Sr Lead Security Engineer - AI Governance

Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers.

As a Senior Lead Security Engineer at JPMorganChase within the Enterprise Technology, Data Platforms Team, you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains.

Job responsibilities

Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs

Enhances partnership with Application Owners (AOs) to proactively address changes in their applications. Embeds TRC involvement from the design phase (e.g., Quantum replatforming) to ensure compliance from the outset, rather than only at checkpoints.

Provides senior leadership with visibility into key risks and blockers, including forecasting future issues. Ensures this is a standing agenda item in leadership meetings to highlight risks, weaknesses, and support AOs with prioritization.

Takes formal responsibility for AWS module currency reporting and remediation, clarifying accountability for AOs and reducing confusion by embedding this within the risk team.

Establishes closer linkage between the Technology Risk Committee (TRC) and AI Governance, recognizing that technology risk is key to AI governance. Partners with current governance processes to ensure secure deployment of AI use cases and integrates technology AI governance as a core component of the role.

Acts as a key component in vendor onboarding, ensuring proper contract terms, advising on design, and shepherding vendor applications through internal processes. Early engagement prevents misinformation and streamlines onboarding (e.g., Sigma case study).

Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability

Be responsible for triaging based on risk assessments of various threats and managing resources to cover impact of disruptive events Required qualifications, capabilities, and skills

Formal training or certification in software and/or security engineering concepts, with 5+ years of applied experience in enterprise environments.

Proven ability to plan, design, and implement enterprise-level security solutions across diverse technology domains, including cloud and AI.

Deep knowledge of software application development, technical processes, and security controls, with specialization in at least one area such as cloud, artificial intelligence, machine learning, or mobile technologies.

Extensive experience with threat modeling, vulnerability assessment, discovery, and penetration testing, including risk triage and mitigation strategies.

Demonstrated ability to independently tackle complex design and functionality problems, proactively identifying risks and blockers and driving remediation.

Practical experience with cloud-native architectures and AWS environments, including module currency reporting and remediation.

Strong partnership skills, with a track record of collaborating with Application Owners (AOs), senior leadership, and cross-functional teams to embed security and compliance from the design phase through deployment.

Experience establishing and maintaining linkages between technology risk committees and governance functions, ensuring secure deployment and oversight of AI use cases.

Ability to act as a key advisor in vendor onboarding, contract review, and internal process navigation, ensuring early engagement and compliance. Preferred qualifications, capabilities, and skills

Demonstrated experience in AI governance and technology risk management, with a proven ability to bridge governance and risk functions for secure AI deployment.

Strong track record of providing senior leadership with actionable risk insights and supporting prioritization for application owners.

Experience with AWS module currency reporting and remediation, including clear accountability structures.

Ability to partner with application owners and vendors from the design phase, ensuring compliance and preventing misinformation through early engagement.

Experience in vendor onboarding processes, contract review, and internal process navigation.

Advanced proficiency in one or more programming languages, with hands-on experience in secure software development practices. (any specific languages)

JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans