Lead Cyber Security Architect
JPMorganChase
Full-time
On-site
Plano, Texas, United States
Vulnerability Management & Security Engineering
Description
Join one of the world's most influential companies and leverage your skills in cybersecurity to have a real impact on the financial industry.
As a Lead Cybersecurity Architect at JPMorganChase within Cybersecurity and Technology Controls, you are an integral part of a team that works to develop high-quality cybersecurity solutions for various software applications on modern cloud-based technologies. As a core technical contributor, you are responsible for carrying out critical cybersecurity architecture solutions by identifying, creating, and communicating risk, mitigation options, and solutions across multiple technical areas within various business functions in support of project goals.
Job responsibilities
- Partnering with the Engineering & Architecture teams to integrate security controls into platforms e.g. AWS, Application architecture, AI Solutions, etc.
- Creating and propagating (developing ) security design patterns to support building consistent and secure technology solutions
- Assisting and guiding engineering teams in the secure development of infrastructure services and products
- Ensure security considerations are delivered in compliance with firm wide technology controls from the start and throughout the Software Development Lifecycle.
- Developing extensible security solutions aligned to the product strategy in future developments.
- Conduct security assessments, threat modeling, and vulnerability assessments of products and features to identify and prioritize security risks.
Required qualifications, capabilities, and skills
- Formal training or certification and 5+ years 0f experience in Cybersecurity Architecture or related field.
- Hands-on practical experience delivering enterprise-level cybersecurity solutions and controls . Advanced in one or more programming languages
- Proficiency in automation and continuous delivery methods . Proficiency in all aspects of the Software Development Life Cycle
- Advanced understanding of agile methodologies such as continuous integration and delivery, application resiliency, and security
- Demonstrated proficiency in software applications and technical processes within a technical discipline (e.g., public cloud, artificial intelligence, machine learning, mobile, etc.)
- Practical cloud native experience . Deep knowledge of one or more software and applications
- Ability to evaluate current and emerging technologies to recommend the best solutions for the future state architecture
Experience effectively communicating with senior business leaders
Preferred qualifications, capabilities, and skills
- Proven experience in a product security role with a track record of driving security initiatives. Strong knowledge of secure software development practices and common vulnerabilities (e.g., OWASP Top Ten).
- Experience with threat modeling, risk assessment, and vulnerability management.
- Familiarity with security frameworks (e.g., NIST Cybersecurity Framework), ATTACK MITRE and industry regulations (e.g., GDPR, HIPAA)
- Certifications such as CISSP, CISSP-ISSAP, AWS Solutions Architect Associate, etc.
- Bachelor's or Master's degree in Computer Science, Information Security, or a related field (or equivalent work experience).