Security Engineer III- Threat Detection / Response
Security Engineer III- Threat Detection / Response
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
$ 133000 - 185000
1 Vacancy
Job Description
Your seniority as a security engineer puts you in the ranks of the top talent in your field. Play a critical role at one of the worlds most iconic financial institutions where security is vital.
As a Security Engineer III- Threat Detection / Response at JPMorgan Chase within the Corporate Sector- Cybersecurity and Technology Controls youserve as a seasoned member of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse circumvention and malicious behavior. Carry out critical technology solutions with tamper-proof audit defensible methods across multiple technical areas within various business functions in support of the firms business objectives. In this role you will leverage experience in Cyber Operations or Engineering a defensive (blue team) or offensive (red team) mindset and the ability to understand Cyber Threats to translate them into detections uplift existing detections and manage response actions (incident response lifecycle).
Job responsibilities
- Executes security solutions design development and technical troubleshooting with the ability to apply knowledge of existing security solutions to satisfy security requirements for internal clients (e.g. product platform application owners)
- Creates secure and high-quality production code and maintains algorithms that run synchronously with appropriate systems
- Applies specialized tools ( scanner) to analyzeand correlate incident data toidentify interpret andsummarize the probability andimpact of threats whendetermining specificvulnerabilities
- Leads delivery of continuity-related awareness training educational activities andexercises
- Adds to team culture of diversity equity inclusion and respect
Required qualifications capabilities and skills
- Formal training or certification in security engineering concepts and 3 years of applied experience
- Demonstrated experience with at least one of the following four areas: 1.) Email Product Security including experience with one or more of the following: Symantec Cloud Proofpoint Protect Proofpoint TAP Proofpoint TRAP M365 Email Product Security Abnormal Security Cofense Security Sublime or Material Security; 2.) M365 Platform Security including experience with Defender for Cloud or Microsoft Sentinel (Building detections/managing content); 3.) SIEM Product Security including experience with one or more of the following: Splunk Experience writing detections analyzing log data building content (dashboards macros) Splunk Enterprise Security (SplunkES) or Microsoft Sentinel Log management; or 4.) Endpoint Security: including experience with one or more of the following: CrowdStrike Windows Defender for Endpoint or Endpoint Detection Response (EDR) tooling in general
- Experience developing security engineering solutions
- Proficient in coding in one of more languages
- Overall knowledge of the Software Development Life Cycle
- Solid understanding of agile methodologies such as CI/CD application resiliency and security
Preferred qualifications capabilities and skills
- Splunk SPL
- SQL detection language building or Sigma detection if no Splunk SPL experience
- Python (in the context of building SOAR functions for SOC operations)
- Public Cloud
Employment Type
Full-Time
