Lead Security Engineer - Java Development

Your seniority as a security software engineer puts you in the ranks of the top talent in your field. Play a critical role at one of the world's most iconic financial institutions where security is vital.

As a Security Engineer III at JPMorgan Chase within the Cyber and Tech Controls line of business, you serve as a seasoned member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Carry out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions in support of the firm’s business objectives

Job responsibilities

• Executes security solutions design, development, and technical troubleshooting with the ability to apply knowledge of existing security solutions to satisfy security requirements for internal clients (e.g., product, platform, application owners)


• Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems


• Applies specialized tools (e.g., vulnerability scanner) to analyze and correlate incident data to identify, interpret, and summarize the probability and impact of threats when determining specific vulnerabilities


• Leads delivery of continuity-related awareness, training, educational activities, and exercises


• Adds to team culture of diversity, equity, inclusion, and respect

Required qualifications, capabilities, and skills

• Formal training or certification on security engineering concepts and 3+ years applied experience


• Experience developing security engineering solutions


• Resilient, highly available, high-throughput web applications/services


• Proficient in coding in one of more languages


• Java language knowledge and experience


• Overall knowledge of the Software Development Life Cycle


• Solid understanding of agile methodologies such as CI/CD, applicant resiliency, and security


• Strong understanding of Application and Cloud Security fundamentals


• Cloud Technologies s.a. AWS, Azure, GCP

Preferred qualifications, capabilities, and skills

• Working experience building containerized applications


• Hands-on experience with Kubernetes and Serverless workloads in AWS


• Experience building high-load, low-latency, mission critical distributed systems


• Experience leading DevOps transformation


• Understanding of Cryptography and Data Protection techniques


• Additional languages such as Python