Lead Security Engineer - Java, AWS

oin a high-performing team delivering secure software solutions at JPMorganChase. Make a real impact as you help shape the future of software security.

As a Lead Security Engineer at JPMorganChase within the Cybersecurity and Technology Controls team, you are an integral part of an agile group delivering secure software solutions that prevent misuse and malicious behavior. You will build and enhance tamper-resistant, audit-defensible solutions across multiple technical areas. You will partner with stakeholders to identify and manage risk while improving secure delivery practices. You will help strengthen engineering standards through collaboration, mentorship, and continuous learning.

Job responsibilities

• Design, develop, and troubleshoot security solutions to resolve complex technical problems
• Develop secure, high-quality production code and review and debug code written by others
• Reduce security vulnerabilities by improving security protocols and implementing control effectiveness assessments
• Partner with stakeholders and business leaders to understand security needs and recommend timely risk mitigations
• Own end-to-end delivery of software features from inception through deployment with rigorous testing and stable releases
• Write clean, maintainable, and efficient code aligned to SOLID principles and secure engineering practices
• Manage ambiguity in requirements and deliver outcomes with clear documentation and stakeholder alignment
• Collaborate with cross-functional teams to define, design, and deliver new security capabilities
• Provide technical leadership and mentor engineers to strengthen team execution and quality

Required qualifications, capabilities and skills

• Formal training or certification on security engineering concepts and 5+ years applied experience
• Proficiency in Java and Spring Boot with hands-on experience building cloud-based applications on Amazon Web Services
• Demonstrated ability to plan, design, and implement enterprise security solutions from requirements through delivery
• Strong software design fundamentals, including SOLID principles and common design patterns
• Advanced proficiency in at least one programming language used for building production services
• Proficiency across the software development life cycle, including testing, release, and operational support
• Advanced understanding of modern delivery practices such as continuous integration, continuous delivery, application resiliency, and secure engineering
• Experience debugging complex distributed systems and identifying root causes across services
• Strong understanding of public cloud architecture and experience developing and operating software solutions in cloud environments
• Ability to translate business needs into secure technical solutions and risk-informed engineering decisions

Preferred qualifications, capabilities and skills

• Experience using Terraform for infrastructure as code