As a Sr. Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Technology Controls, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions.
Job Responsibilities
- Performs deployment, administration, management, configuration, testing, and integration tasks related to the Cloud Network Security Platforms
- Champion a DevOps security model so that security is automated and elastic across all platforms
- Provides support to develop & improve the quality of technical engineering documentation and provides support to drive the maturity of the Cybersecurity software development lifecycle
- Makes decisions of a global, strategic nature by analyzing complex data systems and incorporating knowledge of other lines of business & JPMC standards.
- Ensures all engineering activities are in conformance with JPMC policies and objectives
- Take ownership of proof of concept research and development in line with emerging industry trends, product design, development, transition to operations and technical consultation to product management
- Leverage DevOps tools to build, harden, maintain and instrument a comprehensive Cloud-based security orchestration platform for network security and infrastructure as code
- Develop automated security and compliance capabilities in support of DevOps processes in a large-scale Cloud computing environment
Required qualifications, capabilities, and skills
- Formal training or certification on security engineering concepts and 5+ years applied experience.
- 5+ years of experience in implementation and design of complex cloud architectures, software configuration, design, development and implementation is required (Python, GO Lang or Java ideally)
- Public/Private Cloud experience as it relates to Cybersecurity in a mission critical environment including: Ability to analyzing complex data systems , Developing, improving and maintaining technical engineering documentation and Roadmap development and ability to evangelize / champion benefits to internal consumers.
- Proficient in core concepts for Public/Private/Hybrid Clouds (Networking, Policy placement, IAM, Network/Application Firewall etc.)
- Expertise in Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering and threats and vulnerabilities
- Experience in financial or banking industry experience with container technologies such as Docker, Kubernetes, Mesos, or Open Container Initiative (OCI)
- Posses wide range of knowledge of Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering and threats & vulnerabilities, including IR methodologies
- Collaboratively design, develop, test, and deliver high-quality software. in agile SDLC environment .
Preferred qualifications, capabilities, and skills
- Financial or banking industry experience in Public Clouds and experience with workload migration to Public Cloud
- Developing, improving and maintaining technical engineering documentation
- Roadmap development and ability to evangelize / champion benefits to internal consumers
- designing visibility outputs intended to establish baselines and prove security posture against implemented controls