Security Operations Vice President

Overview

As Vice President in the Cybersecurity Perimeter Response Team at JPMorgan

Chase, you will play a critical role in defending the Firm’s digital perimeter against sophisticated Layer 3/4 and Layer 7 DDoS attacks. You will lead the configuration and deployment of web application firewall (WAF) signatures across platforms such as Akamai, Cloudflare, AWS WAF, and F5, ensuring robust protection for our global enterprise.

• Investigate anomalous network traffic patterns and events, collaborating with application teams, subject matter experts, and senior management.
• Develop, maintain, and optimize DoS and WAF policies to protect the Firm, balancing operational risk and security posture.
• Identify, document, and mitigate risks from emerging threats, leveraging intelligence from peer organizations.
• Test and validate policy rules and signatures for effectiveness and applicability.
• Profile new and existing applications, mapping them to appropriate perimeter security policies.
• Deliver incident response support for DoS, DDoS, and related application attacks.
• Provide regular activity and progress reporting to Cyber Operations management.
• Follow best practices in threat recognition, pattern analysis, and surveillance detection to establish efficient, high-quality security processes.

• Formal training or certification with 5+ years of experience in cybersecurity operations, security system management, or related roles.
• Network performance management (e.g., troubleshooting server response and routing issues).
• WAF administration (custom signature authoring, deployment governance, patching, efficacy evaluation, policy testing).
• Web application development/administration (troubleshooting web servers, application stacks, containers, OS, micro-services, and API/data validation errors).
• TCP/IP network administration, optimization, and troubleshooting.
• Incident response for inbound application attacks, with experience in a formal Security Operations Center (SOC) and proficiency in distinguishing suspicious from benign internet sources.

• Experience with SIEM tools (e.g., Splunk) and complex search compilation.
• Application development skills, including scripting (Python/Java), regular expressions, and proof-of-concept creation for zero-day exploits.
• Previous 24x7 operations experience.
• 1+ years of cybersecurity operations experience, including threat and risk assessment documentation.

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility.

These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law.

We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. FAQs about requesting an accommodation are available.

JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans.