Description:
Working in Cybersecurity requires passion for technology, speed, a desire to learn, and vigilance in safeguarding assets. You will be on the front lines of innovation, collaborating with a motivated team focused on analyzing, designing, developing, and delivering solutions to stop adversaries and enhance operations. Your work will ensure the stability, capacity, and resiliency of our products and industry trends. Working with internal teams and global technologists, your ability to identify threats, analyze them intelligently, and take positive actions will strengthen our defenses.
JPMC’s Assurance Operations is expanding its Purple Team with an experienced Purple Team Operator. This role specializes in supporting “Purple Team” engagements and operating in cloud environments. The main focus is to collaborate with the Cybersecurity Operations Center (SOC) to perform offensive activities and research as part of “Purple Team” efforts. The candidate should have a proven track record in network exploitation, Red Team, and Purple Team assessments, with in-depth knowledge of networking, threats, vulnerabilities, attack methodologies, incident response, threat hunting, and penetration testing tools.
This position may require access to High Security Access (HSA) systems, which involves background checks and screening before employment and annually thereafter.
Qualifications:
This role requires:
* BS/BA degree or equivalent experience
* Strong knowledge of cybersecurity practices, risk management, incident response, and vulnerabilities
* Ability to analyze vulnerabilities, threats, and designs, and produce reports
* Over 3 years of experience in cloud security, penetration testing, Red/Purple Team operations, and related fields, with the ability to perform covert penetration tests manually
* Understanding of operating systems (Windows/Linux/Unix/Mac), vulnerabilities, offensive security tools, networking fundamentals, cloud providers (AWS, Azure), DevOps, incident response, threat hunting, and log interpretation
* Preferred qualifications include security certifications (OSCP, CREST, SANS), malware techniques, scripting skills in Python, Ruby, Perl, C, C++, C#, Java, and experience with security tools like Firewalls, IDS/IPS, Web Proxies, DLP
* Ability to collaborate effectively and experience with Agile frameworks is highly desirable
The Cybersecurity & Technology Controls group at JPMorgan Chase works to enable the firm’s cybersecurity, access management, controls, and resiliency efforts, partnering across the business to design and implement controls, automate processes, and ensure safety and resilience.
We seek multi-disciplinary, forward-looking technologists with backgrounds in cybersecurity, big data, machine learning, risk management, compliance, and cloud security.
Working at JPMorgan Chase & Co. means being part of a global tech company, with over 40,000 technologists worldwide, investing over $9.5 billion annually in technology to innovate and transform the industry. We value diversity, support professional growth, and offer competitive benefits. Join us to build your career and tackle impactful challenges worldwide.
#J-18808-Ljbffr