Sr Lead Cyber Security Architect-CTC M&A

Job Description

Join one of the world's most influential companies and leverage your skills in cybersecurity to have a real impact on the financial industry.

As a Cybersecurity Architect at JPMorgan Chase within the Cybersecurity and Technology Controls organization, you are an integral part of a team that works to develop & implement high-quality, repeatable and scalable cybersecurity solutions for recently acquired businesses. As a core technical contributor you will be expected to apply your expertise in cybersecurity engineering, application and architecture domains to lead complex projects and initiatives, understand problem spaces, quantify risk and recommend solution approaches. 

Job Responsibilities:

• Conduct technology and cyber security evaluations for potential target acquisitions, external vendor products and existing line of business products & services. 
• Build strong relationships with a range of technology stakeholders, inclusive of JPMC Cyber Security Architecture organization, to maintain alignment in control intent and solution design.
• Effectively communicate utilizing detailed reports, presentations, or other appropriate methods to convey the cybersecurity posture, technical complexities, and surface regulatory & compliance risks.
• Design security solutions to manage risk at newly acquired businesses.
• Develop effective relationships with acquired company leadership and teams, fostering trust and driving cultural alignment with JPMorganChase. 
• Perform threat modelling to identify potential security risks and develop mitigation strategies.
• Identify opportunities to automate remediation of recurring security issues to enhance the overall cybersecurity posture of software applications and systems
• Foster a team culture of diversity, equity, inclusion, and respect.

Required Qualifications, Capabilities, and Skills:

• Formal training or certification on Cybersecurity Architecture and 5 years applied experience with a focus on product security.
• Formal training or certification in Cybersecurity or related concepts. (e.g. CISSP, CISM, GIAC, CCSP, OSCP)
• Practical working knowledge of, or experience working in organization's subject to, global financial regulations (e.g. FFIEC, GDPR, SOC2 etc ).
• Hands-on experience in threat modelling and designing secure controls for enterprise-level solutions.
• Thorough design and operations experience in one or more of the large public cloud providers. (e.g. AWS, Azure, Google Cloud) Certifications advantageous. 
• Experience in designing and securing cloud-native and hybrid architectures. 
• Advanced understanding of agile methodologies, including continuous integration and delivery, application resiliency, and security.
• Experience effectively communicating with senior business leaders.

Preferred Qualifications, Capabilities, and Skills:

• Experience in Application Security & Software Development Life Cycle.
• Proficiency in one or more programming languages.
• Proficiency with configuration and management of Cloud Security Posture Management (CSPM) tools and issue resolution. 
• Prior Experience with Mergers & Acquisition integration activities
• In-depth knowledge of the financial services industry and their IT systems 

#CTC