As an Architect Director with a focus on Security Architecture, you and your team will be responsible for the architecture and solution designs in the capability domain areas of Cyber, Security, Fraud and Risk. Your work will require you to understand how the business wants to mature the capabilities in the domains as well as a thorough understanding of the business needs and requirements on a program and roadmap basis. You will interact frequently with both the business and technology stakeholders in order achieve alignment and facilitate a common understanding of the business and technology roadmaps.
Your will need to define solutions that create or leverage Digital-wide and/or Enterprise-wide solutions and assets. You will need to define functional components that leverage existing and new technologies including instances where you will need to drive proof-of-concepts and pilot implementations to gain experience and derive conclusions.
Your responsibility includes defining the integration of hardware, operating systems, connectivity, business software and applications for the target technology solution. Your expert knowledge will enable you to serve as Subject Matter Expert to Business, Operations and Technology teams on technical architecture. You will develop and maintain/improve the technical reference architecture and framework. Your solutions will need to account for both internal and external users with the majority of solution directly impactful to external users.
You and your team will support common architecture deliverables and regular architecture processes. You will develop and manage a technology roadmap that is informed by Business and Technology strategies as well as by industry domains. You will also need to support and influence Annual and Quarterly Roadmap planning and delivery following the cross LOB processes.
A crucial dimension of the role will be your ability to regularly communicate throughout the organization to various constituents inside and outside the Digital organization. You will need to have or develop and leverage multiple professional relationships throughout the organization. Critical will be your ability to communicate to senior Business and Technology management and convey your domain, your vision and recommendations and your suggested path to achievement.
Your role mission will include but not be limited to:
Technology Roadmap creation, communication and management
Reference Architecture definition and management
Projects Intake and Delivery Collaboration
Remaining up to date with security standards, authentication protocols and products
Special Initiatives as assigned by Senior Management
Minimum of 10 years of Technical Architecture experience
Minimum of multiple past experiences in leading a team to architecture implementation of program, platform, and/or domain changes into production
Ability to personally architect and drive adoption of solutions and platforms into production
Ability to work independently across multiple initiatives simultaneously
Ability to work with multiple design and delivery partners including vendors
Strong written and verbal communication skills especially in communicating and influencing senior Business and Technology management
Strong understanding of project management methodologies and tools including experience with agile delivery
Strong skills in internet technology, information architecture, system design
Expertise in key, relevant technical areas such as:
Experience in risk based authentication and step up protective measures
Fundamental experience in defensive security constructs, including digital signatures, digital certificates, PKI, firewalls
Experience in application security, e.g. OAuth, OIDC, FIDO, multi-factor authentication, TLS, securing hybrid native and web apps in mobile platforms
Experience with open standards
Familiarity with rooting or jail-breaking iOS and Android devices to discover mobile application vulnerabilities
Understanding of information security and risk management challenges, issues mitigations and remediation.
Strong knowledge of OWASP top 10 security issues for web/ mobile. Remediation patterns.
Solid understanding of Data Security and Network Security with a focus on OSI reference model Layer 2- Layer 7.
Experience with secure coding practices, threat modeling, and vulnerability assessment.
Experience with Zero Trust Model, privileged session management, and cloud security
Solid understanding of current web and web application servers.
Certifications with CISSP, CISA, and CISM is a strong plusJPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as any mental health or physical disability needs.
Equal Opportunity Employer/Disability/Veterans