JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2 trillion and operations in more than 60 countries. The firm is a leader in investment banking, financial services for consumers, small business and commercial banking, financial transaction processing, asset management, and private equity.
The Computer Security Incident Response Team (CSIRT) is a global team that manages all computer security related incidents across the firm. CSIRT's mission is to provide immediate and efficient response to computer security incidents ranging from intrusions, malware, DDoS, unauthorized access, insider attacks and loss of proprietary information. The CSIRT Team is part of the Global Cybersecurity Services organization and maintains strong relations with all Line of Business technology groups and Information Technology Risk and Security Management (ITRSM). CSIRT works closely with the Threat & Intelligence Team, Global Security & Investigations, Security Operations Center, and the Vulnerability Management Team in order to quickly identify, alert, respond and mitigate computer security incidents.
Provide follow-the-sun coverage in conjunction with other members of the CSIRT Team to respond to computer security incidents that meet the requirements of JPMorgan Chase & Co. global businesses.
Respond to computer security incidents by collecting, analyzing and preserving digital evidence.
Assemble and coordinate with technical teams and third-party vendors to resolve incidents as quickly and efficiently as possible.
Ensure that all incidents are recorded and tracked to meet audit and legal requirements.
Conduct root cause analysis to identify gaps and recommendations ultimately remediating risks to the firm.
Communicate effectively with representatives of the Lines of Business, technology specialists, and vendors.
Gather and analyze forensic evidence for all computer security incidents.
Partner with all JPMC business lines to investigate computer intrusions, DoS attacks, social engineering and electronic loss of data.
Advise business partners on issues of suspicious or malicious computer network activity.
Work closely with the technology risk teams to assess risk and provide recommendations for improving our security posture.
Conduct advanced computer and network forensic investigative functions relating to various forms of malware analysis, computer intrusion, theft of information, denial of service and multi-national organized criminal groups.
Liaison with Global Security & Investigations regarding insider threats and code of conduct violations.
7+ year's industry experience in a large, mission-critical environment.
4+ year's incident response experience.
Network intrusion methods, network containment, and segregation techniques and technologies experience.
Firewall configuration and features experience.
Network and platform based security techniques experience.
Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS), both host and network based systems experience.
IP Protocol Suite; knowledge of IP Routing protocols.
Proficiency with Windows & UNIX,.
Coding (scripting) experience e.g. Perl, VB Script, Python etc.
Penetration testing experience.
Strong written and verbal communication skills; ability to understand complex problems while formally presenting them simplistically.
Knowledge of incident response and crisis management.
Ability to identify both tactical and strategic solutions.
Ability to assess security incidents quickly and effectively and communicate a course of action to respond to the security incident while mitigating risk and limiting the operational and reputational impact to JPMorgan Chase & Co.
Knowledge of computer forensics both host and network based.
Experience working with Encase, FTK and open source forensic tools.
Bachelor's Degree in Computer Science or related field.
This position can be located in our Jersey City, NJ or Syracuse, NY office.
Malware analysis, virus exploitation and mitigation techniques experience.
Knowledge of Novell, Mac OSX operating systems.
Ability to coordinate, work with and gain the trust of business stakeholders, technical resources, and third-party vendors.
JPMorgan Chase is an Equal Opportunity and Affirmative Action Employer, M/F/D/V.
US-NJ-Jersey City-NOC 5 - 575 Washington / 02969
US-NY-Syracuse-Syracuse Univ - Lyman Hall / 50432
Central Technology & Ops
JPMorgan Chase - 9 months ago
At JPMorgan Chase, the work we do matters. All of us are committed to putting our resources and our voices to work every day for our...