DescriptionBe a leader at a company that is committed to shaping the future of cybersecurity in financial services. Together, let's strive to explore new possibilities and achieve remarkable success.
As a Senior Director of Cybersecurity Architecture at JPMorgan Chase within the Cybersecurity and Technology Controls organization for the Consumer and Community Banking line of business, you lead multiple technical areas, manage the activities of multiple departments, and collaborate across both business and technical domains in the architecture function to execute critical initiatives of the function. Your expertise is applied cross-functionally to drive the ideation, adoption, and implementation of technical methods within various teams and aid the firm in remaining at the forefront of industry trends, best practices, and technological advances in cybersecurity.
Job responsibilities
- Cultivate security culture with your product technology and business colleagues. Build a vision around the next level of security maturity for JPMC’s Digital Banking Platform with inputs from the security organization and work with Product and Engineering Leaders to deliver on that idea. This vision must enable business outcomes and continuously raise the security bar and not one or the other.
- Know your product across its breadth and depth. Be fluent in your product’s strategy and roadmap as well as its key investment programs. Identify unfamiliar technology components, capabilities, and business concepts and be self-motivated to learn all about them, applying critical thinking to identify hidden issues along the way.
- Serve as a product security thought leader. Learn from your product and cybersecurity teams and share best practice in both directions. Be recognized in your product as the clear point of escalation and subject matter expert for IT Risk and Cyber domains. Serve as a cyber risk advisor to the Digital leadership team and help prioritize initiatives with the greatest ROI using rich datasets.
- Partner with Engineering teams to solve complex problems specific to fields such as Payments and banking APIs
- Act with urgency managing emerging issues. Proactively monitor Key Risk Indicators to ensure issues are identified, quantified, communicated, and managed in a timely manner, including recommendations for resolution and identifying the root cause/key themes.
- Enable and partner with application architects and engineering leaders to design secure, scalable and resilient applications
- Leads multiple cybersecurity architecture and process implementations across digital to achieve Consumer and Community Banking architecture objectives
- Provides leadership and high-level direction to teams while frequently overseeing employee populations across multiple platforms, divisions, and lines of business
- Acts as the primary interface with senior leaders, stakeholders, and executives to drive consensus across competing objectives
- Champions the firm’s culture of diversity, equity, inclusion, and respect, and prioritizes diverse representation
Required qualifications, capabilities, and skills
- Formal training or certification on software engineering concepts and 10+ years applied experience
- Experience running teams of architects that design cybersecurity solutions operations on cloud-based platforms and applications
- Hands-on practical experience delivering enterprise level planning, design, and implementation of enterprise-level security solutions and controls related to: Secure Software Development Life Cycle (SSDLC) (e.g. code review, risk assessments, threat modeling, static code analysis, and dynamic application scanning), Modern Security Engineering/Architecture practices (e.g. micro services, containers, orchestration, continuous integration & delivery pipelines, API first, service delivery & integration), Solution Development & Delivery and Product technologies.
- Hands-on practical experience in cybersecurity architecture that can be applied and repeated across businesses, functions, and systems
- Experience designing cybersecurity products and solutions for public cloud-based applications and infrastructure
- Experience developing and leading large, cross-functional teams of technologists
- Subject matter expertise in multiple security domains (e.g., mobile, application security, vulnerability reduction, data protection, encryption, logging and monitoring, network security, etc.)
- Advanced in one or more programming languages
- Demonstrated prior experience influencing across highly matrixed, complex organizations and delivering value at scale
- Experience leading complex projects and supporting system design, testing, and operational stability
- Experience hiring, developing, and recognizing talent
Preferred qualifications, capabilities, and skills
- Experience working in regulated industries, in particular leveraging technology standards, frameworks, compliance, and industry recognized best practice / standards (e.g. NIST, ISO, PCI, SOC).
- Certification in Public Cloud Technology from one of the major Cloud Service Providers (e.g. AWS Certified Solutions Architect, Microsoft Azure Architect, Google Cloud Architect)
