JPMorgan Chase
posted 21 days ago
Full-time - Senior
Credit Intermediation and Related Activities
About the position
As a Lead Cybersecurity Architect at JPMorgan Chase, you will play a crucial role in developing high-quality cybersecurity solutions for software applications, particularly focusing on modern cloud-based technologies. This position involves engaging with technical teams and business stakeholders to define and implement cybersecurity strategies, ensuring the security architecture aligns with project goals and industry standards. You will also lead initiatives to enhance cybersecurity practices across the organization, particularly within the Employee Platforms' Content Communication & Collaboration space, emphasizing M365 security.
Responsibilities
- Engages technical teams and business stakeholders to discuss and propose technical approaches to meet current and future cybersecurity needs.
- Defines the technical target state of their cybersecurity product and drives achievement of the strategy.
- Identifies opportunities to eliminate or automate remediation of recurring issues to improve overall cybersecurity of software applications and systems.
- Leads evaluation sessions with external vendors, startups, and internal teams to drive continuous improvement and assess cybersecurity design and technical credentials for use in existing systems and architecture.
- Leads communities of practice to drive awareness and use of new and leading-edge cybersecurity technologies.
- Adds to team culture of diversity, equity, inclusion, and respect.
Requirements
- Formal training or certification in cybersecurity and 5+ years applied experience across one or more platform centric security areas (e.g. threat modeling, vulnerability assessments, encryption, IAM, network protocols, software development, API integration).
- Familiarity across a range of security frameworks and guidelines (e.g. OWASP, NIST, ISO) and experience reconciling design documentation and architecture with applicable industry standards and best practices.
- Experience securing MS Azure & M365 environments including advanced understanding of Microsoft cloud-based security tools (Purview, Defender for Office, etc...).
- Understanding of SaaS-based security and controls.
- Hands-on practical experience delivering enterprise-level cybersecurity solutions and controls.
- Advanced understanding of agile methodologies such as continuous integration and delivery, application resiliency, and security.
- Demonstrated proficiency in software applications and technical processes within a technical discipline (e.g., public cloud, artificial intelligence, machine learning, mobile, etc.).
- Ability to evaluate current and emerging technologies to recommend the best solutions for the future state architecture.
- Experience effectively communicating with senior business leaders.
Nice-to-haves
- Strong communication skills to work with partners across multiple lines of business.
- Ability to effectively communicate security threats and risk to a wide audience.
- Experience or knowledge of implementing SaaS security technology (CASB, SSPM, etc...).
- Strong understanding of the M365 product line (Teams, SPO, CoPilot, Delve, EXO, etc...).
- Certifications applicable to this role: CISSP, CISM, CASP, & MSFT SC & AZ series.
- Experience operating and collaborating in a global enterprise environment.
- Understanding of regulatory and compliance challenges in a global enterprise.
Benefits
- Comprehensive health care coverage
- On-site health and wellness centers
- Retirement savings plan
- Backup childcare
- Tuition reimbursement
- Mental health support
- Financial coaching
