skip to main content

Important Notice

It appears you are using an older version of your browser. While some functions will be available, Delaware JobLink works best with a modern browser such as the ones provided by:

Please download and install the latest version of the browser of your choice. We apologize for any inconvenience.



Threat Modeling Analyst - Threat Intelligence

Click the Facebook, Google+ or LinkedIn icons to share this job with your friends or contacts. Click the Twitter icon to tweet this job to your followers. Click the link button to view the URL of the job, which then can be copied and pasted into an e-mail or other document.

Job Details
Job Order Number
JC147195469
Company Name
JPMorgan Chase
Physical Address

Wilmington, DE 19806
Job Description

As an
experienced professional in our cybersecurity organization, you won’t just be
watching over our data – you’ll be
finding innovative new ways to protect it in the future. To do that,
you’ll help lead a highly motivated team focused on analyzing, designing,
developing and delivering solutions built to stop adversaries and strengthen
our operations. You’ll use your leadership skills to give guidance, advise on
best practices and support our business and technology groups. By taking the
lead on incident response, risk reviews, vulnerability assessments and
identifying threats, you’ll help us deliver cost-effective solutions that put
our clients first. You’ll deploy best practices, new policies and emerging
trends to strengthen our strategic roadmap. By presenting your findings to
senior leaders, you’ll sharpen your communication and presentation skills. As
part of our global team of technologists and innovators, your work will have a
critical impact on our company, as well as our clients and our business
partners around the world.

As a
threat modeling analyst within the CIG, you’ll play an integral role in the
threat driven defense of JPMC. The responsibilities for this position include,
but are not limited to developing threat modeling processes that analyze the firm’s
ability to mitigate cyber attacks across business and technology environments;
developing cyber threat scenarios to enable risk management and the secure
deployment of key organizational initiative; identifying areas for potential
attacks and systemic security issues as they relate to threats and
vulnerabilities, including recommendations for enhancements or remediation;
preparing and delivering written and verbal briefings to message threat
modeling findings across all levels of the enterprise; and monitoring the cyber
threat environment to incorporate trends in potential attack activity, and
ensure sustainability of threat modeling deliverables. The successful candidate
will be interested in performing a mix of hands-on and controls-related duties.

This
position is anticipated to require the use of one or more High Security Access
(HSA) systems. Users of these systems are subject to enhanced screening which
includes both criminal and credit background checks, and/or other enhanced
screening at the time of accepting the position and on an annual basis
thereafter. The enhanced screening will need to be successfully completed prior
to commencing employment or assignment.

This role
requires a wide variety of strengths and capabilities, including:

+ Bachelor’sdegree or equivalent experience

+ Excellentcommand of cybersecurity organization practices, operations risk managementprocesses, principles, architectural requirements, engineering threats andvulnerabilities, including incident response methodologies

+ Understandingof national and international laws, regulations, policies and ethics related tofinancial industry cybersecurity

+ Experiencewith Agile and the ability to work with at least one of the common frameworks

+ Abilityto identify network attacks and systemic security issues as they relate tothreats and vulnerabilities, with a focus on recommendations for enhancementsor remediation

+ Foundationalknowledge of: computer forensics; legal, government and jurisprudence as theyrelate to cybersecurity; operating systems; and methods for intelligencegathering and sharing

+ Intermediateknowledge of: cloud computing, computer network defense, external organizationsand academic institutions dealing with cybersecurity issues, financialauthorities and regulations, identity management, incident management,information assurance, information management, information systems and networksecurity and infrastructure design

+ Intermediateknowledge of cybersecurity activities associated with: requirements analysis,risk analytics and modeling, risk management; emerging issues, risks,vulnerabilities and technologies; and vulnerability assessment

+ Demonstrableunderstanding of information technology principles including: software,hardware, networking, and Cloud infrastructure

+ Experienceor working knowledge with threat modeling methodologies such as Stride, Pasta,or comparable experience visually representing data and process flows in anenterprise environment, and/or leveraging the MITRE ATT&CK™ Framework

+ Experienceinterpreting networking, data flow, and architectural diagrams to identifyvectors an adversary may seek to exploit

+ Redteam or penetration testing experience, identifying and simulating adversarialactivity within a pre-defined scope

The
Cybersecurity & Technology Controls group at JPMorgan Chase aligns the
firm’s cybersecurity, access management, controls and resiliency teams. The
group proactively and strategically
partners with all lines of business and functions to enable them to design,
adopt and integrate appropriate controls; deliver processes and solutions
efficiently and consistently; and drive automation of controls. The group’s
number one priority is to enable the business by keeping the firm safe, stable
and resilient.

When you
work at JPMorgan Chase & Co., you’re not just working at a global financial
institution. You’re an integral part of one of the world’s biggest tech
organizations. In our global technology centers, our team of 50,000
technologists design, build and deploy everything from enterprise technology
initiatives to big data and mobile solutions, as well as innovations in
electronic payments, cybersecurity, machine learning, and cloud development.
Our $11B annual investment in technology enables us to hire people to create
innovative solutions that are transforming the financial services
industry.

At
JPMorgan Chase & Co. we value the unique skills of every employee, and
we’re building a technology organization that thrives on diversity. We encourage professional growth and career
development, and offer competitive benefits and compensation. If you’re looking to build your career as
part of a global technology team tackling big challenges that impact the lives
of people and companies all around the world, we want to meet you.

JPMorgan Chase is an equal opportunity and affirmative action employer Disability/Veteran.


To view full details and how to apply, please login or create a Job Seeker account.