Apply Now    

Application Security Architect - Cyber | OWASP

Req #: 170104889
Location: Jersey City, NJ, US
Job Category: Technology
Potential Referral Amount: 5000 US Dollar (USD)
JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at http://www.jpmorganchase.com/.
 
The Cybersecurity organization within JPMorgan Chase & Co. provides security services to all lines of business (LOB) across JPMC. The objective of Cybersecurity is to balance both business alignment and the centralized delivery of core products and services including Security Standards, Monitoring & Protection, Assurance & Awareness, and Security Operations. Cybersecurity is designed to address the JPMC global security needs across all LOBs and the demand to leverage economies of scale across the firm.
 
Architecture @ JPMC:
The Cybersecurity Enterprise Architecture Team translates security requirements into system qualities (e.g., tenets) and then into repeatable design strategies and patterns. The Team designs architectural models of solutions and describes how those solutions integrate into the broader technical infrastructure of the firm. In partnership with development teams, the Cybersecurity Enterprise Architecture Team drives architecture standards into delivered solutions.
 
Job Description:
We are seeking an Application Security Architect to collaborate with the application development community across JPMC to integrate cybersecurity services. The successful candidate will be a strong technologist with pragmatic view and creative mind, and a natural collaborator with LOB security architects, engineers, developers and senior management. The Application Security Architect is expected to lead through influence, communicate effectively through clarity of thought and demonstrated understanding of business and technical requirements.
Required Qualifications:
  • Proven experience working in application security, and/or secure software development (both a detailed technical knowledge and hands-on practice)
  • Expert knowledge and implementation of secure application architectures, encryption technologies, cryptography and key management, and authentication and control of application permissions
  • Direct experience with secure application development and application security risk mitigation techniques
  • Knowledge of the common application layer vulnerabilities and the ability to explain these risks to developers
  • Knowledge of tiered application architectures, web applications, APIs, mobile applications, desktop applications, and the underlying technology of cloud infrastructure
  • Experience securing platform web APIs
  • Experience with one or more general purpose programming languages including but not limited to:  Java, C/C++, C#, Objective C, Python, JavaScript.
  • Versed with recent versions of the OWASP Top Ten for web application security
  • Detailed understanding of and experience with application deployments in corporate environments
  • Experience working in DevOps, continuous integration and Agile, including design of security solutions, including creating artifacts, models, and strategy presentations
  • Active professional security certifications (e.g., CISSP or other similar industry qualification)
  • Strong written and verbal communication skills
  • Experience working in a matrixed organization, achieving goals through partnership and collaboration
Apply Now    

Join our Talent Community

Not ready to apply? Leave your information with us and we will keep you up to date with new career opportunities.

Things to note

Sign in to our application system to continue your job search or update your profile.

Current employees sign in here. Contractors sign in here.

Any information you provide is confidential and will only be viewed by our recruiters in an effort to fill open positions. In addition, the information you provide is subject to our privacy policy practices.

Please note that J.P. Morgan will not accept unsolicited approaches or speculative CVs, nor will J.P. Morgan be responsible for any related fees, from Third Party Firms who are not preferred suppliers.

The firm invites all interested and qualified candidates to apply for employment opportunities.

Need disability related assistance?

If you are a US or Canadian applicant with a disability who is unable to use our online tools to search and apply for jobs, please click here.

Important links

Click here to view the "EEO is the Law" poster.

Click here to view the "EEO is the Law" supplemental poster.

Click here to view our U.S. Pay Transparency Policy.

JPMorgan Chase is an equal opportunity and affirmative action employer Disability/Veteran.