Posted: Monday, August 28, 2017 2:51 AM
The **Global Application Security Design Lead** will focus on managing and enhancing the security framework by embedding design review process within the software lifecycle within JPMC. This role will interface heavily with the Chief Development Office (CDO), Application Development leads, and Global Technology (GTI), to provide Cyber support and ensure security technologies provided to application development communities are configured and delivered in conformance with Cybersecurity control standards. This position is targeted for a technology in information security with background in development, application security, governance, compliance experience and a proven track record of identifying inadequacies, developing enabling solutions, and leading large-scale projects and initiatives. The position will focus on the projects related to defining the application security controls applicable to design phase of SDLC and therefore drive firm-wide initiative of "shift-left" The successful candidate will ensure the security framework is clearly defined in policies, standards and procedures that support global information security architecture objectives, including security technical controls and development concepts relevant to applications supporting the various Lines of Business and clients. Additionally, candidate will liaise with stakeholders across the firm to develop and drive strategic execution of key imperatives. The successful candidate will ensure that intended objectives are able to be adopted by impacted stakeholders, and changes are clearly and comprehensively communicated. **Qualifications:** . Experienced leader who demonstrates results in matrix organizations . 5+ years of experience in application security and secure systems development lifecycles . Security Design Reviews or Architecture Risk Analysis . Knowledge of Threat Modeling process . Identifying emerging risks and vulnerabilities beyond the common OWASP, NIST, SANS inventories . System software and organizational design standards, policies, and authorized approaches (eg, ISO) relating to system/application design. . Experience on software design tools, methods, and techniques . 3+ years of experience in application development, architecture or engineering . Bachelor's degree in Computer Science, Computer Engineering, or related field required . Direct involvement in application security assurance programs . Experience with developing & supporting application security strategy, architecture, and standards . Solid understanding of application security enabling technologies across the development lifecycle JPMorgan Chase is an equal opportunity and affirmative action employer Disability/Veteran.
• Post ID: 7225603 delaware