Sr Lead Cybersecurity Architect

Sr Lead Cybersecurity Architect at JPMorganChase

Play a vital role in shaping the future of an iconic company and make a direct impact in a dynamic environment designed for top achievers. As a Sr Lead Cybersecurity Architect at JPMorgan Chase within the Global Architecture and Engineering, you are an integral part of a team that works to develop high-quality cybersecurity solutions for various software applications and platform products. Drive significant business impact through your capabilities and contributions, and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains.

Job Responsibilities

• Lead the evaluation and implementation of cybersecurity principles, processes, and controls, guiding technology assessments using established security standards and patterns.
• Provide cybersecurity architecture and guidance to support business and regulatory requirements.
• Develop and maintain a comprehensive cybersecurity reference architecture.
• Serve as a subject matter expert in cybersecurity, offering expertise to technology teams and business partners.
• Conduct security assessments, threat modelling, and technical risk assessments on design proposals from technical teams.
• Advocate for firmwide frameworks, tools, and practices within the secure Software Development Life Cycle.
• Influence technology decisions by introducing improvements in implementation patterns and architectural design.
• Ensure the security of modern technologies such as public cloud, AI/ML, mobile, etc.
• Manage project priorities, deadlines, and deliverables, ensuring timely security design and implementation.
• Partner with Global Technology and other teams to oversee security design and implementation.
• Adds to team culture of diversity, equity, inclusion, and respect.

Required Qualifications, Capabilities, And Skills

• Formal training or certification in architecture concepts and 5+ years of applied experience.
• Background in infrastructure, system administration, and secure software development lifecycle is desired.
• Experience in security products, risk management, information security standards, security architecture principles, threat and vulnerability management, including incident response methodologies.
• Advanced proficiency in one or more programming languages or scripts.
• Advanced knowledge of cybersecurity architecture, applications, and technical processes, with considerable in-depth knowledge in one or more technical disciplines (e.g., public cloud, artificial intelligence, machine learning, mobile, etc.).
• Advanced knowledge of enterprise networking and network security controls.
• Understanding of Identity and Access Management systems and processes in an enterprise environment, familiar with Federated Identity Management, SSO, OAuth, SAML, AD & ADFS, Privileged Access Management, RBAC, etc.
• Ability to tackle design and functionality problems independently with little to no oversight.

Preferred Qualifications, Capabilities, And Skills

• Excellent verbal and written communication skills and the ability to interact professionally with a diverse group, executives, managers, and subject matter experts.
• Understand information security and risk management challenges, issues mitigations and remediation in a multi-national enterprise environment.
• Experience in leadership, either by directly managing teams or through mentorship.
• Strong interpersonal skills; excellence in customer service.
• Ability to explain and champion security concepts.

About JPMorganChase

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

About The Team

The Chief Technology Office oversees enabling components inclusive of the top quality engineering and architecture tools and practices, key program management and processes as well as the technology workforce strategy required to make us a leading technology company for our customers, clients and colleagues around the world. High Risk Roles (HRR) are sensitive roles within the technology organization that require high assurance of the integrity of staff by virtue of 1) sensitive cybersecurity and technology functions they perform within systems or 2) information they receive regarding sensitive cybersecurity or technology matters. Users in these roles are subject to enhanced pre-hire screening which includes both criminal and credit background checks (as allowed by law). The enhanced screening will need to be successfully completed prior to commencing employment or assignment.

Key skills/competency

• Cybersecurity Architecture
• Threat Modeling
• Risk Management
• Secure Software Development Lifecycle (SDLC)
• Public Cloud Security
• AI/ML Security
• Network Security Controls
• Identity and Access Management (IAM)
• Incident Response
• Security Standards and Patterns