Expoint - all jobs in one place

מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר

Limitless High-tech career opportunities - Expoint

JPMorgan Application Lead Security Engineer - Greenfield Project 
United Kingdom, England, London 
411028552

Today

שיתוף

התחבר/י כדי להגיש מועמדות

As an Application Security Engineer at JPMorgan Chase within the Global Banking Platform, you will be a key member of our team. Your role will involve delivering software solutions that meet pre-defined functional and user requirements, with an added focus on preventing misuse, circumvention, and malicious behaviour. You will be responsible for implementing critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions, all in support of the firm's business objectives.

Job Responsibilities

  • Drive improvements to product security posture through strategic planning and collaboration with both development and infrastructure teams, with trust, autonomy and influence.
  • Produce production web scale grade application security design.
  • Review and produce data privacy and nancial regulatory functional and nonfunctional designs.
  • Perform design reviews and Threat Modelling of services and products.
  • Perform vulnerability assessments and security testing.
  • Providing subject matter expertise on all areas of security and privacy throughout the Software Development lifecycle.
  • Liaison with development teams for design, code reviews & education.
  • Contribute to security strategy, security tooling selection and creation.
  • Conduct regular security assessments and code reviews.

Required qualifications, capabilities and skills

  • Formal training or certification on security engineering concepts and applied experience
  • Expertise with a programming language (e.g. Python, Go or Java)
  • Experience of security in a DevOps environment
  • Experience in web application penetration testing and security tooling (e.g. Burp proxy, Web/Network Scanners, Static code analysers, etc).
  • Coding experience for automating/integrating security tools and creation of security tools.
  • Knowledge of security in distributed systems at scale.
  • Cloud and containers technology knowledge (e.g. AWS, GCP, Kubernetes, Docker)
  • Experience of performing security design reviews, threat modelling and risk assessments
  • Knowledge of application security issues

Preferred qualifications, capabilities and skills

  • Professional security qualifications are desirable
  • Contributions to the security community (public research, blogging, presentations, etc)
  • Awareness and experience of the Data Protection Act, ISO 27001 and PCI-DSS

משרות נוספות שיכולות לעניין אותך

כלי לבניית קורות חיים מקצועיים מבית אקספוינט

הצטרפו למאות שיצרו קורות חיים ושדרגו את הקריירה שלהם

צרו קו"ח