Security Operations Senior Associate - DLP - Content Developer

Seize the opportunity to enhance cybersecurity, utilizing your skills in threat analysis and incident response to protect vital data and systems.

As a Security Operations Senior Associate in the Cyber and Tech Controls line of business, you will play an important role in safeguarding the organization's digital assets and infrastructure by proactively detecting, assessing, and responding to threats, vulnerabilities, and security incidents. Drawing on your knowledge of security principles, practices, and theories, you will collaborate with cross-functional teams to develop a coordinated approach to security and educate employees on best practices, policies, and procedures. Your work will have a direct impact on departmental outcomes, as you plan and ensure progress, identify gaps in information, and conduct analyses to solve complex cybersecurity problems. By utilizing your advanced analytical, technical, and problem-solving skills, you will contribute to the continuous improvement of our cybersecurity posture and help maintain the integrity, confidentiality, and availability of sensitive data and systems. 

Our Data Loss Prevention (DLP) team performs many functions in support of data security at the firm. The team develops world class solutions for detection and prevention of sensitive information leaving the firm based on in-depth analysis. In addition, the team develops new data identifiers, builds and maintains tools and capabilities for data loss triage prioritization, analyzes trends and patterns of DLP activity and works with stakeholders to reduce the risk of data loss across all lines of business. 

Job responsibilities 

• Design  configure and implement DLP policies on Microsoft Information Protection (Microsoft Purview) suite and Symantec DLP at an enterprise level
• Utilize scripting skills and analytical capabilities to automate deployment and smoothly run the maintenance
• Provide expertise and guidance in management, configuration and optimizations of Microsoft O365 security solutions
• Contribute  to development of new data identifiers, data governance policies, standards and procedures ensuring compliance and data integrity
• Collaborate with stakeholders, business and technology groups to provide guidance, advice on best practices, define data management requirements, establish effective controls, practices and procedures
• Use your knowledge and expertise to respond to incidents, perform risk reviews, vulnerability assessments and identify new and emerging threats
• Leverage your expertise to deliver cost-effective solutions and leverage your communication and presentation skills to engage senior leaders on important issues and updates
• Monitor and analyze security infrastructure, contributing to detection and response to threats, vulnerabilities, and incidents to ensure the integrity, confidentiality, and availability of sensitive data and systems
• Conduct in-depth security investigations, analyzing logs, network traffic, and other data sources to identify root causes, assess impact, and gather evidence for response and mitigation actions
• Develop and maintain threat detection and response playbooks, incorporating industry best practices, regulatory requirements, and lessons learned from previous incidents
• Collaborate with cross-functional teams to develop and implement coordinated security strategies, policies, and procedures, while educating employees on best practices

Required qualifications, capabilities, and skills 

• 3+ years of experience in cybersecurity operations, including threat detection, incident response, and vulnerability management
• Cybersecurity Operations or SOC related experience is a must
• Excellent  command of cybersecurity organization practices, data loss prevention concepts, security incident triage, insider threat, operations risk management principles and processes, architectural requirements, emerging threats and vulnerabilities, and incident response methodologies
• Hands-on  experience of configuration and management of Microsoft Information Protection (Microsoft Purview) in large-scale enterprise environment with knowledge of the following areas – Information Protection/Sensitivity Labels, Data Loss Prevention, Insider Risk/Threat Management
• Strong scripting skills in PowerShell, Python etc. and working knowledge of regular expressions
• Experience of technical log reviews, Symantec DLP or Microsoft Information Protection and Splunk Enterprise Security or other SIEM too
• Experience of development and implementation of new DLP or insider threat use cases and process automation
• Excellent analytical and problem-solving skills with ability to translate complex technical concepts into practical solutions
• Demonstrated experience in network traffic analysis, log analysis, vulnerability analysis, exploitation, and security investigation techniques to identify and respond to security incidents
• Proficiency in scripting to automate tasks, implement controls, and manipulate data
• Advanced knowledge of security protocols, cryptography, authentication, authorization, and security architecture design principles

Preferred qualifications, capabilities, and skills 

• Possess two or more of the following certifications - Microsoft Certified: Security, Compliance and Identity Fundamentals, Cybersecurity Architect Expert, Security Operations Analyst Associate, Azure Security Engineer, CISSP, Splunk Certified Power User
• Experience with Agile methodology and the ability to work with at least one of the common frameworks with knowledge of tools like Confluence, JIRA and Service-Now.
• Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with a focus on recommendations for enhancements or remediation. 
• Good understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity and foundational knowledge of computer forensics; legal, government and jurisprudence as they relate to cybersecurity; operating systems; and methods for intelligence gathering and sharing

 

JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and location. For those in eligible roles, we offer discretionary incentive compensation which may be awarded in recognition of firm performance and individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

JPMorgan Chase is an Equal Opportunity Employer, including Disability/Veterans