Career Central

Connecting people since 1887
Leverage our network to build your career.
Tell us about your professional DNA to get discovered by any company in our network with opportunities relevant to your career goals.

Security Engineer III - Vulnerability Management Platforms

JPMorgan Chase & Co.

JPMorgan Chase & Co.

Columbus, OH, USA
Posted on Tuesday, June 4, 2024

Job Description

Your seniority as a security engineer puts you in the ranks of the top talent in your field. Play a critical role at one of the world's most iconic financial institutions where security is vital.

As a Security Engineer III at JPMorgan Chase within the Cyber Security and Technology Controls organization, you serve as a seasoned member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Carry out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions in support of the firm’s business objectives

Job responsibilities

  • Performs deployment, administration, management, configuration, testing, and integration tasks related to the Vulnerability Management Platforms
  • Help develop new Vulnerability Management Strategies and Implementations for the firm.
  • Champion a DevOps security model so that security is automated and elastic across all platforms.
  • Support the Firm’s goals in secure Cloud adoption through hands on interaction with development teams to cultivate a Cloud first mindset in transitioning workloads.
  • Provides support to develop & improve the quality of technical engineering documentation.
  • Provides support to drive the maturity of the Cybersecurity software development lifecycle.
  • Ensures all engineering activities are in conformance with JPMC policies and objectives.
  • Provides technical interface between development, product, and operations teams.
  • Leverage DevOps tools to build, harden, maintain, and instrument a comprehensive Vulnerability Management orchestration platform for network security and infrastructure as code.
  • Develop automated security and compliance capabilities in a large-scale multi-cloud hybrid computing environment.

Required qualifications, capabilities, and skills

  • Formal training or certification on security concepts and 3+ years applied experience.
  • Experience working in a Public Cloud environment – AWS/Azure/GCP.
  • Software engineering experience to include implementation of highly scalable systems, release management, software configuration, design, development, and implementation is required.
  • Experience in a modern programming language - Python.
  • Wide range of knowledge of Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering, and threats & vulnerabilities, including vulnerability management methodologies.
  • Experience in vulnerability detection, application security, cryptography, or endpoint security.
Preferred qualifications, capabilities, and skills
  • Experience with API design & development using FastAPI.
  • Experience with microservice architecture and patterns.
  • Experience with optimizing large data sets.
  • Ability to work in large, collaborative teams to achieve organizational goals, and passionate about building an innovative culture.
  • Experience with container technologies such as Docker, Kubernetes, Mesos, or Open Container Initiative (OCI).
  • Experience automating Production Support and Site Reliability Engineering Functions.