Lead Security Engineer

Play a vital role in shaping the future of an iconic company and make a direct impact in a dynamic environment designed for top achievers.  

As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Technology Controls, you are an integral part of a team that works to develop high-quality cybersecurity solutions for various software applications and platform products. Drive significant business impact through your capabilities and contributions, and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains.  We are looking for an experienced lead security engineer to join our team as a specialist in cloud security posture management in Data and AI/ML. You will be responsible for developing and deploying CSPM guardrails across Data and AI/ML technologies. We are looking for a cloud security leader who is passionate about Data & AI/ML security and automating cloud security drift monitoring at scale. You will be required to apply your in-depth of cloud security knowledge and expertise to all aspects of cloud security posture management development lifecycle, as well as partner continuously with your many product stakeholders on a daily basis to stay focused on common goals. You’ll work in a collaborative, trusting, thought-provoking environment—one that encourages diversity of thought and creative solutions that are in the best interests of our customers . Best yet, you will be joining a team of highly motivated and skilled security architects who will help you to lay the foundations of a great career at JP Morgan Chase. 

Job responsibilities

• Develop and deploy cloud security posture management guardrails across Data & AI/ML technologies
• Maintain and enhance existing cloud security posture management guardrails in Data & AI/ML technologies
• Guides the evaluation of current cybersecurity principals, processes, and controls, and leads the evaluation of new technology using existing standards and frameworks
• Provide thought leadership for cloud security posture management in Data and AI/ML technologies
• Identify and address security vulnerabilities, security risks, and other compliance issues
• Partner with product managers to create key objectives and roadmaps
• Works with stakeholders and senior leaders to recommend business modifications during periods of vulnerability
• Serves as function-wide subject matter expert in one or more areas of focus  
• Actively contributes to the engineering community as an advocate of firm wide frameworks, tools, and practices of the Software Development Life Cycle 

Required qualifications, capabilities, and skills

• Proficient in cloud security posture management (e.g., Wiz, Lacework, Orca Security, Prisma Cloud, Crowd Strike Falcon Cloud Security, etc.) coding in one of more languages
• Advanced expertise in one or more programming languages or applications
• Experience engineering with infrastructure as code (e.g., Terraform, Cloud Formation, etc.)
• Solid understanding of agile methodologies such as DevOps, CI/CD, application resiliency, and security
• Strong understanding of cloud computing concepts and services such as AWS, Azure, GCP, etc
• Demonstrable interest in cloud security
• Strong analytical and evaluation skills to identify and address security challenges effectively with both technical and non-technical stakeholders at many levels within and outside of the firm
• Ability to tackle development and functionality problems independently with little to no oversight 
• Bias for action, highly organised and proficient in documentation

• Demonstrable interest in Data & AI/ML Security concepts, threats, and vulnerabilities including Data Analytics and Generative Large Language Models
• Cloud & Security certifications such as AWS Solutions Architect Associate/Professional, AWS Security Speciality, AWS Data Engineer Associate, HashiCorp Terraform Associate, Azure Security Engineer Associate etc.