At a Glance
- Tasks: Design and implement security solutions for fast-paced software delivery.
- Company: Join JPMorgan Chase, a global leader in financial services.
- Benefits: Diverse and inclusive workplace with growth opportunities.
- Other info: Hands-on role with a focus on modern engineering practices.
- Why this job: Shape the future of secure software while collaborating with innovative teams.
- Qualifications: Experience in software or cloud engineering and strong problem-solving skills.
The predicted salary is between 60000 - 80000 Β£ per year.
Join us and shape the future of secure software delivery. As a Lead Security Engineer at JPMorgan Chase in the Platform team, you will embed security into engineering workflows and deliver scalable, engineering solutions. You'll work at the intersection of security and platform engineering, actively designing, building, and implementing security capabilities.
Your role is hands-on, collaborating with squads to reduce platform risk and enable secure software delivery. You'll help shape a modern, engineering-led approach to security, empowering teams to move fast while managing risk.
- Design, build, and operate scalable security capabilities integrated into engineering workflows.
- Embed security into the software development lifecycle by implementing automated controls.
- Improve software supply chain security through SBOM generation and dependency visibility.
- Analyze and enrich vulnerability data with contextual information for effective remediation.
- Provide actionable insights and guidance to engineering teams to address security issues.
- Identify and assess security risks in runtime and cloud environments, supporting remediation.
- Support the development and operation of runtime security tooling for production risk visibility.
- Contribute to security incident response activities, including triage and investigation.
- Work with risk, governance, and control teams to support reporting and compliance.
Hands-on experience in software, platform, or cloud engineering roles deploying systems in public cloud environments is required. You should have a strong ability to design and implement security controls within engineering workflows, especially CI/CD pipelines. Proficiency in at least one programming or scripting language for automation and integration is essential.
Solid understanding of the Software Development Life Cycle and integrating security practices is necessary, along with experience applying security testing and controls within CI/CD pipelines. Strong analytical and problem-solving skills are needed to deliver practical security solutions.
Good understanding of modern engineering practices, including CI/CD, system resilience, and secure software delivery is important. Experience in platform security, DevSecOps, or engineering-led security teams is preferred. Familiarity with security tools such as Snyk and Wiz, and knowledge of software supply chain security concepts, including SBOM, SLSA, and dependency management, is beneficial.
Ability to communicate technical risks clearly to engineering teams and senior stakeholders is crucial.
Lead Cyber Security Engineer in Westminster employer: J.P. Morgan
As a leading global financial institution, we pride ourselves on fostering a dynamic and inclusive work environment that empowers our employees to excel. The Head of Markets Tax Operations role offers unparalleled opportunities for professional growth, collaboration across diverse teams, and the chance to drive innovation in tax operations while working in vibrant locations like Spain, Italy, and Hungary. Join us to be part of a culture that values excellence, embraces technology, and prioritises employee development, ensuring you can make a meaningful impact in your career.