Security Engineer III - Threat modeling

We have an exciting and rewarding opportunity for you to advance your security engineering career. 

As a Security Engineer III at JPMorganChase within the Cybersecurity and Technology Controls team, you design and deliver trusted cybersecurity architecture solutions for software applications and platforms. You collaborate with cross-functional teams to implement technology solutions and communicate risk and mitigation options using best practices in support of the firm’s business objectives. You help foster a culture of opportunity and inclusion. You play a key role in protecting the firm’s data and infrastructure.

Job responsibilities

• Performs analysis and reporting against security risks to protect data, applications, and infrastructure using modern tools
• Conducts reviews on existing security controls with minimal oversight
• Identifies gaps in network architecture and creates documentation of threats and mitigations for small software applications
• Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems
• Produces architecture and design artifacts for complex applications, ensuring design constraints are met by software code development
• Gathers, analyzes, synthesizes, and develops visualizations and reporting from large, diverse data sets in service of continuous improvement of software applications and systems
• Proactively identifies hidden problems and patterns in data and uses these insights to drive improvements to coding hygiene and system architecture
• Contributes to software engineering communities of practice and events that explore new and emerging technologies

Required qualifications, capabilities, and skills

• Formal training or certification on security engineering concepts and 3+ years applied experience
• Experience creating cybersecurity solutions based on existing security parameters
• Ability to evaluate current cybersecurity technologies to recommend ways to optimize architecture
• Hands-on practical experience in system design, application development, testing, and operational stability
• Proficient in coding in one or more languages
• Strong working knowledge of information and network security, IT risk management, and architectural concepts and patterns
• Overall knowledge of the Software Development Life Cycle
• Solid understanding of agile methodologies such as continuous integration and delivery, application resiliency, and security
• Demonstrated knowledge of software applications and technical processes within a technical discipline (e.g., public cloud, artificial intelligence, machine learning, mobile, etc.)

Preferred qualifications, capabilities, and skills

• Familiarity with modern front-end technologies
• Exposure to cloud technologies
• CISSP or CCSP
• Other security certificates
• AWS or GCP