Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers.

As a Senior Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Technology Controls organization, you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains.

Job responsibilities

•    Designs and implements solutions for the threat modeling community
•    Regularly provides technical guidance and direction to support the business and its technical teams, contractors, and vendors
•    Is accountable for integration, upkeep and availability of small-medium size vendor applications
•    Communicates JPMC technical control requirements to the vendor to improve security posture
•    Partners with the vendor product and engineering teams to test and deploy JPMC requested features
•    Leads design and implementation of integration with other JPMC applications to vendors’ products.
•    Develops secure and high-quality production code, and reviews and debugs code written by others
•    Drives decisions that influence the product design, application functionality, and technical operations and processes
•    Serves as a function-wide subject matter expert in one or more areas of focus
•    Actively contributes to the engineering community as an advocate of firm-wide frameworks, tools, and practices of Threat Modeling
•    Influences peers and project decision-makers to consider the use and application of leading-edge technologies

 

Required qualifications, capabilities, and skills

•    Formal training or certification on software engineering concepts and 5+ years applied experience.
•    Skilled in planning, designing, and implementing enterprise-level security solutions
•    Advanced in one or more programming languages (java, python)
•    Advanced knowledge of software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, thread modeling)
•    Ability to tackle design and functionality problems independently with little to no oversight 
•    Hands-on experience delivering system design, application development, testing, and operational stability with Java; REST APIs; Web Services; building event-driven Micro Services; Kafka streaming, Spring Framework
•    Experience with provisioning tools including Terraform and Cloud Formation as well as CI/CD
•    Experience with containerization technologies and orchestration platforms including Docker, Kubernetes, ECS, etc. 
•    Proficient with Data modeling and database design
•    Experience with observability and monitoring configuration tools using Splunk, Grafana, Prometheus, etc.
•    Agile development methodologies, application 
 

•    Experience with threat modeling
•    Large Language Models and prompt engineering
•    AWS Solutions Architect Associate or Professional Certification(s)
•    Atlas experience with EC2, ECS, RDS MS SQL Server, S3, ASG, Route53
•    Spinnaker
•    Shell scripting and Unix admin