Join our elite Cybersecurity Intelligence team and be at the forefront of innovative security strategies. In this dynamic role, you'll harness cutting-edge technology and intelligence to protect our digital landscape, making a real-world impact on global cybersecurity. Your expertise will shape the future of secure digital operations, safeguarding critical assets and fortifying our cyber defenses.

As a Cybersecurity Intelligence Senior Associate in Cybersecurity Operations, you will be an integral member of a team that safeguards the firm's digital assets and infrastructure from cyber threats. Utilizing your extensive knowledge of cybersecurity, you will proactively identify and assess global and industry-specific attack vectors, emerging trends, and potential risks. Your expertise in threat assessment, intelligence analysis, and security research are vital for providing insights and recommendations to enhance the firm's security posture and protect its clients. By collaborating with cross-functional teams and deeply analyzing the threat landscape, your insights will inform and shape JPMorgan Chase's cybersecurity strategy.

Job responsibilities

Drive proactive cybersecurity engagement with critical suppliers by leveraging intelligence sources and advanced analytical techniques to identify emerging cyber risks and vulnerabilities and conduct outreach Coordinate with suppliers for timely remediation of known vulnerabilities in third-party and open-source components identified in the analysis of Software Bills of Materials (SBOMs)Collaborate with security teams to manage third party penetration testing of the firm's critical suppliers and coordinate with impacted suppliers to manage findings   Partner to raise awareness and drive improvements in Third-Party controls using cyber incident information and threat intelligenceManage communications to internal business, technology and Third-Party supplier groups

Required qualifications, capabilities, and skills

Obtain 3+ years of relevant experience in cybersecurity operations, control assessments, or security research, focusing on cyber threat identification and remediationPossess strong analytical and problem-solving skills, attention to detail, and the ability to communicate complex technical information effectively via written, verbal and presentation formats to both business and technology stakeholders Understand offensive cybersecurity principles and working knowledge of security architecture and designKnowledge of key cybersecurity principles that mitigate common threat actor techniques (Email, Network, Endpoint, Resiliency & Recovery, Monitoring, End User Awareness, Vulnerability Management, Identity and Access Management).Able to collaborate and navigate organizational levels/boundaries to mitigate third party cyber risk to the firmSelf-starter with drive to deliver results and continuous improvement mindset

Preferred qualifications, capabilities, and skills

Understanding of industry risk frameworks (ISO27001, NIST Cybersecurity Framework, MITRE ATT&CK, etc.)CISSP, CISA, CISM, CCSP or CRISC certification is a plusBackground in Product Security, Incident Response, Technology/Cyber Audit