Security Engineer [Multiple Positions Available]
at J.P. Morgan
Posted 15 days ago
No clicks
The Security Engineer will report to the program functional lead and partner with product teams to assess and standardize security practices, harden product features, and raise the security posture of product environments. Responsibilities include application security assessments, penetration testing, threat modeling, evaluation of security controls and architectural conformance, and developing prototypes and reference models for shared security controls. The role involves teaching secure development practices, contributing to security training, and working with cloud, OS, hypervisor, and application security topics. The position requires up to 10% domestic and international travel.
- Compensation
- Not specified
- City
- Dallas
- Country
- United States
Currency: Not specified
Full Job Description
Location: Plano, TX, United States
DESCRIPTION:
Duties: Report to functional lead of the program and partner with product teams to assess and standardize security practices, raise the security bar on product environments, and harden the product features. Teaching application security and secure development practices. Scope application security assessments and penetration tests. Contribution to security training development and implementation. Lead the evaluation of security controls, such as libraries and frameworks, their development and their deployment. Guidance in the development of prototypes, Proofs of Concept and Reference Models for shared security controls at our Firm. Threat Modeling according to standardized processes. Evaluation of architectural conformance to the firm's security standards. Interpretation of the firm's Control Objectives in the context of novel application architectures. This position requires up to 10% domestic and international travel.
QUALIFICATIONS:
Minimum education and experience required: Bachelor's degree in Electronic Engineering, Computer Science, Computer Information Systems, Computer Engineering, or related field of study plus 5 years (60 months) of experience in the job offered or as Security Engineer, IT Security Analyst, Information Security, or related occupation. The employer will alternatively accept a Master's degree in Electronic Engineering, Computer Science, Computer Information Systems, Computer Engineering, or related field of study plus 3 years (36 months) of experience in the job offered or as Security Engineer, IT Security Analyst, Information Security, or related occupation.
Skills Required: This position requires experience with the following: Working with Security fundamentals including: cryptography, modern memory safety, operating system internals, and web services security; Working on security threats, including: cloud security, operating system security, hypervisor security, and application security; Utilizing common open standards, including: mTLS, OpenID, and the shared responsibility model; at least one of the following object-oriented programming languages: Java, C#, or Python; Utilizing Penetration testing; Utilizing DevOps processes in a Cloud or SaaS environment; Operating at least one of the following public cloud environments: Amazon Web Services, Google App Engine, Azure, or Oracle Cloud; at least one of the following programming languages: Go or Rust. This position requires up to 10% domestic and international travel.
Job Location: 8181 Communications Parkway, Plano, TX 75024. This position requires up to 10% domestic and international travel.
Report to functional lead of the program and partner with product teams to assess and standardize security practices...
