Lead Security Engineer - Vulnerability Management

JPMorgan Chase

posted 2 months ago

Full-time - Mid Level
Credit Intermediation and Related Activities

About the position

As a Lead Security Engineer at JPMorgan Chase, you will play a crucial role in ensuring the security of the company's global infrastructure. You will be part of a high-performing team within the Cybersecurity & Technology Controls division, responsible for deploying and managing advanced vulnerability scanning tools. Your work will involve conducting comprehensive security assessments across both on-premise and cloud environments, while also contributing to the development of security protocols and solutions that enhance the overall security posture of the organization.

Responsibilities

  • Deploy, configure, and manage vulnerability scanning tools to ensure comprehensive security assessments across on-premise and cloud environments.
  • Develop and maintain firewall rules and access requests to facilitate secure and efficient scanning operations.
  • Execute creative security solutions, design, development, and technical troubleshooting to build solutions and address technical problems.
  • Develop secure and high-quality scripts and automation tools to enhance the efficiency and effectiveness of vulnerability scanning processes.
  • Minimize security vulnerabilities by following industry insights and governmental regulations, creating processes to determine the effectiveness of current controls.
  • Work with stakeholders and business leaders to understand security needs and recommend modifications to the vulnerability management program.
  • Contribute to a team culture of diversity, equity, inclusion, and respect.

Requirements

  • Formal training or certification on software engineering concepts and 5+ years applied experience developing security engineering solutions.
  • Experience with deploying, configuring, and managing vulnerability scanning tools in both on-premise and cloud environments.
  • Strong networking skills, including knowledge of firewall configurations and network protocols.
  • Experience with automation tools and frameworks to streamline vulnerability management processes.
  • Proficient in all aspects of the Software Development Life Cycle.
  • Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security.
  • Experience with threat modeling, discovery, vulnerability, and penetration testing.
  • Skilled in planning, designing, and implementing enterprise-level security solutions.

Nice-to-haves

  • Experience effectively communicating with senior business leaders.
  • Familiarity with both on-premise and cloud-based security architectures.
  • Experience with security compliance frameworks and standards, such as PCI-DSS, ISO 27001, and NIST.
  • Strong understanding of network security principles and practices.
  • Knowledge of secure coding practices and secure software development lifecycle (SDLC).
  • Certifications such as CISSP, CEH, or GIAC are a plus.

Benefits

  • Comprehensive health care coverage
  • On-site health and wellness centers
  • Retirement savings plan
  • Backup childcare
  • Tuition reimbursement
  • Mental health support
  • Financial coaching
Job Description Matching

Match and compare your resume to any job description

Start Matching

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service