Beginning on Friday, May 15 at 6:00 p.m. ET/ 11:00 p.m. BST/ May 16 at 3:30 a.m. IST/ 6:00 a.m. HKT and extending through
May 31, the opportunities page will be unavailable to search and apply for jobs as we work to improve your experience.

Apply Now    

Red Team / Attack Lead - Cyber Security

Job Description

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at
Cybersecurity's purpose is to ensure the security and resiliency of the Firm's computing environment, protect customer and employee confidential information, and comply with regulatory requirements globally. We accomplish this through strong information security leadership and active collaboration with line of business information risk managers to provide high quality security solutions and services that are focused on improving the Firm's risk posture. The Cybersecurity team is composed of firmwide functions (IT Risk Management, Infrastructure Security Solutions, Identity & Access Management, and Application security) as well as business-aligned risk & resiliency management teams that affect the technology risk program.
The Cyber Security Red Team Lead is tasked with leading a team of qualified and highly skilled attack operators who are tasked with identifying and containing advanced cyber security threats targeting the firm. The successful candidate will have a proven track record in leading advanced network exploitation operations, to include Cyber Red Team operations. Additionally, candidate will have proven experience with in-depth technical analysis of computer networks culminating in the identification of existing and potential vulnerabilities that if exploited would allow unauthorized access to JPMC systems.
  • Overall 10+ years of Information Security experience with one of the following:
    • At least 5 years experience performing network penetration testing
    • At least 5 years experience performing application security assessments
    • At least 5 years experience with Cyber Red Team operations
    • At least 5 years experience performing and leading network exploitation operations. 
    • U.S. Intelligence Community background highly preferred.
  • Demonstrated experience leading and managing cyber operations and personnel. 
    • Must be able to manage new and existing cyber security requirements, ensure personnel are fully trained and certified via internal JPMC standards, and implement control and risk procedures to insure all Red Team operations are conducted within strict accordance of JPMC Cyber Security standards and directives.   
Required Qualifications: 
  • Strong leadership ability
  • Advanced knowledge of networking fundamentals (all OSI layers)
  • Advanced knowledge of the Windows and *NIX operating systems to include boot process through understanding of the execution flow of boot time processes
  • Strong knowledge of software exploitation (web, client-server and mobile) on modern operation systems
  • Strong understanding of Red Team and Penetration testing methodologies and tools
  • Familiarity with interpreting log output from networking devices, operating systems and infrastructure services 
Preferred Qualifications: 
  • Masters Degree in Cyber Security, Computer Science,  Business Management, or Technology related fields a major plus
  • Knowledge of malware packing and obfuscation techniques
  • Ability to automate tasks using a scripting language (Python, Perl, Ruby, etc).
  • Expert knowledge of networking protocols and packet analysis
  • Must have the ability to perform targeted penetration tests without use of automated tools
  • Well versed in multiple security technologies such as Firewalls, IDS/IPS, Web Proxies and DLP amongst others
  • Demonstrated understanding of financial sector, or other large organization, security and IT infrastructures
  • Experience with building and operating Cyber Red Team programs
  • Ability to program in C, C++, C#, Objective C, Python, Java, PHP and ASM (x86) 
People Skills:
  • Able to work either independently or in a team
  • The ability to coordinate, work with and gain the trust of business stakeholders to achieve a desired objective.   
  • Able to articulate and visually present complex forensic investigation and analysis results.
  • Able to work under pressure in time critical situations.      
 Process Skills:
  • Strong attention to detail in conducting analysis combined with an ability to accurately record full documentation in support of their work.
  • Detailed knowledge of current international best practices in privacy.
Communication Skills:
  • Excellent written and verbal communication skills are required.
  • Ability to communicate effectively with business representatives in explaining forensic findings clearly and where necessary, in layman's terms.
  • Ability to communicate with other industry forensic professionals to ensure solid partnerships with key external stakeholders to ensure that the forensic investigation process remains at a word class level.
Req #: 160039800
Location: Jersey City, NJ US
Job Category: Technology
Employment Type: Full Time
Potential Referral Amount: 5000 US Dollar (USD)

Apply Now    

Join our Talent Community

Not ready to apply? Leave your information with us and we will keep you up to date with new career opportunities.

Join Now

Privacy Statement

Any information you provide is confidential and will only be viewed by our recruiters in an effort to fill open positions. In addition, the information you provide is subject to our privacy policy practices.

Please note that J.P. Morgan will not accept unsolicited approaches or speculative CVs, nor will J.P. Morgan be responsible for any related fees, from Third Party Firms who are not preferred suppliers.

The firm invites all interested and qualified candidates to apply for employment opportunities.

Need disability related assistance?

If you are a US or Canadian applicant with a disability who is unable to use our online tools to search and apply for jobs, please contact us by calling (US and Canada Only) 1-866-777-4690. Please indicate the specifics of the assistance needed.

Keep in touch

Not ready to apply? Leave your information with us and we will keep you up to date with new career opportunities.