Expoint - all jobs in one place

מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר

Limitless High-tech career opportunities - Expoint

JPMorgan Lead Security Engineer 
United States, Ohio, Columbus 
9158236

08.09.2024

Job Responsibilities

  • Responsible for activities related to continued security monitoring and is a first line of defense for incident response and vulnerability management.
  • Executes security solutions design, development, and technical troubleshooting with the ability to apply knowledge of existing security solutions to satisfy security requirements for internal clients (e.g., product, platform, application owners)
  • Researches, recommends, evaluates, and implements cybersecurity solutions or configurations that identify and/or protect against potential threats, and respond to security violations.
  • Performs configuration management of security systems and applications, including policy assessment and compliance tools, network security appliances and host-based security systems.
  • Performs development, deployment, administration, management, configuration, testing and integration tasks related to the security of the Offers and Shopping platform.
  • Assists with the ongoing gathering of evidence to support compliance with PCI, SOC, internal controls and business controls.
  • Work with internal technology team to ensure security and compliance is designed from-the-start for modern technology stacks such as public cloud, containers, API gateways, microservices & serverless platforms.
  • Develops and maintains documentation for security systems and procedures

Required Qualifications, Capabilities, and Skills

  • Formal training or certification on security engineering concepts and 5+ years applied experience
  • Proficient in AWS administration with a focus on security
  • Strong knowledge of cybersecurity domains, including Asset Security, Communication & Network Security, Identity & Access Management (IAM), Security & Risk Management, Security Architecture & Engineering, Security Assessment & Testing, Security Operations, and Software Development Security
  • Hands-on demonstrated proficiency in scripting languages (Bash, PowerShell and/or Python) for automating security tasks and processes
  • Hands-on practical experience delivering system design, application development, testing, and operational stability
  • Demonstrated experience with security tools and technologies, including Security Information & Event Management (SIEM), Endpoint Detection & Response (EDR), Data Loss Prevention (DLP), and Web Application Firewall (WAF)
  • Advanced understanding of agile methodologies, CI/CD, and application resiliency
  • Strong analytical and problem-solving skills to enable effective security incident and problem resolution

Preferred Qualifications, Capabilities, and Skills

  • Experience in developing, documenting, and maintaining security procedures and documentation
  • Work independently, collaborate within a team, comfortable in a virtual environment, self-disciplined, self-managed, self-motivated, and strong sense of ownership, urgency, and drive.
  • Working knowledge of information security frameworks and regulations (e.g., SOC 2 Type II, or PCI)
  • A keen desire to learn how new technologies operate and how to secure them.
  • Proficient verbal and written communication skills, including the ability to effectively participate in discussions and meetings with internal management, external / internal audit, peer groups, regulators, and senior stakeholders.