Security Operations Vice President - Vulnerability Management

Working in Cybersecurity takes a passion for balancing technology with determining the inherent risk of a vulnerability by balancing preventative controls against known exploits, and above all, vigilance in keeping JPMC technology secure for our customers & clients.

You'll be on the front lines of managing vulnerabilities by making critical decisions on the inherent risk to the infrastructure or the application itself and thus the risk to the firm clients & customers.

You will be working with a highly-motivated team laser-focused on analyzing, scoping, developing and delivering solutions built to stop adversaries and strengthen our security posture.

Your research and work will ensure stability and resiliency of our current technology products, emerging technology and our vast application estate.

Working in tandem with various internal teams both in Cyber and various Line of Business partners, as well as technologists and innovators across our global network, by leading the positive actions that will stop adversaries and strengthen customer's confidence.

Job Responsibilities


* Review new vulnerabilities published from multiple sources and identify those that may pose risk to the firm.


* Define an accurate risk rating in line with proprietary and industry standard risk rating methodologies.

Document impacted assets and/or application(s) providing a detailed write up on the risk and exposure posed by vulnerabilities.


* Assess threat actor intelligence, exploit code, and/or conceptual code to determine attack vectors.

Recommend any risk mitigation factors and define the remediation activity if known.


* Assess security researcher identified vulnerabilities to provide recommendations on remediation and identify additional risk


* Drive the global teams' daily workflow, undertaking daily case-load analysis and prioritization.

Represent the global team and be the technical lead on major incidents impacting the Vulnerability Management space.


* Demonstrate the ability to develop and form strong working relationships with the partnering Cybersecurity Operations functions and key technology leaders in the region.

Provide technical leadership within the team, mentoring and guiding junior team members.


* Uses enterprise-authorized AI capabilities within the work environment to accelerate security investigation triage and incident reporting, validating outputs and handling operational data according to sensitivity and security requirements.


* Drives reuse-first adoption of AI-assisted workflows to enhance threat detection and response processes, ensuring outputs are validated and aligned to security, resiliency, and auditability expectations.

Required qualifications, capabilities, and skills


* Formal Training or certification with 5+ years' experience in a Cyber Operations/Vulnerability Management role with a strong knowledge of operational processes supporting Vulnerability Management and the wider Security Ope...