Apply Now    

Red Team / Attack Operator (Physical) - Cyber Security

Job Description

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at http://www.jpmorganchase.com/.
 
The Cybersecurity organization’s objective is to ensure that JPMC is able to effectively detect, prevent, and respond to cyber threats against our technology infrastructure.  The scope of Cybersecurity comprises detection and monitoring of threats and vulnerabilities, managing security incidents, and evolving our preventive infrastructure to keep ahead of the threat.  We accomplish this through strong information security leadership and active collaboration with line of business information risk managers to provide high quality security solutions and services that are focused on improving the Firm's risk posture.
 
The Cyber Security Red Team / Penetration Tester is tasked with identifying and containing advanced cyber security threats targeting the firm. The successful candidate will have a proven track record in conducting network exploitation operations, to include Cyber Red Team operations.  Additionally, candidate will have proven experience with in-depth technical analysis of computer networks and physical security culminating in the identification of existing and potential vulnerabilities that if exploited would allow unauthorized access to JPMC systems.
Required Qualifications: 
  • Overall 3+ years of Information Security experience with one of the following:
    • At least 2 years’ experience performing network penetration testing
    • At least 2 years’ experience with Cyber Red Team operations
    • At least 2 years’ experience performing network exploitation operations.
    • At least 2 years experience performing physical penetration testing
      o    U.S. Intelligence Community background highly preferred
  • Knowledge of networking fundamentals (all OSI layers)
  • Knowledge of the Windows and *NIX operating systems to include boot process through understanding of the execution flow of boot time processes
  • Knowledge of software exploitation (web, client-server and mobile) on modern operation systems 
  • Knowledge of physical security penetration testing methods
  • Familiarity with interpreting log output from networking devices, operating systems and infrastructure services
  • Experience performing social engineering as part of Red Team operations
 Preferred Qualifications: 
  • Bachelor's Degree in Engineering, Business Management, or Technology related fields a major plus
  • Knowledge of conducting physical security penetration testing is small independent teams.
  • Knowledge of malware packing and obfuscation techniques
  • Ability to automate tasks using a scripting language (Python, Perl, Ruby, etc).
  • Strong knowledge of networking protocols and packet analysis
  • Must have the ability to perform targeted penetration tests without use of automated tools
  • Well versed in multiple security technologies such as Firewalls, IDS/IPS, Web Proxies and DLP amongst others
  • Demonstrated understanding of financial sector, or other large organization, security and IT infrastructures
  • Ability to program in C, C++, C#, Objective C, Python, Java, PHP and ASM (x86)  
People Skills:
  • Able to work either independently or in a team
  • The ability to coordinate, work with and gain the trust of business stakeholders to achieve a desired objective.   
  • Able to articulate and visually present complex forensic investigation and analysis results.
  • Able to work under pressure in time critical situations.      
  Process Skills:
  • Strong attention to detail in conducting analysis combined with an ability to accurately record full documentation in support of their work.
  • Detailed knowledge of current international best practices in privacy.
Communication Skills:
  • Excellent written and verbal communication skills are required.
  • Ability to communicate effectively with business representatives in explaining forensic findings clearly and where necessary, in layman's terms.
  • Ability to communicate with other industry forensic professionals to ensure solid partnerships with key external stakeholders to ensure that the forensic investigation process remains at a word class level.
Req #: 160040443
Location: Wilmington, DE US
Job Category: Technology
Employment Type: Full Time
Potential Referral Amount: 3000 US Dollar (USD)

Apply Now    

Join our Talent Community

Not ready to apply? Leave your information with us and we will keep you up to date with new career opportunities.

Join Now

Privacy Statement

Any information you provide is confidential and will only be viewed by our recruiters in an effort to fill open positions. In addition, the information you provide is subject to our privacy policy practices.

Please note that J.P. Morgan will not accept unsolicited approaches or speculative CVs, nor will J.P. Morgan be responsible for any related fees, from Third Party Firms who are not preferred suppliers.

The firm invites all interested and qualified candidates to apply for employment opportunities.

Need disability related assistance?

If you are a US or Canadian applicant with a disability who is unable to use our online tools to search and apply for jobs, please contact us by calling (US and Canada Only) 1-866-777-4690. Please indicate the specifics of the assistance needed.


Keep in touch

Not ready to apply? Leave your information with us and we will keep you up to date with new career opportunities.