to ensure product alignment with the CTC Strategy and industry best practices
- Identify security risks and emerging threats associated with the product as well as the products they are dependent on
- Co-design product alternate control procedures and configurations, register them in our system of record, and ensure they evolve and remain effective
Required qualifications, capabilities, and skills
- Formal training or certification on secure and compliant product feature delivery concepts and 5+ years applied experience
- Skilled in planning, designing, and implementing enterprise level security solutions
- Advanced in one or more programming languages
- Proficient in all aspects of the Software Development Life Cycle
- Advanced understanding of agile methodologies such as CI/CD, applicant resiliency, and security
- Experience with threat modeling, discovery, vulnerability, and penetration testing
- In-depth knowledge of the financial services industry and their IT systems
Preferred qualifications, capabilities and skills
- Experience effectively communicating with senior business leaders