JPMorgan Chase & Co. (NYSE: JPM) is a top financial services firm with over $2 trillion in assets, operating in more than 60 countries. As a leader in investment banking and various financial services, the firm's Cybersecurity & Technology Controls (CTC) group partners with all business lines to enhance cybersecurity, access management, and controls. The CTC group focuses on enabling business operations while ensuring protection and resilience. This role is part of the CTC Product Security team, aligned with the Azure Cloud Enablement (ACE) program.
As a Cloud Security Engineer at JPMorgan Chase within the Cybersecurity & Technology Controls (CTC) group, your primary responsibility will be to ensure that Public Cloud is adopted in a secure and compliant manner. You will play an important role in identifying and managing risk related issues and actions with respective technology. You will have an eye for detail and an ability to see the big picture across security issues.
Job Responsibilities:
* Assist in the execution of information risk and control strategies to help keep public cloud assets secure.
* Support risk-based assessments of technology controls for cloud services and platforms under guidance from senior team members.
* Help business technology teams understand basic firm control requirements and implementations across cloud architectures.
* Participate in security reviews of infrastructure-as-code for cloud platform development, with supervision.
* Contribute to documentation and agile processes in support of security programs.
* Collaborate with other CTC teams to learn about platform integration with security operations, threat intelligence, IAM, and network security.
Required qualifications, capabilities and skills:
* Formal training or certification on Information Security concepts and expanding applied experience.
* Understanding of Information Security concepts (coursework, internships, or certifications).
* Willingness to learn and collaborate in a team environment, both virtually and in-office.
* Good verbal and written communication skills.
* Ability to manage time and prioritize tasks with guidance.
Preferred qualifications, capabilities and skills:
* Knowledge of public cloud technology and security.
* Exposure to AWS, Azure, or Google Cloud.
* Familiarity with infrastructure-as-code concepts (e.g., Terraform) is a plus.
* Understanding of DevOps or CI/CD concepts is a plus.