Senior Lead Cybersecurity Architect - Threat modelling

Play a vital role in shaping the future of an iconic company and make a direct impact in a dynamic environment designed for top achievers.

  As a Senior Lead Cybersecurity Architect at JPMorgan Chase within the Cybersecurity and Technology Controls team, you are an integral part of a team that works to develop high-quality cybersecurity solutions for various software applications and platform products. Drive significant business impact through your capabilities and contributions, and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains.

Role and Responsibilities:

• Be a trusted security advisor for our line of business teams by defining, delivering and maintaining secure architecture throughout the existing and future environments, consisting of complex, global architectures.
• Introduce improvements in existing implementation patterns and architectural design concepts for modern technologies such as Cloud, Kubernetes, Containers, & Serverless platforms to support the business and help mitigate risks.
• Provide subject matter expertise to cyber defense teams and multiple lines of business, forums, panels, internal and external auditors, business partners, and senior management
• Be a strong technologist and a natural collaborator across the firm.
• Manage individual project priorities, deadlines and deliverable and perform detailed gap analysis for impacting regulatory events
• Partnering with Commercial and Investment Bank and other technical teams to provide security guidance and oversee security design and implementation, applied in a timely manner.
• Providing regular management reporting to senior management and relevant stakeholders in business units.

Required Skills:

• Formal training or certification on Cybersecurity concepts and 5+ years applied experience
• Experience with Terraform, Java, C#, Python and hands on experience in architecting, securing, and operating one or more major Cloud technologies (AWS/Azure), with a focus on Security
• Experience designing and establishing baselines and prove security posture against implemented controls along with, risk management processes, principles, architectural requirements, engineering, threats and vulnerabilities, threat intelligence and application security.
• Experience with creating Threat Models and understanding risks associated with complex cloud architectures.
• Understanding of software development lifecycle including design, implementation, and delivery. Practice of Continuous Integration and Continuous Delivery.
• Understanding of Identity and Access Management in an enterprise and hybrid environments, not limited to SSO, OAuth, SAML, AD & ADFS, Privileged Access Management, RBAC, etc.

Preferred Skills:

• Cloud data analytics/architect/security certifications including SABSA, SANS, AWS Security Specialty or GCP/Azure equivalents
• Knowledge of Threat Intel, APT groups, malware analysis, MITRE ATT&CK framework.
• Conduct manual, language agnostic code review to identify security related vulnerabilities.
• Prior experience with penetration testing of applications and networks.

 

JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.