Lead Security Engineer- SIEM ENG US

Location: OH, United States

Job Family: Security Engineering

About the Role

At JP Morgan Chase, we are at the forefront of redefining the future of financial services through innovative technology and robust cybersecurity. As a Lead Security Engineer specializing in SIEM Engineering, you will play a pivotal role in safeguarding our global banking operations against evolving cyber threats. Based in Ohio, United States, this position involves designing, building, and maintaining critical SIEM solutions that provide real-time visibility and protection for our vast network of financial systems, including trading platforms, payment gateways, and client data repositories. You will work within an agile team environment, collaborating with cybersecurity experts, data scientists, and compliance officers to ensure our defenses align with stringent regulatory requirements like SOX and PCI-DSS, while driving efficiency in threat detection for one of the world's largest financial institutions. Your responsibilities will span the full lifecycle of SIEM development, from architecting scalable systems using tools like Splunk or ELK Stack to tuning alerts for anomaly detection in high-volume financial transactions. You will lead efforts in threat hunting, incident response, and integration with other security technologies, all while mentoring team members and contributing to JP Morgan Chase's commitment to a secure digital ecosystem. This role demands a deep understanding of the financial services landscape, where protecting sensitive data and maintaining operational resilience are paramount. Expect to tackle complex challenges, such as mitigating insider threats or ransomware targeting banking infrastructure, in a dynamic setting that values innovation and precision. Joining JP Morgan Chase means becoming part of a culture that invests in your growth and well-being. We offer unparalleled opportunities for professional advancement in cybersecurity, supported by world-class resources and a collaborative community. If you are passionate about engineering secure financial futures and thrive in a fast-paced, regulated industry, this Lead Security Engineer role will allow you to make a tangible impact on global finance while advancing your career at a premier institution.

Key Responsibilities

• Design, build, and maintain SIEM solutions to monitor and protect JP Morgan Chase's global financial infrastructure against cyber threats
• Collaborate with agile teams to integrate SIEM capabilities into broader cybersecurity frameworks, ensuring real-time threat detection and response
• Develop and optimize security rules, alerts, and dashboards tailored to financial services risks, such as fraud detection and data breach prevention
• Conduct threat modeling and vulnerability assessments specific to banking systems, including payment processing and trading platforms
• Lead incident response efforts using SIEM data, coordinating with internal teams to mitigate risks to client assets and regulatory compliance
• Mentor junior engineers on best practices for SIEM engineering in a regulated financial environment
• Perform regular audits and tuning of SIEM systems to reduce false positives and enhance detection accuracy for sophisticated attacks
• Integrate SIEM with other security tools like endpoint detection, network monitoring, and identity access management
• Stay abreast of emerging threats in the financial sector and recommend enhancements to SIEM configurations accordingly
• Document processes and contribute to knowledge sharing within JP Morgan Chase's cybersecurity community

Required Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field
• Minimum of 7 years of experience in cybersecurity engineering, with at least 3 years focused on SIEM systems
• Proven track record in designing and implementing security information and event management solutions in a large-scale enterprise environment
• Strong understanding of financial services regulations such as GDPR, SOX, and PCI-DSS, with experience ensuring compliance in banking operations
• Experience working in agile methodologies and collaborating with cross-functional teams in a high-stakes financial institution
• Hands-on expertise with SIEM platforms like Splunk, ELK Stack, or IBM QRadar, including tuning and optimization for threat detection
• Ability to obtain necessary security clearances and pass background checks required for roles at JP Morgan Chase

Preferred Qualifications

• Advanced certifications such as CISSP, CISM, or GIAC Certified Incident Handler
• Experience in cloud security architectures, particularly AWS, Azure, or Google Cloud in a financial context
• Prior work in threat hunting and incident response within the banking sector
• Knowledge of machine learning applications for anomaly detection in SIEM environments
• Master's degree in Cybersecurity or a related discipline

Required Skills

• Expertise in SIEM platforms (e.g., Splunk, ELK, QRadar) for log aggregation and analysis
• Proficiency in scripting languages like Python, PowerShell, or Bash for automation
• Knowledge of network protocols, firewalls, and intrusion detection systems
• Experience with regex, SQL, and data analytics for parsing security events
• Understanding of cybersecurity frameworks like NIST, MITRE ATT&CK in financial contexts
• Strong problem-solving and analytical skills for threat investigation
• Excellent communication skills for reporting to stakeholders in a banking environment
• Agile and DevSecOps methodologies for collaborative engineering
• Familiarity with cloud security tools (AWS GuardDuty, Azure Sentinel)
• Incident response and forensics techniques
• Compliance knowledge (SOX, PCI-DSS, GDPR) for regulated industries
• Machine learning basics for SIEM enhancement
• Project management skills for leading security initiatives
• Attention to detail in high-pressure financial security operations
• Team collaboration and leadership in cross-functional settings

Benefits

• Competitive base salary and performance-based annual bonuses aligned with financial services industry standards
• Comprehensive health, dental, and vision insurance plans with employer contributions
• 401(k) retirement savings plan with generous company matching up to 6% of eligible compensation
• Paid time off including vacation, sick days, and parental leave policies
• Professional development opportunities, including tuition reimbursement for cybersecurity certifications
• Employee stock purchase plan and access to JP Morgan Chase's global mobility programs
• Wellness programs featuring gym memberships, mental health support, and financial wellness counseling
• Hybrid work arrangements with flexibility for Ohio-based roles, plus commuter benefits

JP Morgan Chase is an equal opportunity employer.