JPMorgan Java Software Engineering - Security Engineer II 

United States, Delaware, Wilmington 

202501146

Job responsibilities

• Design, code and test application programming using Java/J2ee, AngularJS/React, Spring/Spring Boot in AWS.
• Create high quality software products for JPMorgan Cyber Defense & Fraud line of business.
• Oversee end to end software development within agile frameworks
• Perform software maintenance and improvements using knowledge application, data and infrastructure architecture disciplines.
• Design and develop scalable applications for cloud
• Resolve high impact production issues and ensure smooth flow of business applications
• Executes standard security solutions in accordance with existing playbooks to satisfy security requirements for internal clients (e.g., product, platform, and application owners)
• Writes secure and high-quality code using the syntax of at least one programming language with limited guidance
• Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize probability and impact of threats when determining specific vulnerabilities
• Supports delivery of continuity-related awareness, training, educational activities, and exercises
• Adds to team culture of diversity, equity, inclusion, and respect

Required qualifications, capabilities, and skills

• Formal training or certification on security engineering concepts and 2+ years applied experience
• Must have working experience on any of the Spring Framework components like AOP, Integration, MVC, Sprint boot etc and experience on Spring JDBC, Spring Hibernate ORM and JPA
• Experience/Understanding in front end using Angular/React/Vue frameworks, HTML5, CSS/SCSS, Javascript, Jquery, JSON and in cloud platforms like AWS, GCP, Azure
• Database experience (RDBMS or NoSQL) required
• Solid understanding of Test Driven Development, JUnit, Mockito, Maven, Repository Management (Git) and designing and developing applications with RESTful Web Services
• Basic experience developing security engineering solutions
• Demonstrable ability to code in one or more languages
• Experience across the whole Software Development Life Cycle
• Exposure to agile methodologies such as CI/CD, applicant resiliency, and security
• Working knowledge of information and network security, IT risk management, and architectural concepts and patterns
• Proficient in specialized tools (e.g., vulnerability scanner) used to analyze incident data

• Jenkins, Bamboo or any CI/CD knowledge is preferred
• Knowledge of Terraform, Codedeploy, Docker, Kubernetes is a plus
• Experience/Understanding with messaging (JMS/MQ/Kafka) based integration and microservices is a plus