Security Operations Analyst, SIEM Operations

Step into the role of Security Operations Analyst and contribute to maintaining a robust, secure digital environment through proactive monitoring and response.

As a Security Operations Analyst in the Cybersecurity and Tech Controls, SIEM Operations team, you play a role in safeguarding the firm's digital assets and infrastructure by monitoring, detecting, assessing, and responding to security incidents in real-time. You will apply your general knowledge of cybersecurity principles and practices to identify vulnerabilities, implement security measures, and proactively mitigate potential risks. You will generate influence within your team and contribute to the effectiveness of your team's cybersecurity efforts. Collaborating with cross-functional teams, you will contribute to the development of a coordinated approach to security and help educate employees on best practices, policies, and procedures for maintaining a secure digital environment.

Job responsibilities

• Conduct security research and stay up to date with industry trends, emerging threats, and best practices to enhance the organization's security posture
• Perform log analysis, threat hunting, incident response, and vulnerability impact activities to proactively identify and mitigate potential risks to the firm's digital assets
• Collect evidence from devices, systems, and data, extract relevant information and document initial findings, contributing to recommendations for further investigation or remediation
• Collaborate with cross-functional teams to implement coordinated security measures, policies, and procedures that align with the firm's objectives

Required qualifications, capabilities, and skills

• Bachelor's degree in Computer Science or equivalent
• Formal training or certification on software engineering concepts and at least 1 year of applied experience in cybersecurity operations, network security, or a related field
• Baseline knowledge of cybersecurity operations, security monitoring, incident response, or vulnerability assessment
• Emerging proficiency in scripting for automating tasks and enhancing efficiency
• Foundational understanding of network protocols, security architecture, design principles, and common vulnerability and exposures (CVE) to effectively safeguard digital assets

Preferred qualifications, capabilities, and skills

• Experience with crafting regular expressions (regex)
• Experience reviewing vulnerabilities and the effectiveness of the mitigatory measures
• Possess a basic understanding of cloud architecture and an understanding of how attackers leverage these platforms
• Knowledge of scripting languages like Python, PowerShell, and JavaScript and understanding how scripting languages are used in a cybersecurity context
• Possess the ability to manage fluctuating workloads and conflicting priorities

 

J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.
   We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.