JPMorgan Chase Vulnerability Management - Cybersecurity in Jersey City, New Jersey

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at http://www.jpmorganchase.com/.

The Cybersecurity organization within JPMorgan Chase & Co. provides security services to all lines of business (LOB) across JPMC. The objective of Cybersecurity is to balance both business alignment and the centralized delivery of core products and services including Security Standards, Monitoring & Protection, Assurance & Awareness, and Security Operations. Cybersecurity is designed to address the JPMC global security needs across all LOBs and the demand to leverage economies of scale across the firm.

The Vulnerability Management function is hiring for a VM Lead based in our New Jersey location:

This role requires a wide variety of strengths and capabilities, including:

  • Expertise in Cybersecurity practices; specifically the Vulnerability Management lifecycle, workflows, commonly used toolsets, Vulnerability Identification, and operational process.

  • Working knowledge of Threat Intelligence, Attack Analysis, Risk management processes & principles (ATT&CK, MITRE) & Proficiency in the use of standard Cyber Operational tools (Scanning, Operational, Threat Intelligence gathering)

  • Production of research reports, and white papers, sharing of analysis on behalf of Global Cybersecurity, and preparation and delivery of regular written and verbal briefings across all levels of the enterprise that are consumable by business and technology stakeholders across the organization.

  • Collaboration with global high-performing teams and individuals throughout the firm to accomplish strategic goals, reduce risk and improve Cyber posture.

  • Strong deductive reasoning, critical, and strategic thinking, problem solving, and prioritization at pace

  • Expertise in technology controls and governance including creation and delivery of control capabilities, governance models, and delivery frameworks.

  • Identify and action opportunities to improve and progress support to the business both generically and in times of a specific need.

The candidate will also need to learn to use of one or more High Security Access (HSA) systems. Users of these systems are subject to enhanced screening, which includes both criminal and credit background checks, and/or other enhanced screening at the time of accepting the position and on an annual basis thereafter. The enhanced screening will need to be successfully completed prior to commencing employment or assignment.

Qualifications:

  • 5 years+ in a cyber, or Vulnerability Management leadership role, including managing an at-scale global operational team, and complex projects.

  • Demonstrable knowledge of Vulnerability Management techniques in a (cyber) environment, global cyber threats, threat actors and the attack vectors used by adversaries.

  • A broad understanding of all areas of banking and the threats faced by the financial sector.

  • Knowledge of TCP/IP and other common networking concepts and protocols, including routing, DNS, tunnelling, network defense components, such as firewalls, IDS/IPS, access control, and operational security and attack techniques

  • Experience with programming languages such as Java, C. C++, asp, Python and .Net

  • Previous experience in an incident management operational function, and experience within Infrastructure operations on enterprise platforms including Windows & Unix.

  • System Administrator experience, and familiarity with system level debugging, & machine language across platforms

  • Experience in conducting security research including intelligence collection (OSINT,SIGINIT, etc.)

  • Working knowledge of penetration testing frameworks & software (Metasploit)

  • A broad understanding of all areas of banking and the threats faced by the financial sector.

  • Solid and demonstrable comprehension of Information Security and Industry standards.

  • Sound awareness of leading vendor products/applications from Oracle [Java], Adobe and Microsoft to include product lifecycle & release schedules

  • Excellent written and verbal communication skills. Highly Desired:

  • Previous experience (3 years +) in an ‘at scale’ Cyber Security Operational function – with experience in driving optimization of incidents, impact assessment, resolution of time sensitive escalations, incident handling, and vulnerability response.

  • Working knowledge of global threats to international cyber security, and conversant in the tactics, techniques and procedures used by cyber adversaries.

  • Degree level qualification or equivalent.

  • Previous Application Development or Application Security experience is preferable

  • Experience with Agile delivery and framework

  • Experience in a CCIRM role and/or experience in an intelligence training role.

  • Experience in or dealing with Government agencies.

  • Cyber/technical or network qualifications.

  • Financial sector experience.

Your expertise in cyber, combined with your desire to provide innovative security services, will be an asset to our Cybersecurity team. Help deliver high-quality security solutions across all our lines of business around the world by creating, designing, implementing, and maintaining next-level technology. The work you’ll do is vital, as it will protect over $18 trillion of assets under custody and $393 billion in deposits every day.

When you work at JPMorgan Chase & Co., you’re not just working at a global financial institution. You’re an integral part of one of the world’s biggest tech companies. In 14 technology hubs worldwide, our team of 40,000+ technologists design, build and deploy everything from enterprise technology initiatives to big data and mobile solutions, as well as innovations in electronic payments, cybersecurity, machine learning, and cloud development. Our $9.5B+ annual investment in technology enables us to hire people to create innovative solutions that will not only transform the financial services industry, but also change the world.

JPMorgan Chase is an equal opportunity and affirmative action employer Disability/Veteran.