Overview Drive cloud security innovation by building and enhancing solutions that protect our public cloud environments. Are you passionate about securing the future of cloud technology? Join our Cybersecurity & Technology Controls team, where you\'ll help shape the way JPMorgan Chase safeguards its public cloud environments. You\'ll have the opportunity to grow your career, develop your skills, and make a real impact by building solutions that protect our firm and clients. Be part of a collaborative team that values innovation, learning, and your unique perspective. Responsibilities Engage and improve the lifecycle of cloud services from inception to refinement Develop and build solutions for cloud governance, protection, auditing, monitoring, remediation, and reporting Design and enhance services to scale with the firm\'s growing cloud usage Develop, test, deploy, maintain, and enhance software and tooling solutions Manage project priorities, deadlines, and deliverables Perform system design and code reviews Advocate for engineering and operational excellence Lead stakeholder interactions and mentor junior engineers Collaborate with teams to integrate and automate cloud controls Analyze system metrics and data to drive improvements Communicate technical design ideas effectively to stakeholders Required qualifications, capabilities, and skills BS degree in Computer Science or equivalent practical experience Strong experience developing and architecting cloud-native applications with AWS services Proficiency with AWS services such as Lambda, SQS, DynamoDB, EKS; experience with Azure or GCP is a plus Practical exposure to Infrastructure as Code solutions such as Terraform and CloudFormation Experience developing enterprise software and proficiency in multiple languages, preferably Python CI/CD experience with tools such as Github and Jenkins Experience with Agile development methodologies Proficient verbal and written communication skills Ability to design and implement creative solutions to complex technical issues Demonstrated ability to quickly understand new architectures and designs Ability to analyze system metrics and data to draw insightful conclusions Forward-thinking mindset to prevent future technical debt Ability to work independently and collaboratively within a team Preferred qualifications, capabilities, and skills Strong cybersecurity knowledge Experience with Azure or GCP cloud-native application development About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world\'s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants\' and employees\' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About the Team Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we\'re setting our businesses, clients, customers and employees up for success. #J-18808-Ljbffr
Job Description The Cybersecurity & Technology Controls (CTC) group at JPMorgan Chase aligns the firm's cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group's number one priority is to enable the business by keeping the firm protected, stable and resilient. This role is within the CTC Product Security team aligned to the Azure Cloud Enablement (ACE) programme. As a Cloud Security Engineer, your primary responsibility will be to ensure that Public Cloud is adopted in a secure and compliant manner. You will play an important role in identifying and managing risk related issues and actions with respective technology. You will have an eye for detail and an ability to see the big picture across security issues. Responsibilities: Support the execution and enhancement of a long term information risk and control strategy designed to keep the information assets of the public cloud secure. Deliver risk based assessments of secure technology controls relating to cloud services, cloud platforms and architectural components. Support business technology teams to understand firm control requirements and implementations across a broad range of cloud architectures. Perform security reviews of infrastructure-as-code for cloud platform development. Contribute to documentation and agile processes in support of security programs. Interface with wider CTC teams ensuring platform integration with security operations, threat intelligence, IAM and network security. Preferred Skills: Keen desire to understand and secure public cloud technology. Eagerness to collaborate in a team, and comfortable in both virtual and office environments. Self-disciplined, self-managed, self-motivated and strong sense of ownership, urgency, and drive. Proficient verbal and written communication skills, including the ability to effectively participate in discussions and meetings with internal management, peer groups, regulators and senior stakeholders. Ability to prioritize and work under stringent timelines. AWS, Azure or Google Cloud certifications would be an advantage. Hands on experience of developing, engineering or architecting within a public cloud environment would be an advantage. Experience engineering with Terraform or infrastructure-as-code would be an advantage. Understanding of DevOps or CI/CD concepts would be an advantage. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. About the Team Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success. #J-18808-Ljbffr
Overview Job Description Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions to EPX (Engineer's Product and Experience) teams and their customers. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within CTC Enterprise Product Security, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems Develops secure and high-quality production code and reviews and debugs code written by others Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network Adds to team culture of diversity, equity, inclusion, and respect Ability to execute Threat Modelling Required qualifications, capabilities, and skills 7+ years experience Skilled in planning, designing, and implementing enterprise level security solutions Advanced in one or more programming languages Proficient in all aspects of the Software Development Life Cycle Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security Experience with threat modeling, discovery, vulnerability, and penetration testing In-depth knowledge of the financial services industry and their IT systems Preferred qualifications, capabilities, and skills Experience effectively communicating with senior business leaders AWS Security Certification About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About the Team Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success. #J-18808-Ljbffr
