Sr Lead Security Engineer - Vulnerability Management

Take on a crucial role where you'll be a key part of a high-performing team ensuring the security of our global infrastructure.

Make a real impact as you help shape the future of vulnerability assessments and data-driven security at one of the world's largest and most influential companies.

As a Senior Lead Security Engineer at JPMorgan Chase within Cybersecurity & ,Technology Controls, you are an integral part of an agile team that works to deliver secure software solutions and advanced vulnerability data platforms.

As a core contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit-defensible methods across multiple technical areas and business functions.

You will play a key role in developing and implementing automated solutions to enhance our security capabilities.

Job responsibilities


* Develop and maintain secure data pipelines to ingest, process, and analyze security data from vulnerability scanners and data platforms


* Design and develop high-quality code and automation tools using Python and Java to enhance the efficiency and effectiveness of security operations


* Collaborate with security engineers and architects to integrate security data and automation solutions into existing security infrastructure and processes


* Work with stakeholders and business leaders to understand security needs and recommend data-drive enhancements to the vulnerability assessments program


* Minimize security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls


* Adds to team culture of diversity, equity, inclusion, and respect

Required qualifications, capabilities, and skills


* Formal training or certification on software engineering concepts and 5+ years applied experience developing security engineering solutions.


* Skilled in planning, designing, and implementing enterprise-level security solutions


* Advanced in one or more programming languages - Python


* Advanced knowledge of software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.)


* Experience leading and managing technology projects


* Extensive experience with threat modeling, discovery, vulnerability, and penetration testing


* Ability to tackle design and functionality problems independently with little to no oversight


* Practical cloud native experience (AWS, GCP, Azure)

Preferred qualifications, capabilities, and skills


* Experience with security compliance frameworks and standards, such as PCI-DSS, ISO 27001, and NIST.


* Strong understanding of network security principles and practices.


* Proficiency with relational and NoSQL databases, with experience in data manipulation, qu...