JPMorgan Cyber Intelligence Senior Associate Supply Chain 

Singapore 

187485788

As a Cybersecurity Intelligence Senior Associate in Cybersecurity & Tech Controls, Intelligence Operations, you will be an integral member of a team that safeguards the firm's digital assets and infrastructure from cyber threats. Utilizing your extensive knowledge of cybersecurity, you will proactively identify and assess global and industry-specific attack vectors, emerging trends, and potential risks. Your expertise in threat assessment, intelligence analysis, and security research are vital for providing insights and recommendations to enhance the firm's security posture and protect its clients. By collaborating with cross-functional teams and deeply analyzing the threat landscape, your insights will significantly inform and shape JPMorgan Chase's cybersecurity strategy.

Job responsibilities

• Help defend the Firm against software supply chain attacks
• Make recommendations on how to detect, prevent and respond to identified risk in applications used by the Firm
• Conduct static and dynamic analysis of software, binaries, components and related network traffic and design elements to identify cybersecurity risks such as malicious code or functionality, malware and other vulnerabilities or security issues
• Perform threat and impact assessments through static and dynamic analysis, vulnerability research, code audit, black box testing and reverse engineering
• Perform security assessments to identify authentication or authorization problems in applications/systems/services and demonstrate how they could be abused or otherwise pose a potential cybersecurity threat
• Overcome different types of obfuscation, encoding, and encryption
• Develop scripts to enhance analysis efforts
• Prototype new tools and techniques
• Write signatures to identify applications, malware families, network traffic and noteworthy code sequences

Required qualifications, capabilities, and skills

• Bachelor's Degree in Computer Science, Cybersecurity or related field
• 3+ years of experience in cybersecurity intelligence, threat assessment, or security research, focusing on cyber threat identification
• Proficiency in scripting languages (Python, Bash, JavaScript, PowerShell) and experience in automating threat detection, analysis, and response
• Foundational understanding of Forensics, Log Analysis, Incident Response and/or Threat and Fraud Intelligence
• Knowledge in Operating Systems (i.e. Windows, Linux, Mac, Mobile), processor architectures (i.e. x86, x64), and computer networking
• Strong knowledge of security architecture and design, with experience in operational-level security solutions and risk mitigation strategies

Preferred qualifications, capabilities, and skills

• As this is a hands on role we'd prefer that candidates would have used at least some of the following tools: SIEM, SOAR, OSINT, IDA Pro, Ghidra, Wireshark, Jupyter, SQL, YARA, AWS Lambda
• Experience in developing both tactical and strategic tools and capabilities
• Capable of building analysis processes, templates, and documentation
• Ability to coordinate, work with and gain the trust of business stakeholders, technical resources, and third-party vendors.