Security Engineer III - AWS Cloud

JPMorgan Chase

posted about 1 month ago

Full-time - Mid Level
Credit Intermediation and Related Activities

About the position

As a Security Engineer III - AWS Cloud at JPMorgan Chase, you will be a key member of the Cybersecurity & Controls - Product Security team, responsible for delivering security solutions that meet functional and user requirements while preventing misuse and malicious behavior. This role focuses on ensuring that the Public Cloud is adapted securely and compliantly, supporting the firm's business objectives through critical security solutions across various technical areas.

Responsibilities

  • Support business technology teams to understand firm control requirements and implementations across a broad range of cloud architectures.
  • Apply specialized tools to analyze, correlate, identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities.
  • Support the execution and enhancement of a long-term information risk and controls strategy designed to keep the information assets of the public cloud secure.
  • Deliver threat models and risk-based assessments of secure technology controls relating to cloud services, cloud platforms, and architectural components.
  • Perform security reviews of infrastructure-as-code for cloud platform development.
  • Develop preventive and detective controls to enforce control requirements.
  • Interface with wider CTC teams ensuring platform integration with security operations, threat intelligence, infrastructure access management, and network security.

Requirements

  • Formal training or certification on security and software engineering concepts and 3 years of applied experience.
  • Experience in developing security engineering and architecting solutions within public cloud technologies.
  • Experience with threat modeling, discovery, vulnerability, and penetration testing.
  • Proficiency in cloud security posture management (e.g., Wiz, Prisma Cloud, Crowd Strike Falcon Cloud Security, etc.).
  • Experience engineering with infrastructure as code (e.g., Terraform, Cloud Formation, etc.).
  • Solid understanding of agile methodologies such as DevOps, CI/CD, application resiliency, and security.
  • Ability to convey complex security concepts to technical stakeholders.
  • Strong analytical and evaluation skills to identify and address security challenges effectively with both technical and non-technical stakeholders at many levels within and outside of the firm.
  • Cloud native experience (e.g., AWS, Azure, or Google cloud).

Nice-to-haves

  • Cybersecurity certifications (i.e., Security, CEH, CCSP, GSEC, etc.).
  • Cloud certifications would be a plus (e.g., AWS, Azure, or GCP).

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service