Post Job Free
Sign in

Infrastructure Testing & Compliance Lead at JP Morgan

Location:
Justin, TX
Salary:
90,000
Posted:
February 04, 2026

Contact this candidate

Resume:

Jonathan Aragon

Linkedin ******************@*****.*** 469-***-**** GitHub

Summary

Infrastructure professional with specialized experience in automated data migrations, network configuration, and PowerShell/Bash scripting since early 2023. Proven track record in high-compliance environments (J.P. Morgan), managing secure global connectivity and troubleshooting complex infrastructure issues. Veteran of the U.S. Marine Corps with a strong foundation in security and operational discipline. Eager to leverage current Azure/AWS studies and hands-on migration experience within a mentor-led cloud engineering program.Obtained Secret Clearance during my time in service with the Marine Corps. Skills

AWS (EC2, S3, VPC), Azure (Container Apps, VNet, App Service) Terraform), GitHub Actions, Jenkins, PowerShell, Bash, Azure CLI, SQL, Git, Splunk, Datadog, IAM Least Privilege, Azure Policy, RBAC, SQL Server, PostgreSQL, Migration (Azure Migrate), NSGs, Load Balancers, OpenSSL, Keytool, Wireshark, Splunk, Datadog, Checkov, Snyk, OPA (Open Policy Agent), or HashiCorp Vault. Work Experience

Migration Infrastucture Specialist Mphasis - J.P Morgan Contractor 3/2024 - Present

- Collaborated with 3 of J.P. Morgan’s critical payment channels (API, Managed File Transfer, Host-to-Host) across 11,700 global clients, managing 49,000 connections with zero downtime over a year-long project.

- Automated endpoint validation (HTTP 200, TLS, DNS) during high-stakes cutovers by engineering a lightweight PowerShell health-check module, resulting in a 25% reduction in manual verification time.

- Utilized FileZilla and WinSCP for Managed File Transfers and Host-to-Host connections, executed curl/Powershell test to verify API connectivity and endpoint health during data center cutovers.

- Leveraged Splunk log analysis and Agile methodologies to perform root-cause analysis on connectivity issues, ensuring zero downtime for 49,000 client connections.

- Managed 24/7 on-call rotation to resolve critical production errors, maintaining global payment processing valued in the trillions.

- Led resolution of migration challenges, collaborating with team members to devise effective solutions, and maintaining smooth global payments processing valued in the trillions.

- Led technical Zoom sessions with global clients to coordinate network configurations and API integrations. Cip

PKI Analyst Mphasis - J.P Morgan Contractor

- Managed enterprise-wide cipher suite updates, transitioning legacy systems from deprecated algorithms to modern, high-strength standards to ensure data-in-transit integrity.

- Diagnosed and resolved complex algorithm negotiation failures between diverse client-side applications and banking infrastructure, preventing service interruptions for high-value transactions.

- Utilized monitoring tools such as Datadog to analyze handshake failures and cipher mismatches, identifying root causes across client-side and server-side environments.

Department of Defense United States Marine Corps

- Previously held U.S Department of Defence (DoD) Secret Clearance (eligible for reactivation)

- Demonstrated strong attention to detail. Security played a major role in my position, allowing me to grow this discipline to a high degree. Self-Directed Experience

Azure Migration & Modernization Lab — Terraform, Azure Migrate, RBAC, Cost Optimization, Azure Container Apps.

- Designed and implemented a simulated hybrid migration (on-prem VMware - Azure) using Azure Migrate with right-sizing and cost estimates; planned cutover paths with ASR.

- Codified a governance-first landing zone via Terraform (RGs/VNet/NSG), Azure Policy (require tags, allowed locations/SKUs, deny NIC public IPs), and RBAC.

- Integrated automated compliance auditing via Azure Policy to prevent the deployment of non-compliant resources in real-time.

- Implemented zero-cost guardrails (Monitor Activity Log alerts, budgets, Advisor) and modernized a workload to Azure Container Apps (consumption, scale-to-zero).

AWS Secure Pipeline (Terraform) — AWS (S3, KMS, IAM, VPC, CloudWatch), Terraform, GitHub Actions, tfsec/tflint.

• Built an end-to-end CI/CD pipeline that provisions S3 with SSE-KMSI, versioning, lifecycle rules, and blocks public access; managed KMS CMK with rotation and tight key policies.

• Deployed VPC with subnets and least-privilege Security Groups, plus IAM roles/policies aligned to least privilege for deployment and runtime. Certifications

AWS Solutions Architect (In progress) Comptia Security+ Exam Scheduled Feb 2026 ISC2 CyberSecurity - Certified



Contact this candidate