Product Security - Cloud Enablement

The Cybersecurity & Technology Controls (CTC) group at JPMorgan Chase aligns the firm's cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group's number one priority is to enable the business by keeping the firm protected, stable and resilient.

As a Cloud Security Engineer at JPMorgan Chase within the Public Cloud Services division, your main role will be to guarantee the secure and compliant adoption of Public Cloud. You will be instrumental in outlining the process for securely enabling public cloud services across platforms such as AWS, Azure, and GCP within the firm. Your keen attention to detail and understanding of how various products integrate into the Governance, Risks, and Compliance ecosystem will be crucial.

• Drive integration between various Security products/tools within the firm to streamline the Service Enablement process for Public Cloud within JPMC.
• Develop and maintain product roadmaps, proactively managing cross-team dependencies
• Build strong relationships with Product & Engineering teams, to drive their book of work
• Oversee/conduct User Acceptance Testing for Security Products
• Manage the Secure Service Enablement team's backlog using Jira (agile)
• Create & own control procedures to enhance the firm's Public Cloud Security Posture
• Own and execute the SCM (Service Control Matrix) release process, drive automation
• Propose & drive execution of solutions that reduce risk, remove toil, improve security processes
• Produce reports and metrics for senior management and audit.
• Run working groups with multiple product teams, organize workshops to foster collaboration between stakeholders
• Conduct demos, talks, train on Security processes
• Interface with teams within the wider CTC org ensuring platform integration with security operations, threat intelligence, IAM and network security.

• Cloud Security (AWS / Azure/ GCP)
• Proficient verbal and written communication skills, including the ability to effectively participate in discussions and meetings with internal management, peer groups, regulators and senior stakeholders.
• Problem solving & adaptability, ability to collaborate & influence.
• Product Management.
• Organized, self-motivated, result-oriented with a focus on execution and attention to detail.
• Ability to prioritize and work under stringent timelines.

• Hands on experience of developing, engineering or architecting within a public cloud environment.
• Experience engineering with Terraform or infrastructure-as-code.
• Understanding of DevOps or CI/CD concepts.
• Security/Cloud certifications.