Overview Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions to EPX (Engineer's Product and Experience) teams and their customers. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within CTC Enterprise Product Security, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Responsibilities Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems Develops secure and high-quality production code and reviews and debugs code written by others Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability Conducts discovery,vulnerability, penetration testing,and threat scenarios onmultiple organizational assets to identifyand assess if vulnerabilities arepresent, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network Adds to team culture of diversity, equity, inclusion, and respect Ability to execute Threat Modelling Required qualifications, capabilities, and skills 7+ years experience Skilled in planning, designing,and implementing enterpriselevel security solutions Advanced in one or more programming languages Proficient in all aspects of the Software Development Life Cycle Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security Experience with threat modeling, discovery, vulnerability, and penetration testing In-depth knowledge of the financial services industry and their IT systems Preferred qualifications, capabilities, and skills Experience effectively communicating with senior business leaders AWS Security Certification #J-18808-Ljbffr
Join our dynamic team to navigate complex risk landscapes and fortify technology governance, making a pivotal impact in our firm's robust risk strategy. As a Tech Risk & Controls (TRC) Senior Associate within the Technology Risk Management team, you will contribute to the successful management of all aspects of Cyber and Technology Risk Management and Compliance in line with the firm's standards. Leverage your broad knowledge in risk management principles and practices to assess and monitor risks and implement effective controls. Your role in risk identification, control evaluation, and security governance is crucial in advising on complex situations and enhancing the firm’s risk posture. Through collaboration and analytical skills, you will contribute to the overall success of technology control stakeholders and ensure compliance with regulatory obligations and industry standards. Job responsibilities Assess and monitor technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices Support implementation of effective controls in collaboration with cross-functional teams and stakeholders Evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm's risk posture Analyze complex situations and data, provide advice on risk management strategies, and support the implementation of risk mitigation measures Required qualifications, capabilities, and skills 3+ years of experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders Proficient knowledge of risk management frameworks, regulations, and industry best practices Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or other industry-recognized risk certifications #J-18808-Ljbffr
As a Lead Site Reliability Engineer at JPMorgan Chase in the Commercial & Investment Bank's Digital & Platform Services division, you hold a leadership role in your team, demonstrate strong knowledge across multiple technical domains, and advise others on the technical and business issues facing them. Take lead and conduct resiliency design reviews, break up complex problems into digestible work for other engineers, act as a technical lead for medium to large-sized products, and provide advice and mentoring to other engineers. This role will involve designing, managing, and maintaining tools to automate operational processes on AWS. You will also collaborate with team members to identify comprehensive service level indicators and work with stakeholders to establish reasonable service level objectives and error budgets with customers. Job responsibilities Manage incident response to swiftly mitigate business impacts by coordinating cross-functional teams. Serve as the primary point of contact during major incidents, demonstrating the ability to quickly identify and resolve issues to prevent financial losses. Participate in 24x7 support coverage as required. Oversee, track, and validate all changes to the Production and Disaster Recovery environments. Automate security controls, governance processes, and compliance validation on AWS. Lead initiatives to enhance the reliability and stability of team applications and platforms, utilizing data-driven analytics to improve service levels. Document and share knowledge within the organization through internal forums and communities of practice. Provide ongoing guidance, tools, and solutions to support the firm's growth. Champion and demonstrate site reliability culture and practices, exerting technical influence throughout the team. Exhibit a high level of technical expertise in one or more domains, proactively identifying and resolving technology-related bottlenecks. Strive to become an expert on the applications and platforms under your purview, understanding their interdependencies and limitations. Required qualifications, capabilities, and skills Formal training or certification on software engineering concepts and proficient advanced experience. Deep proficiency in reliability, scalability, performance, security, enterprise system architecture, toil reduction, and other site reliability best practices with the ability to implement these practices within an application or platform. Fluency in at least one programming language such as (e.g., Python, Java Spring Boot, Go, Shell Script, etc.). Deep knowledge of software applications and technical processes with emerging