Lead Security Engineer - Full Stack Developer - React / Java | London, UK

JPMorgan Chase & Co.
London
2 days ago
Create job alert

Lead Security Engineer - Full Stack Developer - React / Java

Job Description

Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies.

As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls line of business, you are an integral part of a team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions.

Design, code, and test application programming using Java/J2EE, AngularJS/React, Spring/Spring Boot in AWS. Create high-quality software products for JPMorgan Cyber Defense & Fraud line of business. Oversee end-to-end software development within agile frameworks. Design and develop scalable applications for the cloud. Resolve high-impact production issues and ensure smooth flow of business applications.

Job responsibilities

  • Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems
  • Develops secure and high-quality production code and reviews and debugs code written by others
  • Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls
  • Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability
  • Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorgan Chase network
  • Adds to team culture of diversity, equity, inclusion, and respect


Required qualifications, capabilities, and skills

  • Formal training or certification on security engineering concepts
  • Solid application design, coding, testing, maintenance, and debugging skills
  • Experience in front end using Angular/React/Vue frameworks, HTML5, CSS/SCSS, Javascript, JQuery, JSON
  • Working experience on Spring JDBC, Spring Hibernate ORM and designing/developing applications with RESTful Web Services
  • Database experience (RDBMS or NoSQL) required
  • Advanced knowledge of architecture, design and business processes and excellent communication skills
  • Skilled in planning, designing, and implementing enterprise level security solutions
  • Proficient in all aspects of the Software Development Life Cycle
  • Experience with threat modeling, discovery, vulnerability, and penetration testing
  • In-depth knowledge of the financial services industry and their IT systems


Preferred qualifications, capabilities, and skills

  • Experience in architecture and design of microservices and experience in cloud platforms like AWS, GCP, Azure
  • Experience with messaging (JMS/MQ/Kafka) based integration and microservices is a plus
  • Unit Testing, Mocking, Performance Testing (e.g. Junit, Mokito, Blazemeter)
  • Monitoring Tools (e.g. Splunk, Datadog, Grafana, etc)
  • Jenkins/Bamboo or any CI/CD knowledge
  • Knowledge of Terraform, Docker, Kubernetes
  • Solid understanding of Maven, Repository Management (Git)


About Us

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world's most prominent corporations, governments, wealthy individuals, and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.

About the Team

Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers, and employees up for success.#J-18808-Ljbffr

Related Jobs

View all jobs

Security Engineer (Mid Level)

Cyber Security Manager | London, UK

Technical Security Manager

Lead Product Security Engineer

Lead Cyber Security Engineer

Lead Product Security Engineer

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Global vs. Local: Comparing the UK Cybersecurity Job Market to International Landscapes

Understanding opportunities, salaries, and work culture in cybersecurity across the UK, the US, Europe, and Asia Cybersecurity has rapidly ascended from a back-office concern to a strategic priority for every industry. As data breaches, ransomware, and nation-state attacks increase in frequency and sophistication, organisations worldwide are racing to fortify their digital defences. This ongoing surge in cyber threats fuels an unprecedented demand for skilled security professionals—ranging from penetration testers and threat intelligence analysts to cloud security architects and CISOs. In this article, we’ll explore how the UK cybersecurity job market compares to major international hubs in the United States, Europe, and Asia. We’ll discuss job opportunities, salary bands, work culture, and provide guidance for those who might be contemplating remote or overseas positions. By understanding the nuances of each region’s cybersecurity ecosystem, you can make a more informed decision about where and how to advance your career in this high-impact, fast-evolving sector. Whether you’re a seasoned expert with years of experience or a career-changer eager to break into cybersecurity, this overview will help you navigate the global landscape. By the end, you’ll have a clearer perspective on each region’s advantages and challenges—along with practical insights for seizing the best opportunities in a field that has become mission-critical for every modern organisation.

Cybersecurity Leadership for Managers: Strategies to Motivate, Mentor, and Set Realistic Goals in Threat-Driven Environments

In an era of rapidly increasing data breaches, ransomware attacks, and corporate espionage, the importance of robust cybersecurity cannot be overstated. Protecting digital assets has become as essential as safeguarding physical resources, and organisations worldwide rely heavily on specialised teams to defend against sophisticated cyber threats. However, even the most advanced tools and techniques are only as effective as the leadership guiding their use. Cybersecurity leadership requires a dynamic blend of technical know-how, strategic thinking, and people-management skills to maintain readiness against ever-evolving threats. This article is designed for professionals aiming to lead cybersecurity teams or transition into managerial roles where understanding how to motivate, mentor, and set realistic goals is paramount. With insights into building high-performing teams, fostering collaboration, and embracing continuous learning, you’ll be equipped to protect your organisation from a broad spectrum of cyber risks.

10 Must-Read Cyber Security Books for UK Professionals: Boost Your Career and Stay Ahead of Threats

With rapid advancements in digital infrastructure, cloud computing, and the Internet of Things (IoT), cyber threats continue to evolve at lightning speed. For organisations across the UK—and globally—robust cyber security is no longer optional: It’s a strategic imperative. From healthcare and finance to government agencies and tech start-ups, every sector needs skilled professionals to safeguard critical data and protect users. If you’re looking to break into or advance within the cyber security industry, staying updated on the latest techniques, threat landscapes, and defence strategies is paramount. One of the best ways to build and sharpen your expertise is by reading authoritative, high-quality books that combine foundational knowledge with cutting-edge insights. In this guide, we’ve compiled a list of ten books that cater to various skill levels, spanning ethical hacking and threat intelligence to secure software development and cryptography. By diving into these resources, you’ll fortify your understanding of cyber security fundamentals, explore hands-on techniques for defending systems, and gain the strategic perspective needed to excel in roles throughout the UK’s thriving cyber security landscape.