DescriptionCarry out critical tech solutions across multiple technical areas as an integral part of an agile team
As a Lead Software Security Engineer at JPMorgan Chase within Cybersecurity and Technology Controls, you serve as a senior member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. The solutions you build directly enable Cyber Operations users and stakeholders through delivery and refinement of critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions in support of the firm’s business objectives.
Job responsibilities
- Provides vision to enable security solutions design, development, and technical troubleshooting with the ability to apply knowledge of existing security solutions to satisfy security requirements for internal clients (e.g., product, platform, application owners and users)
- Creates secure and high-quality production code at scale with appropriate systems, delegates project work to more junior team members in actionable and independent scopes, and reviews code written by others
- Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability
- Leads mentorship and training awareness, training, educational activities, and exercises on vulnerabilities, best practices, and different design patterns
- Collaborates with product representatives and agility leads to estimate, track and demonstrate progress on prioritized work
- Adds to team culture of diversity, equity, inclusion, and respect
Required qualifications, capabilities, and skills
- Formal training or certification on JOB_SKILL concepts and 5+ years applied experience
- Bachelor's Degree or equivalent experience
- Able to use TDD to accurately reflect code's acceptance criteria
- Expert level knowledge in several engineering work areas (e.g., DevOps, Cloud, SecOps, Networking, etc.)
- Demonstrated understanding of CI/CD, application resiliency, agile methodology, and application security
- Experience integrating SOLID principles to achieve professional outcomes
- Knowledge using data querying syntax like PostgresQL or ANSI SQL
- Able to evaluate available tooling and defend their selected designs
- Experience developing Cloud Native Architecture or Microservices architecture
Preferred qualifications, capabilities, and skills
- Master's degree or equivalent experience
- Knowledge of threat modeling, data modeling, or data science principles
- Knowledge of agent driven design principles
- Experience creating secure data feeds, maintaining case management systems, or implementing serverless designs
- Experience effectively communicating with senior business leaders and individual technical users
- Demonstrated ability to collaborate across teams to manage emergent dependencies
- Experience mentoring junior team members to advocate best practices using industry standards