Overview

Product Security - Cyber Security Architect - Chase UK. At JP Morgan Chase, we understand that customers seek exceptional value and a seamless experience from a trusted financial institution. We launched Chase UK to transform digital banking with intuitive and enjoyable customer journeys. We have a strong foundation of trust established by millions of customers in the US and are expanding our presence in the UK and across Europe. We are building the bank of the future and offer you the chance to join us and make a significant impact.

Job Summary

As a Product Security Lead in the Cybersecurity & Technology Controls (CTC) team for the International Consumer Bank, you will work proactively with technology and business colleagues to identify and quantify security issues within their business and empower them to take decisive risk decisions at speed and scale. You are a security expert with a strong mix of technical and communication skills and are passionate about enabling safe and secure innovation. You will collaborate with cybersecurity and technology engineers to solve complex problems and develop your skills in one of the world"s most innovative and respected companies.

Job Responsibilities

• Cultivate security culture with product technology and business colleagues. Prioritize sustainable controls and driving real risk reduction outcomes. Perform threat modeling with application teams to adopt our control products and create secure-by-default products.
• Know your product across its breadth and depth. Be fluent in the product’s strategy and roadmap as well as its key investment programs. Identify unfamiliar technology components and business concepts and learn about them to identify hidden issues through critical thinking.
• Learn from product and cybersecurity teams and share best practices in both directions. Be recognized as the escalation point and subject matter expert for IT Risk and Cyber domains.
• Partner and influence across the product supply chain. Work with product, technology, and business colleagues on business-as-usual audits, regulatory engagements, risk activities, and project initiatives. Collaborate with Third Party Oversight teams to ensure effective technology risk management of vendors, with a focus on Cloud computing and emerging technologies.

Required Qualifications, Capabilities, And Skills

• Deep understanding of public cloud computing with a focus on applying controls to secure data, ensure resiliency, and maintain availability.
• Proficiency in well-architected frameworks for cloud security. Ability to assess architecture and implement cybersecurity controls. Knowledge of cybersecurity patterns and best practices.
• Hands-on experience with one or more cloud platforms (AWS, Google Cloud Platform, and/or Azure). Familiarity with Terraform or CloudFormation is desirable.
• Solid understanding of cloud services (PaaS, IaaS, SaaS) and Kubernetes solutions (e.g., Anthos, AKS, EKS).
• Experience with cloud security posture management and related security systems.
• Good understanding of Security Operations Center (SOC) operations and cloud-native monitoring systems. Ability to read logs, understand detection rules, and propose effective threat mitigations.
• Knowledge of security best practices and DevSecOps methodologies. Familiarity with SAST, DAST, and MAST systems is desirable.
• Understanding of network security concepts, including cloud networking, network design, and firewalls.
• Strong understanding of threat modeling and the ability to identify vulnerabilities in architectural design.
• Strong written and verbal communication skills.

#ICBCareers #ICBEngineering

About Us

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and value diversity and inclusion. We do not discriminate on the basis of protected attributes and provide reasonable accommodations for applicants and employees with religious practices, mental health, or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

About The Team

Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams ensure we’re setting our businesses, clients, customers, and employees up for success.

London, England, United Kingdom 4 weeks ago