Job responsibilities
- Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems
- Develops secure and high-quality production code and reviews and debugs code written by others
- Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls
- Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability
- Ensure all quality standards are followed for the deliverables through code metrics checks, code reviews, unit and regression testing. Support quality assurance, performance and business user acceptance testing phases
- Interact with business and cross block teams, identifying application impacts, interface design and technical specification design documentation
- Implement test-driven development, Continuous Deployment and Continuous Integration practices and adhere to JPMC software development process.
- Lead the team on Tech Refresh initiatives to revamp the underlying technology and application infrastructure to make it compliant with enterprise wide controls and policies.
- Lead the project team, technical training and mentoring for implementation of solutions and roll outs
- Adds to team culture of diversity, equity, inclusion, and respect
Required qualifications, capabilities, and skills
- Formal training or certification on security engineering concepts and 5+ years applied experience
- Skilled in planning, designing, and implementing enterprise level security solutions
- Advanced in one or more programming languages
- 5+ years of hands on experience in design using DDD, building Microservices using Java, spring, Spring Boot, REST, Spring Cloud, JWT, Oauth 2.0 and 12 Factor Apps principles.
- Proficient in all aspects of the Software Development Life Cycle
- Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security
- In-depth knowledge of the financial services industry and their IT systems
Preferred qualifications, capabilities, and skills
- Experience effectively communicating with senior business leaders
- Analyze, design, develop, debug, test, document and deploy applications using primary skills in Pega PRPC (Pega Rules Process Commander),
Java, Oracle and SQL - Understand business workflow requirements from Cyber Operations team and implement those requirements in Pega Rules Process Commander