JPMorgan Chase3 months ago

Lead Security Engineer - Python/AWS/Terraform

JPMorgan Chase

On-site · Plano, Texas, United States

Plano, Texas, United StatesOn-siteFull TimeSenior LevelNot SpecifiedInvestment BankingEnterprise

Type

Full Time

Level

Senior Level

Education

Not Specified

Company size

Enterprise

Industry

Investment Banking

Job Summary

Lead Security Engineer at JPMorganChase within the Cybersecurity and Tech Controls team, delivering secure software solutions. Responsibilities include developing secure production code and reviewing others' code, reducing vulnerabilities by following industry insights and regulations, collaborating with stakeholders to address security needs, conducting discovery, vulnerability, penetration testing, and threat modeling across applications (including external apps interacting with JPMorganChase networks), and contributing to an inclusive team culture. Requires formal training or certification in software engineering concepts and 5+ years of security engineering experience, expertise in enterprise security design and implementation, proficiency in multiple programming languages, strong SDLC knowledge, and AWS ecosystem experience (serverless, ECS, EC2, Lambda, API Gateway, Step Functions). Preferred: ability to communicate with senior leaders and relevant certifications (AWS, networking, CISSP, etc.).

Required Qualifications

Formal training or certification on software engineering concepts
5+ years applied experience developing security engineering solutions
Skilled in planning, designing, and implementing enterprise level security solutions
Advanced in one or more programming languages
Proficient in all aspects of the Software Development Life Cycle
Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security
Experience with threat modeling, discovery, vulnerability, and penetration testing
In-depth knowledge of the financial services industry and their IT systems
Experience creating and handling CI/CD pipelines, application resiliency, and security
Experience with AWS services, including server-less solutions, ECS, EC2, Lambdas, API Gateway, Step Functions and storage services
Basic understanding of networking concepts, protocols, and security principles
Familiarity with firewalls, intrusion detection systems, and VPNs
Good communication skills
teamwork capabilities
self-learning attitude

Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.

Hiring someone like this?

Get your role in front of qualified candidates on Sorce.

Get started