depth in one or more technical disciplines. Proficiency and experience in observability such as white and black box monitoring, SLO alerting, and telemetry collection using tools such as Grafana, Dynatrace, Prometheus, Datadog, Splunk, etc. Proficiency and experience in Cloud Platform (AWS) infrastructure and setting up monitoring / observability for applications migrated to cloud platforms. Proficiency in continuous integration and continuous delivery tools (e.g., Jenkins, GitLab, Terraform, etc.). Experience with container and container orchestration (e.g., ECS, Kubernetes, Docker, etc.). Experience with troubleshooting common networking technologies and issues. Ability to identify and solve problems related to complex data structures, algorithms, and new technologies, and if needed, self-educate on new technology. Ability to expand and collaborate across different levels and stakeholder groups. Preferred qualifications, capabilities, and skills Ability to identify new technologies and relevant solutions to ensure design constraints are met by the software team. Ability to initiate and implement ideas to solve business problems. Experience building dashboards with products such as Grafana. Prior experience in both Systems Engineering and Software Development. AWS certification as an Architect, DevOps is preferred. #J-18808-Ljbffr
Overview JPMorgan Chase & Co. (NYSE: JPM) is a top financial services firm with over $2 trillion in assets, operating in more than 60 countries. As a leader in investment banking and various financial services, the firm\'s Cybersecurity & Technology Controls (CTC) group partners with all business lines to enhance cybersecurity, access management, and controls. The CTC group focuses on enabling business operations while ensuring protection and resilience. This role is part of the CTC Product Security team, aligned with the Azure Cloud Enablement (ACE) program. As a Cloud Security Engineer at JPMorgan Chase within the Cybersecurity & Technology Controls (CTC) group, your primary responsibility will be to ensure that Public Cloud is adopted in a secure and compliant manner. You will play an important role in identifying and managing risk related issues and actions with respective technology. You will have an eye for detail and an ability to see the big picture across security issues. Responsibilities Support the execution and enhancement of a long term information risk and control strategy designed to keep the information assets of the public cloud secure. Deliver risk based assessments of secure technology controls relating to cloud services, cloud platforms and architectural components. Support business technology teams to understand firm control requirements and implementations across a broad range of cloud architectures. Perform security reviews of infrastructure-as-code for cloud platform development. Contribute to documentation and agile processes in support of security programs. Interface with wider CTC teams ensuring platform integration with security operations, threat intelligence, IAM and network security. Required Qualifications Formal training or certification on Information Security concepts and proficient applied experience Eagerness to collaborate in a team, and comfortable in both virtual and office environments. Self-disciplined, self-managed, self-motivated and strong sense of ownership, urgency, and drive. Proficient verbal and written communication skills, including the ability to effectively participate in discussions and meetings with internal management, peer groups, regulators and senior stakeholders. Ability to prioritize and work under stringent timelines. Preferred Skills Keen desire to understand and secure public cloud technology. AWS, Azure or Google Cloud certifications would be an advantage. Hands on experience of developing, engineering or architecting within a public cloud environment would be an advantage. Experience engineering with Terraform or infrastructure-as-code would be an advantage. Understanding of DevOps or CI/CD concepts would be an advantage. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world\'s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants\' and employees\' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About the Team J.P. Morgan Asset & Wealth Management delivers industry-leading investment management and private banking solutions. Asset Management provides individuals, advisors and institutions with strategies and expertise that span the full spectrum of asset classes through our global network of investment professionals. Wealth Management helps individuals, families and foundations take a more intentional approach to their wealth or finances to better define, focus and realize their goals. Our Asset and Wealth Management division is driven by innovators like you who are driven to create technology solutions that make us work more efficiently and help our businesses grow. It\'s our mission to efficiently take care of our clients\' wealth, helping them get, and remain properly invested. Our team of agile technologists thrive in a cloud-native environment that values continuous learning using a data-centric approach in developing innovative technology solutions. #J-18808-Ljbffr
Job Description Full Stack Engineer - Governance & Transformation We know that people want great value combined with an excellent experience from a bank they can trust, so we launched our digital bank, Chase UK, to revolutionise mobile banking with seamless journeys that our customers love. We're already trusted by millions in the US and we're quickly catching up in the UK - but how we do things here is a little different. We're building the bank of the future from scratch, channelling our start-up mentality every step of the way - meaning you'll have the opportunity to make a real impact. As a Full Stack Engineer at JPMorgan Chase within the International Consumer Bank, you will be part of a flat-structure organization. Your responsibilities will include delivering end-to-end, cutting-edge solutions in the form of cloud-native microservices architecture applications, leveraging the latest technologies and best industry practices. You