JPMorgan Security Engineer II ATTACK SIMULATION ENGINEERING 

United States, Texas, Plano 

648488237

Job responsibilities

• Executes standard security solutions in accordance with existing playbooks to satisfy security requirements for internal clients (e.g., product, platform, and application owners)
• Writes secure and high-quality code using the syntax of at least one programming language with limited guidance
• Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize probability and impact of threats when determining specific vulnerabilities
• Supports delivery of continuity-related awareness, training, educational activities, and exercises
• Adds to team culture of diversity, equity, inclusion, and respect
• Directly work with Operations, Product team, Security Control owners to evaluate the efficacy of tests and increase the velocity
• Deploy applications in Attack Simulation portfolio (third-party applications) with concise documentation
• Design systems management solutions using automation and self-repair rather than relying on alarming and human intervention
• Reuse existing strategic technologies and prefer appropriately simple, scalable solutions over more complex and failure prone ones
• Review and influence new and evolving design, architecture, standard, and methods for operating services and systems
• Participate in software and system performance analysis and tuning, service capacity planning and demand forecasting

Required qualifications, capabilities, and skills

• Formal training or certification on security engineering concepts and 2+ years applied experience
• Basic experience developing security engineering solutions
• Demonstrable ability to code in one or more languages
• Experience across the whole Software Development Life Cycle as CI/CD, application resiliency, and security
• Experience with cloud deployment environments, e.g. AWS, Azure, GCP
• Working knowledge of information and network security, IT risk management, and architectural concepts and patterns
• Experience in Information Security or equivalent
• Working experience with OS Experience, e.g. RHEL, Windows
• Team oriented with great communication and interpersonal skills
• Development and Orchestration experience, e.g. Github, Terraform, Ansible, Chef

Preferred qualifications, capabilities, and skills

• Information Security related certifications
• Programming/Scripting experience, Python, Python , Perl, Bash, Powershell, T-SQL, PL/SQL, SQL Plus
• Experience with developing and using APIs, e.g. Python and REST APIs
• Knowledgeable across multiple security technologies, e.g. SIEM, NGFW, Proxy, IDS/IPS, DLP, EDR, A/V, WAF