Senior Lead Security Engineer: Cyber Operations Response Development (CORD)

Join a dynamic team where you can play a crucial role in enhancing the cybersecurity posture of a world-renowned company.

As a Senior Lead Security Engineer at JPMorgan Chase within the Corporate Sector - Cybersecurity & Technology Controls, your role will be pivotal in enhancing cyber control detections, refining control layers, and fortifying response capabilities. Your efforts will significantly influence the efficiency of our Cybersecurity Operations teams and the security of our Product Security Lines (PSLs). You will also apply platform engineering principles to guarantee scalable and efficient cybersecurity solutions, primarily focusing on the Employee Platforms (EP) division.

Job responsibilities

• Collaborate with control owners and Cybersecurity Operations teams to enhance detection accuracy and reduce response times for Cybersecurity Operations teams.
• Drive control optimization by focusing on preventive solutions and automating high-confidence indicators to reduce reliance on reactive detection analytics.
• Develop and implement tailored response playbooks to streamline existing incident management and automate response actions for specific threat scenarios.
• Apply platform engineering principles to design and implement scalable cybersecurity solutions that integrate seamlessly with existing infrastructure.
• Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs
• Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability
• Be responsible for triaging based on risk assessments of various threats and managing resources to cover impact of disruptive events
• Adds to team culture of diversity, equity, inclusion, and respect

• Formal training or certification on software engineering concepts and 5+ years applied experience.
• Experience in cybersecurity detection and response, with a focus on enhancing detection accuracy and optimizing control measures.
• Strong understanding of cyber threat management, and the ability to develop and implement effective response protocols.
• Experience in collaborating with cross-functional teams to drive improvements in cybersecurity operations.
• Ability to analyze and interpret operational data to inform control optimization efforts.
• Excellent communication skills to engage with stakeholders and drive alignment on cybersecurity initiatives.
• Ability to tackle design and functionality problems independently with little to no oversight
• Skilled in planning, designing, and implementing enterprise-level security solutions
• Advanced knowledge of software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.)

• Experience with enterprise collaboration software suites, to facilitate secure communication and collaboration across teams while maintaining compliance with cybersecurity policies.
• Experience with SMTP (Simple Mail Transfer Protocol) to ensure secure and reliable email communication, including the ability to configure and manage email security settings to prevent phishing and other email-based threats.
• Experience with DLP (Data Loss Prevention) solutions to protect sensitive data from unauthorized access and exfiltration, including the ability to implement and manage DLP policies and tools to safeguard critical information.
• Experience in developing and implementing cybersecurity playbooks and response actions.
• Familiarity and/or experience with Cybersecurity Operations functions and alert management, triage, and response to cyber threats.
• Knowledge of metrics and evaluation methods to assess the success and impact of cybersecurity initiatives.
• Proficiency in automation and orchestration tools to enhance cybersecurity operations.