Lead Security Engineer - AWS

Location: Plano, TX, United States

Job Family: Security Engineering

About the Role

At JP Morgan Chase, we are at the forefront of financial services innovation, and our cybersecurity teams play a pivotal role in safeguarding our global operations against evolving threats. As a Lead Security Engineer - AWS in our Plano, TX office, you will lead the development and deployment of advanced cybersecurity solutions across multiple technical domains. Working within an agile team, you will focus on securing AWS cloud infrastructures that support critical banking functions, from transaction processing to client data management. Your expertise will ensure that our systems remain resilient, compliant with stringent financial regulations like PCI-DSS and SOX, and aligned with JP Morgan's commitment to protecting customer assets in a highly regulated industry. In this leadership role, you will collaborate closely with developers, architects, and compliance experts to embed security into every phase of the software development lifecycle. Responsibilities include architecting secure AWS environments using services like VPC, GuardDuty, and Macie, while automating threat detection and response workflows. You will conduct comprehensive risk assessments tailored to the financial sector's unique challenges, such as fraud prevention and data privacy, and drive initiatives to mitigate vulnerabilities in real-time. By fostering a culture of secure innovation, you will help JP Morgan maintain its position as a trusted leader in global finance. We value professionals who thrive in dynamic, high-impact environments and are passionate about leveraging cutting-edge technologies to combat cyber risks. This position offers the opportunity to influence enterprise-wide security strategies, mentor emerging talent, and contribute to groundbreaking projects that shape the future of secure banking. Join JP Morgan Chase and be part of a team dedicated to excellence in cybersecurity, where your work directly supports our mission to enable the world's most important financial institutions.

Key Responsibilities

• Design, implement, and maintain robust cybersecurity solutions across AWS environments to protect JP Morgan Chase's financial assets and client data
• Collaborate with agile teams to integrate security controls into application development and deployment processes
• Conduct threat modeling and risk assessments for cloud-based financial systems, ensuring compliance with industry regulations
• Monitor and respond to security incidents using AWS-native tools like GuardDuty and Security Hub
• Develop and automate security policies using Infrastructure as Code (IaC) tools such as Terraform or CloudFormation
• Lead security reviews and audits for multi-cloud and hybrid architectures in the banking sector
• Mentor team members on secure coding practices and AWS security best practices
• Stay abreast of emerging threats in financial cybersecurity and recommend proactive defenses
• Collaborate with cross-functional teams to enhance overall security posture in support of JP Morgan's global operations

Required Qualifications

• Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent work experience
• Minimum of 7 years of experience in cybersecurity engineering, with a focus on cloud security
• Proven expertise in AWS cloud infrastructure, including services like EC2, S3, VPC, IAM, and CloudTrail
• Strong understanding of security frameworks such as NIST, CIS, and PCI-DSS relevant to financial services
• Experience implementing and managing security tools in an agile development environment
• Ability to obtain and maintain relevant security certifications (e.g., CISSP, AWS Certified Security - Specialty)
• Demonstrated experience in threat modeling, vulnerability assessment, and incident response in a high-stakes financial environment

Preferred Qualifications

• Advanced degree in Cybersecurity or related field
• Experience working in the financial services industry, particularly with regulatory compliance like SOX and GDPR
• Familiarity with DevSecOps practices and CI/CD pipelines in AWS
• Prior leadership experience mentoring junior engineers in security best practices
• Knowledge of machine learning-based threat detection tools

Required Skills

• Expertise in AWS security services (e.g., IAM, KMS, WAF)
• Proficiency in scripting languages like Python or Bash for automation
• Knowledge of network security protocols (e.g., TLS, VPN, firewalls)
• Experience with SIEM tools such as Splunk or ELK Stack
• Understanding of container security (e.g., Docker, Kubernetes on EKS)
• Strong analytical and problem-solving skills for threat detection
• Excellent communication skills for collaborating with stakeholders
• Familiarity with compliance standards in financial services (e.g., FFIEC, GLBA)
• Ability to work in fast-paced agile environments
• Project management skills for leading security initiatives
• Knowledge of encryption and data protection in cloud environments
• Experience with vulnerability scanning tools (e.g., Nessus, AWS Inspector)
• Soft skills in risk assessment and ethical hacking
• Team leadership and mentoring capabilities

Benefits

• Competitive base salary and performance-based annual bonuses
• Comprehensive health, dental, and vision insurance plans
• 401(k) retirement savings plan with company matching contributions
• Generous paid time off, including vacation, sick days, and parental leave
• Professional development opportunities, including tuition reimbursement and access to internal training programs
• Employee stock purchase plan and financial wellness resources tailored to the banking industry
• On-site fitness centers and wellness programs at JP Morgan Chase locations
• Flexible work arrangements, including hybrid options in Plano, TX

JP Morgan Chase is an equal opportunity employer.