• Job Description

  Req#: 210454343

  DESCRIPTION:

  Duties: Responsible for the Cybersecurity Architecture within the Cybersecurity and Technology Controls organization to ensure JPMC’s consumer and investment services effectively detect, prevent, and respond to cyber threats against the firm’s technology infrastructure. Design detection and monitor threats and vulnerabilities, and evolve the firm’s preventive infrastructure to keep ahead of threats against the system from all levels of cyber threats. Establish information security leadership and active collaboration with line of business information risk managers and architects to provide high quality security solutions and services for improving the firm's risk posture. Provide development teams with a pragmatic view and creative solutions. Collaborate with software architects, software engineers, business product owners and senior management. Bring AWS and other public cloud risk recommendations to the CCB development teams.

  
  QUALIFICATIONS:

  Minimum education and experience required: Master’s degree in Cybersecurity, Computer Science, Computer Engineering or related field of study plus 3 (Three) years of experience in the job offered or as Security Architect, Information Security Advisor, Security Consultant, or related occupation.

  Skills Required: Requires experience in the following: Conducting technical risk assessments and threat modeling exercises for large financial institutions, involving enterprise applications, global network ecosystems, remote access, public cloud platforms, hybrid cloud ecosystems, and third-party solutions; Performing security assessments and establishing security requirements for hybrid cloud deployments for complex institutions, including financial institutions; Assessing the cyber security practices of public cloud providers and SaaS platforms, including Amazon AWS, Microsoft Azure, or Google Cloud Platform to ensure compliance with a financial institution's cyber security standards; Performing firewall rules review; Assessing mobile application security and behavior with a view of internal network and Mobile Device Management (MDM) leveraging Airwatch or Intune security controls; Assessing the security of SailPoint or ForgeRock technology deployments to support identity and access management systems or assessing hashicorp vault deployments for secrets management; Assessing network security of internet gateways, SaaS managed network management services, and global deployment of wifi systems; Developing or contributing to crytographic standards within a financial institution; Utilizing crypto solutions to meet unique security needs such as whitebox encryption, Hardware Security Module (HSM), Transport Layer Security (TLS) protcols and cipher suites; Protecting master and root keys; Adopting cloud provider key management solutions within a financial institution; Performing penetration testing for network, web, and mobile application security; Conducting third-party risk assessments based on standards, such as ISO 27001; Performing technical reviews against third-party provided or managed technology solutions; Providing long-term security advisory services to centralized technology teams; and Leading IT engagements and initiatives. Requires at least two of the following certification(s): CISSP; PMP; CISA; CCSP; and AWS Certified Solutions Architect.

  Job Location: 8181 Communications Pkwy, Plano, TX 75024. This position requires up to 10% domestic travel. Telecommuting permitted up to 40% of the week.

• About the company

  J.P. Morgan is a leader in financial services, offering solutions to clients in more than 100 countries with one of the most comprehensive global product platforms available. We have been helping our clients to do business and manage their wealth for more than 200 years. Our business has been built upon our core principle of putting our clients'​ interests first.

Notice