Search jobs and placement papers

Application Security Architect - Cyber | OWASP at JP Morgan Chase (Jersey City, NJ)

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at

The Cybersecurity organization within JPMorgan Chase & Co. provides security services to all lines of business (LOB) across JPMC. The objective of Cybersecurity is to balance both business alignment and the centralized delivery of core products and services including Security Standards, Monitoring & Protection, Assurance & Awareness, and Security Operations. Cybersecurity is designed to address the JPMC global security needs across all LOBs and the demand to leverage economies of scale across the firm.

Architecture @ JPMC:
The Cybersecurity Enterprise Architecture Team translates security requirements into system qualities (e.g., tenets) and then into repeatable design strategies and patterns. The Team designs architectural models of solutions and describes how those solutions integrate into the broader technical infrastructure of the firm. In partnership with development teams, the Cybersecurity Enterprise Architecture Team drives architecture standards into delivered solutions.

Job Description:
We are seeking an Application Security Architect to collaborate with the application development community across JPMC to integrate cybersecurity services. The successful candidate will be a strong technologist with pragmatic view and creative mind, and a natural collaborator with LOB security architects, engineers, developers and senior management. The Application Security Architect is expected to lead through influence, communicate effectively through clarity of thought and demonstrated understanding of business and technical requirements. Required Qualifications:

  • Proven experience working in application security, and/or secure software development (both a detailed technical knowledge and hands-on practice)

  • Expert knowledge and implementation of secure application architectures, encryption technologies, cryptography and key management, and authentication and control of application permissions

  • Direct experience with secure application development and application security risk mitigation techniques

  • Knowledge of the common application layer vulnerabilities and the ability to explain these risks to developers

  • Knowledge of tiered application architectures, web applications, APIs, mobile applications, desktop applications, and the underlying technology of cloud infrastructure

  • Experience securing platform web APIs

  • Experience with one or more general purpose programming languages including but not limited to:  Java, C/C++, C#, Objective C, Python, JavaScript.

  • Versed with recent versions of the OWASP Top Ten for web application security

  • Detailed understanding of and experience with application deployments in corporate environments

  • Experience working in DevOps, continuous integration and Agile, including design of security solutions, including creating artifacts, models, and strategy presentations

  • Active professional security certifications (e.g., CISSP or other similar industry qualification)

  • Strong written and verbal communication skills

  • Experience working in a matrixed organization, achieving goals through partnership and collaboration

by via developer jobs - Stack Overflow

1 comment:

Priya angel said...

This is very nice blog,and it is helps for student's Tableau Online Training Hyderabad

Post a Comment