• Job Description

  Req#: 210502607

  Global Security (GS) protects the firm's employees and assets throughout the world. This responsibility includes the development of security and safety policies and procedures, regulatory and legislative compliance, corporate aviation, guard management, alarm response, crisis management, ATM, branch and corporate building security and customer safety, physical crime investigations, workplace violence, fire and life safety, pre-employment screening, fraud and employee investigations.

  Within GS, the Threat Detection and Analysis team is responsible for identifying potential threats against the firm and its workforce from internal and external actors and developing strategies to mitigate those threats to protect the firm’s reputation, workforce, clients, and assets.

  Job Description:

  As a Security Engineer II at JPMorgan Chase within the Global Security department, you will play a crucial role in protecting the firm's reputation, workforce, clients, and assets. You will be part of the Threat Detection and Analysis team, responsible for identifying potential threats and developing strategies to mitigate them. Your main task will be to develop, configure, and optimize insider risk use cases using Proofpoint ObserveIT. This role provides an opportunity to collaborate with cross-functional teams, create tailored policies and rules, and contribute significantly to the robustness of our insider threat program..

  Job Responsibilities:

  • Develop and implement comprehensive insider risk policies and rules using Proofpoint ObserveIT
  • Develop and configure insider risk use cases to accurately identify potential insider threats.
  • Generate and analyze reports and metrics to measure the effectiveness of the insider risk monitoring solution and identify areas for improvement.
  • Collaborate with IT, cybersecurity, and business units to understand requirements and integrate insider risk solutions into the broader security architecture.
  • Conduct regular audits and reviews of insider risk policies and practices to ensure compliance with regulatory requirements and industry standards.
  • Provide expert guidance and training to stakeholders on insider risk management best practices and the utilization of Proofpoint ObserveIT.
  • Stay abreast of the latest insider risk trends, technologies, and regulatory changes to continuously enhance the institution's insider risk posture.

  Required Qualifications, Capabilities, and Skills:

  • Formal training or certification on Computer Science, Information Security concepts and 2+ years applied experience
  • 3+ years of experience in insider risk management, cybersecurity, or a related field, with a strong focus on policy development and threat analysis.
  • Proven expertise in Proofpoint ObserveIT or similar insider threat management platforms, including policy creation, rule configuration, and report generation.
  • Familiarity with regulatory requirements and industry standards related to insider risk and data protection (e.g., GDPR, SOX, ISO 27001).
  • Strong analytical and problem-solving skills, with the ability to analyze complex data and generate actionable insights.
  • Excellent communication and interpersonal skills, with the ability to effectively collaborate with technical and non-technical stakeholders.
  • Ability to work independently in a fast-paced and dynamic environment.

  Preferred Qualifications, Capabilities, and Skills:

  • Advanced degrees or certifications (CISSP, CISM, etc.) are highly advantageous

• About the company

  J.P. Morgan is a leader in financial services, offering solutions to clients in more than 100 countries with one of the most comprehensive global product platforms available. We have been helping our clients to do business and manage their wealth for more than 200 years. Our business has been built upon our core principle of putting our clients'​ interests first.

Notice