Sr. Director of Architecture - Trust & Security

If you are ready to lead the way in technology innovation at JPMorganChase, we've got an exciting opportunity for a technology leader like you to make a real difference in the industry.

As a Senior Director of Architecture at JPMorganChase within Connected Commerce Technology you lead across multiple areas, manage the activities of multiple departments, and collaborate across both business and technical domains in the Architecture function to execute critical initiatives of the function.

Your expertise is applied cross-functionally to drive the adoption and implementation of technical methods within various teams and aid the firm in remaining at the forefront of industry trends, best practices, and technological advances.

Job responsibilities



* Define target state architectures, reference implementations, and modernization plans


* Lead architecture for core capabilities such as: sign-in, MFA, step-up auth, device binding, session management, identity proofing, account recovery, credential lifecycle, and fraud signals/decisioning.


* Design secure APIs and event-driven patterns enabling reusable trust services across channels (web, mobile, call center, partners).


* Embed security controls into designs: least privilege, strong cryptography, secrets management, key rotation, secure enclaves/HSM integration where needed.


* Ensure compliance with privacy and data minimization principles; define data classification, retention, and access patterns.


* Drive non-functional requirements: availability, performance, latency budgets, disaster recovery, and operational readiness.


* Architect risk engines and policy frameworks that support adaptive authentication (step-up) and real-time fraud controls.


* Enable explainable decisioning, model governance hooks, and experimentation (A/B, canary) without compromising controls.


* Leverage AI & ML to better protect customers and reduce fraud losses


* Define identity models (customer, account, device, session), correlation strategies, and identity graph patterns.


* Ensure interoperability with standards and integrations (e.g., OIDC/OAuth2/SAML/FIDO2/WebAuthn) and external identity providers/partners.

Required qualifications, capabilities, and skills



* Formal training or certification on Architecture concepts and 10+ years applied experience.

In addition, 5+ year of experience leading technologists to manage, anticipate and solve complex technical items within your domain of expertise and more broadly across the organization


* Proven experience architecting authentication, identity and access management, or fraud/risk systems in secure, regulated, or high-availability environments.


* Knowledge of authentication and authorization patterns and protocols such as OAuth2, OIDC, SAML, and token/session management.


* Experience with modern authentication methods, including FIDO2, WebAuthn, multi-factor authentication, and device intelligence.
...