DescriptionJoin one of the world's most influential companies and leverage your skills in cybersecurity to have a real impact on the financial industry.
As a Lead Cybersecurity Architect at JPMorgan Chase within the Cyber and Tech Controls line of business, you are an integral part of a team that works to develop high-quality cybersecurity solutions for various software applications on modern cloud-based technologies. As a core technical contributor, you are responsible for carrying out critical cybersecurity architecture solutions by identifying, creating, and communicating risk, mitigation options, and solutions across multiple technical areas within various business functions in support of project goals.
Job responsibilities
- Provide guidance and cultivates skills for immediate team of architects on daily tasks and activities.
- Sets overall guidance and expectations for team output, practices, and collaboration.
- Anticipates dependencies with other teams to deliver products and applications in line with business requirements.
- Participating in threat modelling to identify vulnerabilities in product design and identifying control recommendations to mitigate those risks.
- Identify key security risks and emerging threats associated with the product, dependencies, technology stack, and customer base
- Engages technical teams and business stakeholders to discuss and propose technical approaches to meet current and future cybersecurity needs
- Defines the technical target state of their cybersecurity product and drives achievement of the strategy
- Identifies opportunities to eliminate or automate remediation of recurring issues to improve overall cybersecurity of software applications and systems
- Leads evaluation sessions with external vendors, startups, and internal teams to drive continuous improvement and assess cybersecurity design and technical credentials for use in existing systems and architecture
- Adds to team culture of diversity, equity, inclusion, and respect
Required qualifications, capabilities, and skills
- Formal training or certification on cybersecurity architecture concepts and 5+ years applied experience
- Experience working in technical teams of architects and/or engineers
- Experience developing architectural security patterns and/or frameworks, particularly involving SaaS and/or SSPM solutions
- Experience documenting security architectures for SaaS and/or SSPM solutions, including security controls, policies, roles, and responsibilities
- Experience participating in security assessments and reviews of SaaS and/or SSPM solutions to identify and remediate security gaps or risks
- Experience producing threat models as it relates to enterprise collaboration products
- Hands-on practical experience delivering system design, application development, testing, and operational stability
- Proficiency in automation and continuous delivery methods
- Demonstrated proficiency in software applications and technical processes within a technical discipline (e.g., public cloud, artificial intelligence, machine learning, mobile, etc.)
- Hands-on practical experience delivering enterprise-level cybersecurity solutions and controls
- Ability to evaluate current and emerging technologies to recommend the best solutions for the future state architecture
Preferred qualifications, capabilities, and skills
- Strong knowledge of software architecture, applications, and technical processes with considerable knowledge of Employee Platforms technologies
- Strong command of Cybersecurity organization practices, operations risk management processes, principles, architectural requirements, threats, and vulnerabilities
- Experience working with vendor, architects to ensure the successful onboarding and deployment of solution
- Development of Proof of Concepts to validate patterns/frameworks