Lead Cybersecurity Architect

Job Description

Join one of the world's most trusted financial institutions and help build the security foundation that protects millions of customers and critical business operations. At JPMorganChase, cybersecurity isn't just a function, it's a strategic priority, and your expertise will directly shape how we design, build, and defend our most critical systems across modern cloud-based technologies.

As a Lead Cybersecurity Architect at JPMorganChase within the Cybersecurity and Technology Controls organization, you are an integral part of a team that develops high-quality cybersecurity solutions for software applications built on modern cloud-based technologies. As a core technical contributor, you will identify, create, and communicate risk, mitigation options, and solutions across multiple technical areas and business functions in support of critical project goals. Your work will directly strengthen the firm's resilience posture and protect the integrity of systems relied upon by clients and colleagues worldwide.

Job responsibilities

• Engage technical teams and business stakeholders to discuss and propose technical approaches that meet current and future cybersecurity needs
• Define the technical target state of cybersecurity products and drive achievement of the overall security strategy
• Identify opportunities to eliminate or automate remediation of recurring issues to improve the overall cybersecurity posture of software applications and systems
• Lead evaluation sessions with external vendors, startups, and internal teams to assess cybersecurity design and technical capabilities for integration into existing systems and architecture
• Lead communities of practice to drive awareness and adoption of new and leading-edge cybersecurity technologies across the organization
• Design and embed security controls throughout the software development lifecycle, ensuring secure-by-design principles are applied from inception through production
• Integrate security practices into CI/CD pipelines and DevSecOps workflows to support automated security testing, vulnerability scanning, and policy enforcement
• Develop Python-based tooling and automation to support security monitoring, control validation, and vulnerability remediation
• Collaborate with risk, compliance, and audit stakeholders to translate regulatory requirements into actionable technical controls
• Leverages enterprise-authorized AI capabilities within the work environment to accelerate cybersecurity architecture analysis and decisioning (e.g., risk identification and documentation), validating outputs and handling data according to sensitivity and security requirements
• Drives reuse-first adoption of AI-assisted security validation within SDLC/toolchain routines, improving control testing and remediation quality with traceability/auditability and resiliency expectations

Required qualifications, capabilities, and skills

• Formal training or certification on cybersecurity architecture concepts and 5+ years applied experience
• Hands-on practical experience delivering enterprise-level cybersecurity solutions and controls
• Advanced proficiency in one or more programming languages, including Python
• Proficiency in all aspects of the software development lifecycle, including automation, continuous delivery methods, and CI/CD pipeline security integration, with the ability to embed security at each phase
• Advanced understanding of agile methodologies, application resiliency, and security principles
• Demonstrated proficiency in software applications and technical processes within a technical discipline such as public cloud, artificial intelligence, or machine learning, with practical cloud-native experience and the ability to evaluate and recommend solutions for future-state architecture
• Experience effectively communicating complex security concepts to senior business leaders and non-technical stakeholders
• Demonstrated experience using enterprise-authorized AI capabilities within the work environment to support cybersecurity architecture workflows with strong validation habits and awareness of data sensitivity
• Ability to assess and validate AI-assisted security recommendations before adoption, escalating uncertainty and ensuring outcomes align to security, resiliency, and auditability expectations

Preferred qualifications, capabilities, and skills

• In-depth knowledge of the financial services industry and its technology systems and regulatory landscape
• Deep knowledge of one or more software platforms or applications within a large-scale enterprise environment
• Industry certifications such as CISSP, SABSA, or equivalent cybersecurity architecture credentials
• Familiarity with financial services compliance frameworks such as NIST, SOC 2, or PCI-DSS
• Experience with zero-trust architecture principles and their practical application in hybrid or multi-cloud environments

#CTC

About Us

JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans

About the Team

Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success.