Description:
Working in Cybersecurity requires passion for technology, speed, a constant desire to learn, and vigilance in safeguarding assets. You'll be on the front lines of innovation, collaborating with a motivated team to analyze, design, develop, and deliver solutions that prevent adversaries and strengthen operations. Your work will ensure the stability, capacity, and resiliency of our products, aligning with industry trends. Working with internal teams and global technologists, your ability to identify threats, analyze intelligently, and take positive actions will protect our data.
JPMC's Assurance Operations is expanding its Purple Team with an experienced Purple Team Operator, specializing in supporting "Purple Team" engagements and operating in cloud environments. The role focuses on collaborating with the Cybersecurity Operations Center (SOC) to perform offensive activities and research in "Purple Team" assessments. The candidate should have a proven record in network exploitation, Red and Purple Team assessments, with deep knowledge of networking, threats, vulnerabilities, attack methodologies, incident response, threat hunting, and penetration testing tools.
This role may require access to High Security Access (HSA) systems, which involves enhanced screening, including background checks, before employment begins and annually thereafter.
Qualifications:
* BS/BA degree or equivalent experience
* Strong understanding of cybersecurity practices, risk management, threats, vulnerabilities, and incident response
* Experience analyzing vulnerabilities, threats, and architectural designs, with reporting skills
* Over 3 years of security experience in cloud environments (AWS, Azure), with skills in network and application penetration testing, Red/Purple Team operations, and exploitation activities
* Knowledge of operating systems (Windows/Linux/Unix/Mac), vulnerabilities, exploitation techniques, and offensive security tools (e.g., Cobalt Strike, Metasploit, Burp Suite)
* Familiarity with networking protocols, IaaS/PaaS providers, DevOps, incident response, and threat hunting
* Preferred: background in intelligence/security services, relevant certifications (OSCP, CREST, SANS), malware techniques, scripting skills (Python, Ruby, C, C++, Java), and experience developing exploits
* Ability to collaborate effectively and experience with Agile frameworks is a plus
The Cybersecurity & Technology Controls group at JPMorgan Chase partners across the firm to implement controls and drive automation, ensuring safety, stability, and resilience. We seek diverse, forward-looking technologists in cybersecurity, big data, machine learning, and related fields.
Working at JPMorgan Chase & Co. means being part of a global tech leader with extensive investment in innovation, impacting financial services and beyond. We value diversity, support professional growth, and offer competitive benefits.
About the Team:
JPMorgan Chase, with over 200 years of history, offers financial solutions worldwide. Our offerings include investment banking, banking, asset management, and more. We provide comprehensive benefits, including health coverage, wellness centers, retirement plans, and others. We are committed to diversity and inclusion, providing accommodations for applicants and employees as needed.
#J-18808-Ljbffr