will be involved in the design and architecture of solutions, focusing on both front-end and back-end development throughout the entire SDLC lifecycle. Our Governance & Transformation team is at the heart of this venture, focused on getting smart ideas into the hands of our customers. We're looking for people who have a curious mindset, thrive in collaborative squads, and are passionate about new technology. By nature, our people are solution-oriented, commercially savvy, and have a head for fintech. We work in tribes and squads that focus on specific products and projects - and depending on your strengths and interests, you'll have the opportunity to move between them. Job Responsibilities Design, develop, and maintain full stack applications using Python (FastAPI) for the back end, and GraphQL and React.js for the front end, powering internal tools and platform initiatives focused on observability, SLOs, chaos engineering, and system reliability. Build intuitive, responsive, and visually appealing user interfaces using React.js, ensuring seamless user experiences for internal stakeholders. Implement data-driven solutions using DynamoDB to ensure high performance and stability within our applications. Deliver clean, efficient, and scalable code while implementing robust unit and functional testing methodologies, code reviews, and continuous integration practices across both front-end and back-end components. Contribute to the design of platforms that provide actionable insights and automated alerting/reporting on SLOs, driving a culture of reliability across the organization. Collaborate with cross-functional teams to share best practices and foster a culture of technical innovation, ensuring that our tools not only meet current needs but also adapt to emerging challenges in reliability engineering. Required Qualifications, Capabilities and Skills Formal training or certification in software development concepts and proficient applied experience. Proven proficiency in Python back-end development. Strong experience with React.js, TypeScript, MUI and modern front-end development practices. Experience working with DynamoDB or other NoSQL databases in a production environment. Demonstrated ability to design, develop, and deploy scalable web applications across both front-end and back-end. Strong commitment to writing clean, maintainable code supported by robust testing and CI practices. Excellent problem-solving skills and the ability to work effectively both independently and as part of a collaborative team. Strong communication skills and a continuous improvement mindset. Preferred Qualifications, Capabilities and Skills Experience or interest in Site Reliability Engineering (SRE) practices and principles. Experience with FastAPI and GraphQL development. Experience with additional front-end frameworks or libraries (e.g., Redux, RTL) is a plus. Exposure to cloud-native architectures and microservices. About Us J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. About the Team Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success. #J-18808-Ljbffr
Are you looking for an exciting opportunity to join a dynamic and growing team in a fast-paced and challenging area? This is a unique opportunity to work in the Private Equity and Real Estate Services (PERES) team and partner with our Business to provide comprehensive and high-quality outsourced administration & banking services to private equity firms and institutional investors. J.P. Morgan enables private equity managers and institutional investors to focus on building wealth—while we take care of all their administrative needs. Job Summary: As an AVP at J.P. Morgan, you will operate within a client-centric & end-to-end model. You will have full ownership of all aspects of fund administration, including but not limited to client services, financial reporting, investor relations, and capital event servicing. If you want to work on a private markets fund in its entirety, then this may be the role for you! A typical day could involve balancing deal funding processes, managing an audit, and handling investor queries simultaneously. This role offers a great level of dynamism. Job Responsibilities: Be a culture carrier for J.P. Morgan’s Business Principles supporting Diversity, Equity, and Inclusion across the organization. Manage monthly, quarterly, and annual accounting, audit, and reporting functions for a portfolio of closed-ended and semi-closed-ended private equity and debt funds. Maintain responsibility for LP/investors’ capital calls, distributions, investor financial reports, and capital statements. Build strong and meaningful relationships with client stakeholders through a keen understanding of contractual and service delivery agreements, with a dedication to excellent execution against agreed deliverables. Defend against scope creep and contribute to enforcing rigorous Change Control processes. Execute the function’s control frameworks through high-quality execution of checklists and procedures, successful partnerships with Business Control functions, and internal audits. Be responsible for the timely escalation of both successes and issues to Senior Management. Required qualifications, capabilities, and skills: A proactive attitude demonstrating the ability to multi-task and work to tight reporting deadlines. Organization and planning skills are key. Dedicated to doing the right thing with ownership and accountability. Willingness to own the full end-to-end servicing of a fund or client relationship. Data literate, understanding the importance of the data chain in private market structures and skilled in governing its upkeep. An advocate of a global operating model with a drive to develop self and the global team, to improve processes and client outcomes. Strong written and verbal communication skills. A qualified or part-qualified accountant with proven experience in accounting, with exposure to US/Lux/UK GAAP and IFRS. Preferred qualifications, capabilities, and skills: Prior experience in private equity fund administration or the alternatives funds industry. Knowledge of FIS Investran or Arcesium is a distinct advantage. #J-18808-Ljbffr
