Threat Management Engineer recruitment

The JPMorgan Chase Technology Center on the campus of Syracuse University is a firm-wide Center of Excellence for Information Security and Risk Management as well as a test bed for technology innovation. The Tech center is a key component of our unique, industry leading partnership with Syracuse University.

The focus within the Tech Center ranges from security event monitoring to access management to the engineering of critical security tools for the firm. Our collaboration with Syracuse University focuses on creating a unique curriculum in the domain of Global Enterprise Technology, performing applied research in areas of mutual interest - with the majority of research focused on Cyber Security. The JPMC Tech Center is also committed to the city of Syracuse and active in community service throughout the city.

The Tech Center is looking for dynamic technologists interested in driving innovation at a leading global financial services firm with assets of $1.1 trillion and operations in more than 50 countries.

IT Risk Security Management (ITRSM) is chartered with managing and directing the information risk program across the firm to ensure the security and resiliency of the Firm's computing environment, protect customer and employee confidential information, and comply with regulatory requirements globally. This is accomplished through strong information risk governance, active collaboration with line of business risk managers, and providing high quality security solutions and services that are focused on improving the Firm's overall risk posture.

The Global Security Vulnerability Management group is currently searching for an Engineer to work within the Threat Management Engineering team, responsible for implementing control solutions for the Security Operations Center. This position will also assist the Global Security Vulnerability Management team in the creation of process, procedures, technical documentation, and completion of project tasks as required.

Skills

To be considered for this role the candidate should have a strong understanding of Information Security including threats, attacks, and vulnerability management. Additional skills to be considered include:

10+ years' industry experience in a large, mission-critical environment.
Network intrusion methods, network containment, and segregation techniques and technologies experience.
Network and platform based security techniques experience.
Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS), both host and network based systems experience.
IP Protocol Suite; knowledge of IP Routing protocols.
Deep understanding of Wintel/*nix Indicators of Compromise (IOC).
Experience working in or with a Security Operations Center.
Strong written and verbal communication skills; ability to understand complex problems while formally presenting them simplistically.
Ability to identify both tactical and strategic solutions.
Experience leading and managing large scale projects and infrastructure deployments.
MCSE, MCSD, CISSP, CCNE, CCNA, CNE, CLP, Linux+ or other related certification..

HIGHLY DESIRED
Malware analysis, exploitation and mitigation techniques experience.
Ability to coordinate, work with and gain the trust of business stakeholders, technical resources, and third-party vendors.
Experience assisting the development and maintenance of tools, procedures, and documentation.
Independent thinking, willingness to "step outside the box" and take reasonable, calculated risks.
Experience in a fast paced, high stress environment.
Outstanding work ethic.