Senior Lead Security Engineer

Location: Jersey City, NJ, United States

Job Family: Security Engineering

About the Role

At JP Morgan Chase, we are at the forefront of financial services innovation, and our cybersecurity teams play a pivotal role in safeguarding our global operations against evolving threats. As a Senior Lead Security Engineer in our Jersey City, NJ office, you will drive significant business impact by tackling complex cybersecurity challenges that span multiple technology domains, including cloud infrastructure, application security, and network defenses. This role is essential in protecting sensitive financial data, ensuring regulatory compliance, and enabling secure digital banking experiences for millions of customers worldwide. You will lead initiatives that integrate cutting-edge security measures into our trading platforms, payment systems, and enterprise applications, contributing to the firm's reputation as a trusted leader in the industry. In this senior leadership position, you will collaborate with cross-functional teams of engineers, architects, and compliance experts to architect resilient security frameworks tailored to the high-stakes environment of financial services. Your responsibilities will include spearheading threat modeling exercises, orchestrating vulnerability management programs, and responding to incidents that could impact market operations. By leveraging your expertise in standards like NIST and PCI-DSS, you will help mitigate risks associated with cyber attacks, insider threats, and supply chain vulnerabilities, all while aligning with JP Morgan Chase's commitment to ethical and innovative security practices. We seek a strategic thinker with a passion for cybersecurity who thrives in a dynamic, fast-paced setting. This role offers the opportunity to influence enterprise-wide security strategies and mentor the next generation of security professionals. Join JP Morgan Chase to make a tangible difference in securing the future of finance, with access to world-class resources and a supportive culture that values innovation and work-life balance.

Key Responsibilities

• Lead the design and implementation of advanced security solutions to protect JP Morgan Chase's global financial infrastructure
• Conduct threat assessments and vulnerability analyses across multiple technology domains, including networks, applications, and cloud services
• Collaborate with engineering teams to integrate security best practices into software development lifecycles (SDLC) for banking applications
• Drive incident response strategies and post-mortem analyses to mitigate risks in real-time trading and transaction systems
• Develop and maintain security policies aligned with regulatory requirements for the financial services industry
• Mentor junior engineers and foster a culture of security awareness within cross-functional teams
• Evaluate and recommend emerging security technologies to enhance protection against cyber threats targeting financial assets
• Monitor and report on key security metrics to senior leadership, ensuring compliance with SEC and FINRA standards
• Participate in audits and penetration testing to safeguard sensitive customer data and intellectual property

Required Qualifications

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field
• 8+ years of experience in cybersecurity engineering, with a focus on enterprise-level security solutions
• Proven track record in leading security projects within financial services or regulated industries
• Deep knowledge of cybersecurity frameworks such as NIST, ISO 27001, and PCI-DSS compliance standards
• Experience with cloud security architectures in AWS, Azure, or GCP environments
• Strong understanding of threat modeling, vulnerability assessment, and incident response in high-stakes financial environments
• Professional certifications such as CISSP, CISM, or CEH

Preferred Qualifications

• Advanced degree (Master's or MBA) in Cybersecurity or related field
• Experience in securing financial trading systems or payment processing platforms
• Familiarity with JP Morgan Chase's internal security tools and methodologies
• Prior leadership in cross-functional teams spanning multiple technology domains
• Knowledge of emerging threats like quantum computing risks to financial cryptography

Required Skills

• Expertise in network security protocols (e.g., firewalls, IDS/IPS, VPNs)
• Proficiency in programming languages like Python, Java, or C++ for security scripting
• In-depth knowledge of encryption standards and secure coding practices
• Experience with SIEM tools such as Splunk or ELK Stack for threat detection
• Strong analytical and problem-solving abilities in complex cybersecurity scenarios
• Leadership and communication skills for stakeholder engagement
• Familiarity with DevSecOps practices and CI/CD pipelines
• Understanding of financial regulations and data privacy laws (e.g., GDPR, SOX)
• Ability to conduct risk assessments and business impact analyses
• Proficiency in cloud security tools (e.g., AWS IAM, Azure Sentinel)
• Experience with endpoint detection and response (EDR) solutions
• Soft skills in team collaboration and mentoring
• Knowledge of malware analysis and reverse engineering
• Adaptability to evolving cyber threats in the financial sector

Benefits

• Competitive base salary and performance-based annual bonuses
• Comprehensive health, dental, and vision insurance plans
• 401(k) retirement savings plan with company matching contributions
• Generous paid time off, including vacation, sick days, and parental leave
• Professional development programs, including tuition reimbursement and certification support
• Employee stock purchase plan and financial wellness resources
• On-site fitness centers and wellness programs at Jersey City location
• Flexible work arrangements, including hybrid remote options

JP Morgan Chase is an equal opportunity employer.