Career Central

Connecting people since 1887
Leverage our network to build your career.
Tell us about your professional DNA to get discovered by any company in our network with opportunities relevant to your career goals.

Cyber Intelligence Senior Associate | Threat Intelligence Operations

JPMorgan Chase & Co.

JPMorgan Chase & Co.

Washington, DC, USA
Posted on Thursday, May 30, 2024

Job Description

Embrace the challenge of cybersecurity intelligence at a global financial leader. In this role, you will be pivotal in advancing our cyber defense, using your skills to analyze threats and protect our digital landscape. Your work ensures the safety of our assets and clients, making a direct impact in the ever-changing world of cybersecurity.

As a Threat Intelligence Analyst at JPMorgan Chase within the Cybersecurity Technology and Controls, Cybersecurity Intelligence Group, you play an essential role in defending the firm against sophisticated cyber threats. Doing so will require you to investigate advanced threat actors, conduct proactive research on emerging threats, and generate forward-looking assessments to guide decision making at the highest levels. You’ll use your subject matter expertise to give guidance, best practices, and support to business and technology stakeholders during the deployment of critical business and technology initiatives. You’ll support threat analysis, incident response, and risk reviews, all of which drive cost-effective solutions. As part of JPMorgan Chase & Co.’s global team of technologists and innovators, your work will have a massive impact, both on us as a company, as well as our clients and our business partners around the world.

The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm’s cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group’s number one priority is to enable the business by keeping the firm safe, stable and resilient.

The Cybersecurity Intelligence Group (CIG) holds the global mandate for JPMC’s cyber intelligence collection, analysis, and dissemination of finished products to the firm’s Cybersecurity & Technology Controls teams, lines of business, and overall executive decision makers. This team is responsible for tracking threats and incidents targeting the firm and also involving the firm’s third party suppliers, subsidiaries, and key clients to address events such as intrusions, malware, DDoS, unauthorized access, insider attacks, and loss of proprietary information. This includes developing a deep understanding of global threat actors and their tactics, techniques, and procedures employed during cyberattacks. The work is varied, so the requirements of the role are multifaceted. Experience in cybersecurity, security controls, Internet technology, networking, and current affairs is a prerequisite, as is the ability to articulate complex information with clarity and brevity.

Prospective applicants should be able to demonstrate an interest and working knowledge of issues pertaining to cybersecurity, technology and geopolitical affairs. Being self-motivated and able to articulate complex information with clarity and brevity is a must. A solid understanding of intelligence process and analysis, and a well-developed investigative mindset, ideally gained from within the intelligence community, would put you at a distinct advantage.

Job responsibilities

  • Maintain a forward-looking view of the cyber threat landscape as it relates to JPMC and the wider financial sector, predicting shifts in adversarial intent, goals, and strategic objectives.
  • Hunt and track organized groups of threat actors using open and closed source tools.
  • Create detailed threat actor profiles on adversaries of interest/relevance to the firm, covering tactics, techniques and procedures, intent, goals and strategic objectives.
  • Clearly and accurately conveying analytic findings through finished reports, executive communications, and verbal briefings to an array of customers.
    Provide detailed analysis of cyber events and their relevance to JPMC or the wider financial sector.
  • Collaborate with teams across cybersecurity operations to augment investigations into complex cybersecurity events and ensure the firm institutes the proper controls to defend against today’s most pressing threats.
  • Assist in creating and refining threat hunting playbooks, incorporating best practices and regulatory requirements for effective threat detection and response

Required qualifications, capabilities, and skills

  • Bachelor's Degree in Computer Science, Cybersecurity, or similar work experience in a related field.
  • Excellent communication skills, with the ability to articulate complex threat information to technical and non-technical audiences, both verbally and in writing.
  • Demonstrated understanding of the vulnerability landscape and how it impacts the overall cyber threat landscape.
  • An understanding in current affairs and international relations, evidenced by an understanding of geopolitical dynamics as they relate to state-sponsored intelligence operations.
  • An understanding of the intelligence cycle, analysis methodologies, and processes.
  • An understanding of computer networking concepts, the OSI model and underlying network protocols (e.g., TCP/IP), network traffic analysis, packet and protocol analysis (packet capture and netflow analytics).
  • An understanding of the MITRE ATT&CK Framework, stages of an attack and sub-techniques. Primarily sub-techniques associated with initial access, network communications, or deployment of malware.
  • Experience with threat intelligence techniques and processes in an enterprise level organization.
  • General knowledge of global cyber threats, threat actors and the tactics, techniques, and procedures used by cyber adversaries.
  • Working knowledge of basic programming languages or database management systems.

Preferred qualifications, capabilities, and skills

  • Intelligence community experience, or comparable private sector experience.
  • Financial sector experience.
  • Industry certifications related to Pen Testing, Forensics, Networking or Security