Job Description- Senior Security Architect
We are looking for an experienced Senior Security Architect to join our team as a specialist in Cloud Security. The successful candidate will be responsible for designing secure cloud infrastructure architectures for our enterprise AI/ML applications. We are looking for a cloud security leader who is passionate about AI/ML security architecture and can solve complex security configurations through innovation and known security architectural practices. You will be required to apply your in-depth of cloud security knowledge and expertise to all aspects of Artificial Intelligence/Machine Learning development lifecycle, as well as partner continuously with your many product stakeholders on a daily basis to stay focused on common goals. You’ll work in a collaborative, trusting, thought-provoking environment—one that encourages diversity of thought and creative solutions that are in the best interests of our customers . Best yet, you will be joining a team of highly motivated and skilled security architects who will help you to lay the foundations of a great career at JP Morgan Chase.
Your Role:
- Provide thought leadership for securing on premise and cloud based AI/ML solution architecture
- Design comprehensive security architectures for cloud infrastructure projects
- Design secure networks and systems based on industry standards and best practices
- Identify and address security vulnerabilities, security risks, and other compliance issues
- Perform regular audits of all cloud infrastructure
- Participate in application and system hardening activities
- Develop and document security policies, procedures, and processes
- Conduct security risk assessments using various tools and processes
- Provide guidance and mentoring for junior members of the architecture team
- Stay up-to-date with current security trends and news
- Have a solid understanding of core security architecture, data systems and data environments, and processes that are necessary for the implementation AI/ML models
- Advanced Technical knowledge in architecting, designing, and Integrating security solutions in a large-scale enterprise of highly distributed applications
- Work in collaboration with product team embedded as a security lead to identify, quantify, and communicate all security risks.
- Creating and communicating threat models
- Assist the team in solving complex security problems with risk frameworks, solution architecture, and new security control procedures
- Partner with product managers to create key objectives and roadmaps
- Drive innovation and ensure that JPMC maximizes the business benefits while minimizing security risk across your product
Basic Qualifications:
- 5+ years in Cloud Security Architecture or cybersecurity Architecture equivalent Role
- Strong understanding of cloud computing concepts and services such as AWS, Azure, etc.
- Knowledge of networking protocols and techniques, such as TCP/IP, routing, DNS, DHCP, etc.
- Knowledge of IAM concepts, including but not limited to provisioning, RBAC, ABAC, SCIM, LDAP, and governance and authorization standards
- Experience with federated identity platforms/products
- Knowledge of current Identity protocols such as OAuth 2.0, OpenID Connect, and SAML 2.0, tokenization
- Experience with Privileged Access Management
- Experience with API security and public cloud APIs and integration
- Experience developing and understanding information security architecture, mitigation of threats, and compensating controls. Deep familiarity with frameworks such as NIST 800-53, OWASP, CVSS, the MITRE ATT&CK frame, MITRE Atlas, PCI, and Gramm-Leach-Bliley Act (GLBA).
- Experience using cloud infrastructure as code (IaC) using frameworks like Terraform
- Experience with microservices designs and implementations including docker, Kubernetes, helm
- Ability to juggle multiple priorities and effectively deliver in a fast-paced, dynamic environment
- Comfortable working in an Agile and collaborative environment.
- Strong written and verbal skills.