Expoint - all jobs in one place

מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר

Limitless High-tech career opportunities - Expoint

JPMorgan Security Engineer III - AWS Cloud 
United States, Ohio 
560245163

23.11.2024

Your seniority as a security engineer puts you in the ranks of the top talent in your field. You will play a critical role at one of the world's most iconic financial institutions where security is vital.

Job responsibilities

  • Support business technology teams to understand firm control requirements and implementations across a broad range of cloud architectures
  • Applies specialized tools to analyze, correlate, identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities
  • Support the execution and enhancement of a long-term information risk and controls strategy designed to keep the information assets of the public cloud secure
  • Deliver threat models and risk-based assessments of secure technology controls relating to cloud services, cloud platforms and architectural components
  • Perform security reviews of infrastructure-as-code for cloud platform development
  • Develop preventive and detective controls to enforce control requirements
  • Interface with wider CTC teams ensuring platform integration with security operations, threat intelligence, infrastructure access management, and network security
  • Adds to team culture of diversity, equity, inclusion, and respect

Required qualifications, capabilities, and skills

  • Formal training or certification on security and software engineering concepts and 3+ years of applied experience
  • Experience in developing security engineering, and architecting solutions within public cloud technologies
  • Experience with threat modeling, discovery, vulnerability, and penetration testing
  • Proficiency in cloud security posture management (e.g., Wiz, Prisma Cloud, Crowd Strike Falcon Cloud Security, etc.)
  • Experience engineering with infrastructure as code (e.g., Terraform, Cloud Formation, etc.)
  • Solid understanding of agile methodologies such as DevOps, CI/CD, application resiliency, and security
  • Ability to convey complex security concepts to technical stakeholders
  • Strong analytical and evaluation skills to identify and address security challenges effectively with both technical and non-technical stakeholders at many levels within and outside of the firm
  • Cloud native experience (e.g., AWS, Azure, or Google cloud)
Preferred qualifications, capabilities, and skills
  • Cybersecurity certifications (i.e., Security, CEH, CCSP, GSEC, etc.)
  • Cloud certifications would a plus (e.g., AWS, Azure, or GCP)