I am...

Summary

​

Play a vital role in shaping the future of an iconic company and make a direct impact in a dynamic environment designed for top achievers.

​

As a Senior Lead Cybersecurity Architect at JPMorgan Chase within the Cybersecurity & Technology Controls organization, you are an integral part of a team that works to develop high-quality cybersecurity solutions for various software applications and platform products. Drive significant business impact through your capabilities and contributions, and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains.

• Guides the evaluation of current cybersecurity principals, processes, and controls, and leads the evaluation of new technology using existing standards and frameworks
• Works with Product teams to ensure products are designed for resilience, with validation and continuous improvement plans in place
• Partners with the Firmwide Simulation Utility (FSU), Firmwide Business Resiliency (FBR), and development teams to create new testing scenarios and capabilities
• Regularly provides technical guidance and direction to support the business and its technical teams, contractors, and vendors
• Works with stakeholders and senior leaders to recommend business modifications during periods of vulnerability
• Serves as function-wide subject matter expert in one or more areas of focus
• Actively contributes to the engineering community as an advocate of firmwide frameworks, tools, and practices of the Software Development Life Cycle
• Influences peers and project decision-makers to consider the use and application of leading-edge technologies
• Adds to team culture of diversity, equity, inclusion, and respect

Required qualifications, capabilities, and skills

​

• Formal training or certification on Cybersecurity Architecture concepts and 5+ years applied experience
• Familiarity with Terraform and Infrastructure-as-Code tools and principles
• Proficient in conducting design reviews and assessments to identify system vulnerabilities, including knowledge of OWASP, NIST, and SANS standards
• Understanding of the MITRE ATT&CK framework
• Hands-on practical experience delivering enterprise level cybersecurity solutions and controls
• Advanced in one or more programming languages or applications
• Advanced knowledge of cybersecurity architecture, applications, and technical processes with considerable, in-depth knowledge in one or more technical disciplines (e.g., public cloud, artificial intelligence, machine learning, mobile, etc.)
• Ability to tackle design and functionality problems independently with little to no oversight
• Practical cloud native experience
• Ability to evaluate current and emerging technologies to select or recommend the best solutions for the future state architecture

​

Preferred qualifications, capabilities, and skills

​

• Certifications in Cybersecurity, Cloud, Infrastructure or Product
• Overall knowledge of the Software Development Life Cycle​
• Familiarity with modern front-end technologies​

NA

Job Summary

​

• The Cybersecurity Governance focus specializes in developing and executing security controls, defenses and countermeasures to prevent attacks or attempts to infiltrate firm email, data, e-commerce and web-based systems. Administers policies to control physical/virtual access to systems. Performs tests to ensure policy compliance; responds to breaches and threats.

​

Company Overview

​

HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).

​

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.

​

If you’d like more information about HP’s EEO Policy or your EEO rights as an applicant under the law, please click here: Equal Employment Opportunity is the Law Equal Employment Opportunity is the Law – Supplement

• Leads the identification, analysis, and reporting of events that have occurred or might occur within the network in order to protect information, information systems, and networks from threats.
• Leads revisions, enhancements and review of all governance issues for multiple software applications, systems and processes that administer and execute security controls, defenses and countermeasures, including identity and persona validation, data management, access controls, threat and malware detection and monitoring.
• Evaluates and suggests improvement to cybersecurity governance, operations, and policies.
• Evaluates standards, tools, and knowledge requirements for information security skill and career development.

Required Qualifications

​

• Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.
• Typically has 7-10 years of work experience, preferably in cyber & IT security, or a related field.

​

Preferred Qualifications

​

• N/A

​

Knowledge & Skills

​

• Cybersecurity operations
• Cybersecurity governance
• Cybersecurity policies
• Auditing
• Risk management
• Automation
• Risk analysis
• Issue tracking
• Security controls
• Operating systems

​

Cross-Org Skills

​

• Effective Communication
• Results Orientation
• Learning Agility
• Digital Fluency
• Customer Centricity

Impact & Scope

​

• Impacts function and leads and/or provides expertise to functional project teams and may participate in cross-functional initiatives.

