Expoint - all jobs in one place

The point where experts and best companies meet

Limitless High-tech career opportunities - Expoint

JPMorgan Mobile Security Engineer 
United Kingdom, England, London 
10768893

22.09.2024

Job Summary:

As a Mobile Security Engineer in International Consumer you will have the opportunity to explore a wide range of problem spaces working on multiple tech stacks primarily across Android and iOS. You will engage directly with development teams and the wider security team to collaborate and solve problems. You will analyze application code and detect complex vulnerabilities and communicate directly with the development teams to educate them and assist them in mitigating these risks. You will develop frameworks and tools to perform automated detection of vulnerabilities and scale the impact of individuals. You will define best practices across the business to help us engineer more secure products that allows us to create trust at scale.

Job Responsibilities:

  • Lead the maturity of mobile application security reviews activities across consumer banking products and provide thought leadership and guidance to peers and senior management.
  • Build automation (static and dynamic analysis) and frameworks with software engineers that are able to improve security, whilst also improving developer and customer experience.
  • Provide guidance and education to developers that help prevent the authoring of vulnerabilities.
  • Provide challenge and assessment of potential technology risks including information and cyber security control weaknesses by performing threat modelling exercises. Provide technology risk subject matter expertise and communicate the risk environment to management and other key stakeholders.
  • Build solid professional relationships with matrixed teams to include technology, business, audit, and operational risk partners.

Required qualifications, capabilities and skills:

  • Bachelor's degree or the equivalent combination of education and relevant experience
  • Familiarity with mobile application programming languages, development practices, and common bug patterns (React Native, Java, Kotlin, Swift)

Preferred:

  • Knowledge of penetration testing techniques with the mobile application and web contexts
  • Experience with IT risk management operating models, three lines-of-defense frameworks, integrated risk management practices, and/or risk intelligence capabilities.
  • Experience operating within a regulated industry.