Cyber Intelligence Specialist - Threat Intelligence & Incident Response

Job Description
Harness your expertise to shape robust cybersecurity strategies and safeguard critical assets. Your leadership will be pivotal in enhancing our resilience against evolving global cyber threats.
As a Cybersecurity Intelligence Specialist in Cybersecurity and Technology Controls organization, you will play a critical role in safeguarding the firm's digital assets and infrastructure from cyber threats. Responsible for identifying, assessing, and mitigating risks, you will inform and influence control measures across the organization. Your expertise in analyzing complex issues and developing innovative solutions, along with your ability to collaborate with diverse teams, will be crucial in enhancing the firm's security posture. As a subject matter expert, you will contribute to strategic cybersecurity initiatives and continuously improve our threat detection and response capabilities. Your work significantly impacts the firm's operations, fiscal management, public image, employee morale, and client relationships.
Cybersecurity Operations' Supplier Threat Intelligence and Incident Response (STIIR) team is responsible for identifying and assessing cyber threats to JPMC's third-party partners and supply chain and leads the firm's incident response function when a JPMC third party experiences a cyber incident. As a Third Party Cyber Operations Specialist on the STIIR team, you will be at the forefront of identifying and mitigating cyber threats to and from our third-party partners. Your work will directly contribute to the security and resilience of JPMC's extended enterprise.
Job responsibilities

• Implement proactive threat intelligence strategies using advanced analytics and emerging technologies to identify and mitigate risks
• Develop custom threat-hunting queries and rules for specific threat indicators in large data sets using data analysis tools or specialized languages
• Enhance threat detection and response capabilities, staying current with cybersecurity trends, sharing insights, and implementing best practices
• Build and maintain strong relationships with stakeholders, sharing threat intelligence and best practices to achieve operational goals and improve cybersecurity operations
• Lead the engagement with engineering teams to transition and implement new systems and processes.
• Develop and deliver comprehensive reporting, including regular and ad hoc reports, based on the team's data.
• Establish and maintain metrics to support program objectives and performance evaluation.
• Improve process management, ensuring quality assurance and adherence to standard operating procedures.
• Document and standardize processes within organizational frameworks.
• Build and enhance analytical capabilities to support data-driven decision-making.
• Analyze diverse data sets to uncover trends and opportunities.

Required qualifications, capabilities, and skills

• Experience in cybersecurity, focusing on threat intelligence, analysis, and mitigation
• Expertise in advanced threat hunting, security research, and Open-Source Intelligence (OSINT) for risk identification and assessment
• Experience with system implementation and process development.
• Experience with Security Information and Event Management (SIEM) tools for automating threat detection and response
• Excellent leadership and project management skills, with the ability to drive cross-functional initiatives.
• Excellent communication skills, both written and verbal, with the ability to engage with diverse stakeholders.
• Ability to work independently and collaboratively in a fast-paced environment.
• Strong Excel and PowerPoint skills.
• Strong problem-solving and analytical skills and attention to detail.

Preferred qualifications, capabilities, and skills

• Hold relevant certifications (e.g., CISSP, CISM, PMP) are a plus.
• Experience in Vulnerability Management, Incident Response and/or Governance, Risk, and Compliance (GRC).
• Experience in offensive security experience... Pen Testing, Red Teaming, etc.
• Knowledge of MITRE ATT&CK framework and/or threat modeling
• Experience working on third party related issues.
• Experience coding or advanced data manipulation experience is a benefit.
• Experience in statistical analysis and business intelligence.

About Us
JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans
About the Team
The Cybersecurity & Technology Controls group at JPMorganChase aligns the firm's cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processes and solutions efficiently and consistently; and drive automation of controls. The group's number one priority is to enable the business by keeping the firm safe, stable and resilient.
High Risk Roles (HRR) are sensitive roles within the technology organization that require high assurance of the integrity of staff by virtue of 1) sensitive cybersecurity and technology functions they perform within systems or 2) information they receive regarding sensitive cybersecurity or technology matters. Users in these roles are subject to enhanced pre-hire screening which includes both criminal and credit background checks (as allowed by law). The enhanced screening will need to be successfully completed prior to commencing employment or assignment.