Harness your expertise to shape robust cybersecurity strategies and safeguard critical assets. Your leadership will be pivotal in enhancing our resilience against evolving global cyber threats.

As a Cybersecurity Intelligence Vice President in the Cybersecurity and Technology Controls organization, you will play a critical role in safeguarding the firm's digital assets and infrastructure from cyber threats. Responsible for identifying, assessing, and mitigating risks, you will inform and influence control measures across the organization. Your expertise in analyzing complex issues and developing innovative solutions, along with your ability to collaborate with diverse teams, will be crucial in enhancing the firm's security posture. As a subject matter expert, you will contribute to strategic cybersecurity initiatives and continuously improve our threat detection and response capabilities. Your work significantly impacts the firm's operations, fiscal management, public image, employee morale, and client relationships.

Job responsibilities

Utilizes the MITRE ATT&CK Framework to analyze and map threat intelligence, building comprehensive attack flows from gathered intelligence Implements proactive cyber threat strategies using advanced analytics and emerging technologies to identify and mitigate risks Leads and manages comprehensive threat model reviews to identify potential threats and exposures within the firm's enterprise network, ensuring robust control measures are in place Collaborates with detection engineering teams to identify and implement opportunities for enhancing SIEM monitoring and detection alerts, ensuring timely identification and response to potential security threats across the firm's infrastructure Provides threat-led insights, known as "Attack Flows," to evaluate the effectiveness of security measures, strengthen overall security, and address vulnerabilities before exploitation by cyber threats Leads Risk Hunting initiatives by gathering and analyzing cybersecurity data, technology tools, and risk systems to identify security exposures across the Firm’s entire enterprise network Develops and implements risk hunting strategies to proactively identify and mitigate potential vulnerabilities and threats within the firm's infrastructure Enhances threat detection and response capabilities, staying current with cybersecurity trends, sharing insights, and implementing best practices Builds and maintains strong relationships with stakeholders, sharing threat intelligence and best practices to achieve operational goals and improve cybersecurity operations Maintains a forward-looking view of the cyber threat landscape as it relates to JPMC and the wider financial sector, predicting shifts in adversarial intent, goals, and strategic objectives Conveys analytic findings through finished reports, executive communications, and verbal briefings to an array of customers

Required qualifications, capabilities, and skills

5+ years of experience in cybersecurity, focusing on threat intelligence, analysis, and mitigation Proficiency with the MITRE ATT&CK Framework, attack stages, and sub-techniques Expertise in advanced threat hunting, security research, and OSINT for risk identification Experience with SIEM tools (Splunk, Elasticsearch) for automating threat detection and response Strong ability to articulate complex threat information to both technical and non-technical audiences Understanding of the vulnerability landscape and its impact on cyber threats Familiarity with geopolitical dynamics related to state-sponsored intelligence operations Knowledge of the intelligence cycle, analysis methodologies, and processes Understanding of computer networking concepts, OSI model, network protocols (e.g., TCP/IP), and network traffic analysis Experience with threat intelligence techniques and processes in enterprise-level organizations General knowledge of global cyber threats, threat actors, and adversary tactics, techniques, and procedures

Preferred qualifications, capabilities, and skills

Experience in cybersecurity roles within the financial sector enhances understanding of industry-specific threats and regulatory requirements, providing valuable sector-specific expertise Background in intelligence community, financial sector, or similar private sector domains CISSP, CISM, CEH, or similar industry-recognized certifications Proven ability to develop and implement advanced risk hunting methodologies contributes to proactive threat identification and mitigation, showcasing strategic risk management skills Demonstrated experience in leading complex cybersecurity projects, showcasing strategic thinking and the ability to enhance organizational security posture, is a valuable asset for leadership in cybersecurity initiatives Experience in military operations particularly in cybersecurity strategy and execution