Sr Lead Security Engineer - Workforce - JPMorganChase

Key Responsibilities

• Lead the design, implementation, and continuous improvement of security controls for cloud and on‑prem applications, ensuring compliance with industry standards and internal policies.
• Architect and maintain secure DevSecOps pipelines, integrating automated security testing, code analysis, and vulnerability management into CI/CD workflows.
• Conduct threat modeling, risk assessments, and security architecture reviews for new and existing products, providing actionable recommendations to engineering teams.
• Collaborate with cross‑functional teams to remediate identified vulnerabilities, enforce secure coding practices, and drive security awareness across the organization.
• Mentor and coach junior engineers on security best practices, emerging threats, and emerging technologies.

Requirements

• 10+ years of experience in cybersecurity engineering, with a strong focus on cloud security and secure software development.
• Proficiency in Python, Node.js, and AWS security services (e.g., IAM, KMS, GuardDuty, Security Hub).
• Deep knowledge of security architecture, threat modeling, and secure design principles.
• Hands‑on experience with DevSecOps tools (e.g., Snyk, Trivy, GitHub Actions, Terraform).
• Excellent communication skills and a proven ability to influence stakeholders at all levels.