Singtel has flagged the Cybersecurity - R&D Engineer (Data Analyst) job as unavailable. Let’s keep looking.

As a Cybersecurity Operations, Data Loss Prevention Content Developer, Associate at JPMorgan Chase within the Cybersecurity and Technology Controls (CTC), your work will have a critical impact on our company, as well as our clients and our business partners around the world. You’ll work with a highly motivated team focused on delivering solutions built to stop adversaries and strengthen our operations. Your work will contribute to identify and build indicators of insider threats and prevent sensitive data loss through world class tools and technologies.

Our Data Loss Prevention (DLP) team performs many functions in support of data security at the firm. The team develops world class solutions for detection and prevention of sensitive information leaving the firm based on in-depth analysis. In addition, the team develops new data identifiers, builds and maintains tools and capabilities for data loss triage prioritization, analyzes trends and patterns of DLP activity and works with stakeholders to reduce the risk of data loss across all lines of business.

Job responsibilities

  • Design, configure and implement DLP policies on Microsoft Information Protection (Microsoft Purview) suite and Symantec DLP at an enterprise level
  • Automate deployment and run maintenance smoothly using scripting skills and analytical capabilities
  • Provide expertise and guidance in management, configuration and optimizations of Microsoft O365 security solutions
  • Contribute to development of new data identifiers, data governance policies, standards and procedures ensuring compliance and data integrity
  • Collaborate with stakeholders, business and technology groups to provide guidance, advice on best practices, define data management requirements, establish effective controls, practices and procedures
  • Use knowledge and expertise to respond to incidents, perform risk reviews, vulnerability assessments and identify new and emerging threats
  • Use expertise to deliver cost-effective solutions and leverage communication and presentation skills to engage senior leaders on important issues and updates
  • Assist in technology and process improvement efforts, with a goal to refine detection and prioritization capabilities
  • Analyze trends and patterns in DLP activity and work with stakeholders to reduce the risk of data loss across all lines of business

Required qualifications, capabilities, and skills

  • Bachelor’s degree in Computer Science, Information Systems or related field 
  • 5 or more years of cybersecurity operations or Security Operation Center (SOC) related experience
  • Hands-on experience of configuration and management of Microsoft Information Protection (Microsoft Purview) in large-scale enterprise environment with knowledge of the following areas – Information Protection/Sensitivity Labels, Data Loss Prevention, Insider Risk/Threat Management
  • Strong scripting skills in PowerShell, Python etc. and working knowledge of regular expressions
  • Experience of technical log reviews, Symantec DLP or Microsoft Information Protection and Splunk ES or other SIEM tool
  • Experience of development and implementation of new DLP or insider threat use cases and process automation
  • Excellent command of cybersecurity organization practices, data loss prevention concepts, security incident triage, insider threat, operations risk management principles and processes, architectural requirements, emerging threats and vulnerabilities, and incident response methodologies
  • Excellent analytical and problem-solving skills with the ability to translate complex technical concepts into practical solutions

Preferred qualifications, capabilities, and skills

  • Possess two or more of the following certifications - Microsoft Certified: Security, Compliance and Identity Fundamentals, Cybersecurity Architect Expert, Security Operations Analyst Associate, Azure Security Engineer, CISSP/CCSP, Splunk Certified Power User
  • Experience with Agile methodology and the ability to work with at least one of the common frameworks with knowledge of tools like Confluence, JIRA and ServiceNow
  • Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with a focus on recommendations for enhancements or remediation
  • Good understanding of national and international laws, regulations, policies and ethics related to financial industry cybersecurity and foundational knowledge of computer forensics; legal, government and jurisprudence as they relate to cybersecurity; operating systems; and methods for intelligence gathering and sharing

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as any mental health or physical disability needs. The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm’s cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group’s number one priority is to enable the business by keeping the firm safe, stable and resilient.

High Risk Roles (HRR) are sensitive roles within the technology organization that require high assurance of the integrity of staff by virtue of 1) sensitive cybersecurity and technology functions they perform within systems or 2) information they receive regarding sensitive cybersecurity or technology matters. Users in these roles are subject to enhanced pre-hire screening which includes both criminal and credit background checks (as allowed by law). The enhanced screening will need to be successfully completed prior to commencing employment or assignment.

Read Full Description
Confirmed 46 minutes ago. Posted 30+ days ago.

Discover Similar Jobs

Suggested Articles