Cybersecurity Operations
2 weeks ago
You will be one of the team's subject matter experts on SIEM, you will help mature how JPMC utilizes multiple SIEM solutions (primarily Splunk) for various use-cases within Cyber Operations. The ideal candidate will be someone with previous SOC experience who enjoys researching TTPs and the threat landscape and translating that research data into high quality detections. Your role involves actively seeking effective and comprehensive detection strategy and capabilities, ensuring detections are thoroughly tested, alerts are relevant, of value and playbooks are available to and understood by cybersecurity operations teams. Additionally, you'll work to help mature the Attack Analysis team in how we secure, monitor and respond to incidents on-prem as well as both private and public cloud environments. You'll work with internal security engineering teams to ensure that Attack Analysis requirements are represented in the architecture, design and implementation of various environments. You'll help design, write and automate detection and incident response processes and tools.
Working in cybersecurity takes passion for technology, speed, a desire to learn, and vigilance in order to keep every asset safe. You'll be on the front lines of innovation, working with a highly motivated team focused on analyzing, designing, developing and delivering solutions built to stop adversaries and strengthen our operations. Your research and work will ensure stability, capacity and resiliency of our products. Working with your internal team, as well as technologists and innovators across our global network, your ability to identify threats, provide intelligent analysis and positive actions will stop crimes and strengthen our data. As a member of the Attack Analysis team, you will fit into a Global team providing 24/7 monitoring and Incident Response, acting as the frontline for attacks against the firms' infrastructure. As a Detection Engineer, your role will include advanced analysis, threat hunting, evaluation of new security technology as well as ensuring larger technology projects at the company are ready to be integrated into the Attack Analysis team and monitoring function. There is also an emphasis on coaching and mentoring in this role; you'll work to bring up the technical expertise of the entire team around you. This could include running training sessions for the team in range or virtual environments, leading hunting exercises, serving as a technical escalation point and coaching the team through adopting monitoring responsibility. Key areas of focus include: Detection Engineering Primary Qualifications- Min. 6 years of working experience with at least 4 years of hands-on experience in Security Operations and Incident Response or Computer Network Operations (CNO) or Computer Network Defense (CND).
- Bachelor's degree in Computer Science, Information Security, Digital Forensics or equivalent qualification.
- Excellent written and verbal communication skills to describe security event details and technical analysis with audiences within the cybersecurity organization and other technology groups.
- Strong collaboration and stakeholder engagement skills.
- Experience with the creation and tuning of alerting rules from a SIEM and other devices in response to changing threats.
- Ability to research TTPs and develop high fidelity detections in various tools/languages including but not limited to: Splunk, CrowdStrike, Azure Sentinel, Suricata, Snort.
- Ability to use data science and analytical skills to identify anomalies over large datasets.
- Experience with log analysis and correlation of large datasets from multiple data sources to identify and investigate attack patterns.
- Experience with threat hunting on a large, enterprise network both as an individual and leading hunting exercises with other team members.
- Ability to perform packet-level analysis and strong understanding of common network protocols and the OSI model.
- Experience using scripting languages (Python, Powershell, Bash, etc.) to parse machine-generated data, interact with REST APIs and automate repetitive tasks.
- Hands-on experience with at least 1 cloud platform (AWS, Azure, GCP) including infrastructure, security and cloud APIs.
- Experience with regular expressions and their applications.
- Experience with Digital Forensics & Incident Response processes including memory & file system analysis methodologies.
- Experience with analyzing Endpoint Detection & Response (EDR) telemetry and excellent knowledge of operating system internals (Windows, Linux, macOS).
- Knowledge with command line tools across Windows and Linux.
- Familiarity with malware analysis (both static and dynamic), binary triage, and file format analysis.
At JPMorgan Chase & Co. we value the unique skills of every employee, and we're building a technology organization that thrives on diversity. We encourage professional growth and career development, and offer competitive benefits and compensation. If you're looking to build your career as part of a global technology team tackling big challenges that impact the lives of people and companies all around the world, we want to meet you.
It's time to take your career to the next level, and we can help. Apply today.
#J-18808-Ljbffr
-
Cybersecurity Analyst
2 weeks ago
United Kingdom Endeavour Recruitment Solutions Full timeCybersecurity Analyst / Engineer - Security Operations Centre (SOC) Country: South Africa Location: Remote Sector: Security Engineers / Consultants Daily Rate: $ 140 per day Job Type: Contract Technologies: Cybersecurity Analyst / Engineer Security Operations Centre (SOC) Cybersecurity Security Operations Centre SOC Azure Remote Cybersecurity Analyst...
-
Business Analyst
2 weeks ago
United Kingdom eTeam, Inc. Full timeOverview: Investigate and analyse incidents that are identified by CS Operations systems in order to determine whether incidents are a threat to the Bank and address those that are deemed a threat. The Cybersecurity team at are engaged to transform the way Cybersecurity is accomplished at the bank and we are set to enable the business to do more, as...
-
Lead Security Engineer
2 weeks ago
United Kingdom Cloudsecurityexpo Full timeAs a Lead Security Engineer at JPMorgan Chase within Cybersecurity and Technology Controls, you serve as a seasoned member and leader of an engineering team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. The solutions you...
-
Software Engineer III
2 weeks ago
United Kingdom Cloudsecurityexpo Full timeAs a Security Engineer III at JPMorgan Chase within Cybersecurity and Technology Controls, you serve as a seasoned member of an engineering team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. The solutions you build...
-
OT / ICS Cybersecurity Consultants
2 weeks ago
United Kingdom Johnston Vere Associates Limited Full timeWe have two key clients who are seeking experienced OT Cybersecurity professionals across the UK. Both are established engineering consultancies, operating across a wide range of industrial market sectors including energy, water treatment, transportation, O&G and chemical. Due to consistent project development across the UK, they are looking to expand...
