Lead Security Engineer

Join our high-performing security engineering team and make a real impact at JPMorganChase. You will lead the design and delivery of secure software solutions that protect our business and drive innovation. As a Lead Security Engineer, you’ll expand your skills, collaborate with talented colleagues, and help shape the future of software security. Experience a culture where your ideas are valued, your growth is supported, and your expertise drives change. Discover opportunities for advancement and leadership in a dynamic environment.

As a Lead Security Engineer in Cybersecurity and Tech Controls, you will play a crucial role in delivering secure software solutions that prevent misuse, circumvention, and malicious behavior. You will be a core technical contributor, responsible for implementing tamper-proof, audit-defensible methods across multiple technical areas. You will develop and manage container-based services, drive the control plane for our container security system, and work closely with stakeholders to understand and address security needs. Your leadership will help us minimize vulnerabilities, evolve security protocols, and foster a culture of diversity, opportunity, inclusion, and respect.

Job responsibilities

• Execute creative security solutions, design, development, and technical troubleshooting.
• Develop secure and high-quality production code; review and debug code from other team members.
• Minimize security vulnerabilities by evolving protocols and following industry insights and regulations.
• Plan, design, and implement enterprise-level security solutions.
• Develop and manage the control plane for container security systems.
• Design and develop container-based services using Docker and Kubernetes.
• Conduct discovery, vulnerability, penetration testing, and threat modeling for multiple applications.
• Work with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability.
• Manage multiple tasks and priorities in a fast-paced, dynamic environment.
• Proactively identify and address security risks across organizational assets.
• Add to team culture of diversity, opportunity, inclusion, and respect.

Required qualifications, capabilities, and skills

• Formal training or certification in software engineering with relevant years of experience (please insert specific years based on role level).
• Skilled in planning, designing, and implementing enterprise-level security solutions.
• Advanced proficiency in one or more programming languages.
• Proficient in all aspects of the Software Development Life Cycle.
• Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security.
• Experience with threat modeling, discovery, vulnerability, and penetration testing.
• In-depth knowledge of the financial services industry and their IT systems.
• Hands-on practical experience in system design, application development, testing, and operational stability.
• Technologies: Kubernetes, Terraform.
• Cloud experience: AWS, on-prem.
• Deep understanding of Docker images and containers.
• Experience with RBAC systems.

Preferred qualifications, capabilities, and skills

• Experience effectively communicating with senior business leaders.
• Technologies: Python, Java, Ansible, Artifactory, Active Directory, Jenkins.
• Deep understanding of cybersecurity.
• Knowledge of Active Directory.

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our

FAQs

for more information about requesting an accommodation.

Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we’re setting our businesses, clients, customers and employees up for success.