​

Complexity

​

• Works on complex problems where analysis of situations or data requires an in-depth evaluation of multiple factors.

​

Disclaimer

​

• This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.

Job Summary

Responsible for planning and designing new software and web applications. Analyzes, tests and assists with the integration of new applications. Oversees the documentation of all development activity. Trains non-technical personnel. Assists with tracking performance metrics. Integrates knowledge of business and functional priorities. Acts as a key contributor in a complex and crucial environment. May lead teams or projects and shares expertise.

​

Company Overview

Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.)

• This hands-on software development position requires technical expertise, active coding, and a strong focus on delivering secure and reliable software. Collaborates with project stakeholders to identify product and technical requirements. Conducts analysis to determine integration needs.
• Develop and design software for Cyber Security applications, supports applications under development and customizes current applications. Assists with the software update process for existing applications and rollouts of software releases.
• Participates in training representatives and operations staff on internally developed software applications.
• Researches, writes, and edits documentation and technical requirements, including software designs, evaluation plans, test results, technical manuals and formal recommendations and reports.
• Works with Quality Assurance team to determine if applications fit specification and technical requirements.
• Displays in-depth knowledge of engineering methodologies, concepts, skills, and their application in specified engineering specialty.
• Displays in-depth knowledge of and ability to apply, process design and redesign skills. Presents and defends architectural, design and technical choices to internal audiences.
• Consistent exercise of independent judgment and discretion in matters of significance.
• Other duties and responsibilities as assigned.

​

Employees at all levels are expected to:

• Understand our Operating Principles; make them the guidelines for how you do your job.
• Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
• Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products, and services, especially our digital tools and experiences.
• Win as a team - make big things happen by working together and being open to new ideas.
• Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs, and helping us elevate opportunities to do better for our customers.
• Drive results and growth.
• Respect and promote inclusion & diversity.
• Do what's right for each other, our customers, investors, and our communities.

Requirements

• 8+ years of software development in Java and Spring Framework, developing secure APIs and Web Applications on AWS using Serverless architecture.
• 2+ years of experience supporting software products or large-scale, highly available applications in production.
• Experience in Java Cryptography Extensions, OpenSSL, Bouncy Castle libs
• Experience with x509, PKI, JWT, and cryptographic algorithms such as ECC, and RSA
• Experience working on AWS Lambda, Dynamo DB, ECS and Aurora
• Experience writing clean, maintainable, efficient code and expertise in constructing common and reusable libraries.
• Experience building software using Agile methodologies and rapid software development.
• Experience working with OIDC, SAML, or OAuth2 authorization patterns to secure APIs.
• Experience using source control systems such as GitHub and Continuous Integration and Deployment tools (Jenkins, Concourse etc.)
• Experience creating and presenting technical material to technical and non-technical audiences

​

Preferred

• AWS Certified Developer or DevOps Certification
• Spring Certified Professional
• Experience developing applications using Angular and NodeJS

What You Can Expect:

• An encouraging and casual work environment with chances to showcase your skills.
• A culture of innovation and continuous learning.
• Training, support, and mentoring to expand and evolve your expertise.
• For more insight into our culture, check out: https://jobs.comcast.com/meet-comcast/our-culture

​

About Our Perks & Benefits:

We are determined to create an environment where our employees feel valued, understand our business goals, and are motivated.

Here's a look at just some of the perks and benefits we make available to our US-based employees:

• Medical & Dental
• 401(k) Savings Plan
• Generous paid time off
• Life Milestones - from adoption assistance, childcare resources, pet insurance, and more, Comcast supports you at all life stages.
• Courtesy Services - We offer all of our full-time employees in serviceable areas discounted digital TV and internet.
• Discounted tickets for Universal Resorts, and free tickets to our Universal theme parks!

Learn more at https://jobs.comcast.com/life-at-comcast/benefits

​

Reasonable Accommodation

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request accommodation.

​

Comcast is an EOE/Veterans/Disabled/LGBT employer.

​

Disclaimer:

This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications.

​

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.

​

Please visit the benefits summary on our careers site for more details.

​

Education

Bachelor's Degree

​

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

​

Certifications (if applicable)

​

Relative Work Experience

7-10 Years

​

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.