-
Cyber Security Operations Analyst
2 weeks ago
United Kingdom Cloudsecurityexpo Full timeWorking in cybersecurity takes passion for technology, speed, a desire to learn, and vigilance in order to keep every asset safe. You'll be on the front lines of innovation, working with a highly motivated team focused on analyzing, designing, developing and delivering solutions built to stop adversaries and strengthen our operations. Your research and work...
-
Cybersecurity Consultant
7 days ago
United Kingdom Immersive Dynamics Inc. Full timeImmersive Labs is the leader in people-centric cyber resilience We have an exciting vision for cybersecurity - one that puts people at the center of cyber. Our cyber resilience SaaS platform is an agile, hands-on solution that helps teams continuously assess, build, and prove cyber capabilities through real-life simulations, rather than one-off training...
-
Cyber Security Operations Centre Analyst
2 weeks ago
United Kingdom Cloudsecurityexpo Full timeWorking in cybersecurity takes passion for technology, speed, a desire to learn, and vigilance in order to keep every asset safe. You'll be on the front lines of innovation, working with a highly motivated team focused on analyzing, designing, developing and delivering solutions built to stop adversaries and strengthen our operations. Your research and...
-
Information Security Management- Cybersecurity
2 weeks ago
United Kingdom Cloudsecurityexpo Full timeAs an experienced professional in our Cybersecurity & Technology Controls (CTC) organization, you won't just be watching over our data - you'll be finding innovative new ways to protect it in the future. To do that, you'll be part of a highly motivated team focused on analyzing, designing, developing, and delivering solutions built to stop...
-
Security Operations Engineer
6 days ago
United Kingdom Foundations Exec Full timeSecurity Operations Engineer A global advisory and solutions firm, who have a strong security function are working on a number of exciting projects as part of their on-going growth and as a result, they’re recruiting for an experienced Cybersecurity Operations Engineer to join them. As a Security Operations Engineer, you will work as part of a...
-
United Kingdom Cloudsecurityexpo Full timeCybersecurity Network Perimeter Team is responsible for the perimeter security safeguarding JPMorgan Chase applications and network infrastructure from hackers, intruders, and other unwanted individuals. It includes detection, analyzing patterns, recognizing threats, and incident response dealing with them effectively to reduce impact to JPMorgan Chase...
-
Cyber Security Operations Manager Manager
2 weeks ago
United Kingdom Thales Full timeLocation: Remote UK, United Kingdom Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter...
-
Cyber Security Operations Manager Manager
2 weeks ago
United Kingdom Thales Group Full timeCyber Security Assurance Manager page is loaded Cyber Security Assurance Manager Apply remote type Hybrid locations Remote UK Crawley Reading Cheadle Ebbw Vale time type Full time posted on Posted 2 Days Ago job requisition id R0225542 Location: Remote UK, United KingdomThales people architect identity management and data protection solutions at the heart...
-
Senior Security Operations Engineer
Found in: Jooble UK C2 - 1 week ago
United Kingdom Oliver Bernard Full timeSenior Security Operations Engineer - Hybrid - £90K Our client who is a well household name in the commodity trading sector are looking hire an experienced Security Operations Engineer. They are offer hybrid working with their offices based in Central London Opportunity - You'll get the chance to design, implement, and manage security solutions as...
-
Senior Security Operations Engineer
1 week ago
United Kingdom Oliver Bernard Full timeSenior Security Operations Engineer - Hybrid - £90K Our client who is a well household name in the commodity trading sector are looking hire an experienced Security Operations Engineer. They are offer hybrid working with their offices based in Central London Opportunity - You'll get the chance to design, implement, and manage security solutions as...
-
Business Operations Manager
Found in: Appcast UK C C2 - 6 days ago
United Kingdom AGS Cyber Full timeClientA leading provider of information security services. Specializing in application security, cloud security, IoT security and payment security services.RoleWorking in close alignment with the CEO and Senior Partners, you'll be focussing on managing day to day business activities and operations. In addition, you'll be engaging with clients to develop...
-
Business Operations Manager
Found in: Jooble UK C2 - 6 days ago
United Kingdom AGS Cyber Full timeClient A leading provider of information security services. Specializing in application security, cloud security, IoT security and payment security services. Role Working in close alignment with the CEO and Senior Partners, you'll be focussing on managing day to day business activities and operations. In addition, you'll be engaging with clients...
-
Business Operations Manager
Found in: Appcast UK C2 - 6 days ago
United Kingdom AGS Cyber Full timeClientA leading provider of information security services. Specializing in application security, cloud security, IoT security and payment security services.RoleWorking in close alignment with the CEO and Senior Partners, you'll be focussing on managing day to day business activities and operations. In addition, you'll be engaging with clients to develop...
-
Business Operations Manager
Found in: Appcast Linkedin GBL C2 - 6 days ago
United Kingdom AGS Cyber Full timeClientA leading provider of information security services. Specializing in application security, cloud security, IoT security and payment security services.RoleWorking in close alignment with the CEO and Senior Partners, you'll be focussing on managing day to day business activities and operations. In addition, you'll be engaging with clients to develop...
-
Business Operations Manager
Found in: Whatjobs ES C2 - 5 days ago
United Kingdom AGS Cyber Full timeClient A leading provider of information security services. Specializing in application security, cloud security, IoT security and payment security services. Role Working in close alignment with the CEO and Senior Partners, you'll be focussing on managing day to day business activities and operations. In addition, you'll be engaging with clients to develop...