Vulnerability Management - Cybersecurity

  • Competitive
  • Singapore
  • Permanent, Full time
  • J.P. Morgan
  • 15 Dec 18

Vulnerability Management - Cybersecurity

JPMorgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world's most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at http://www.jpmorganchase.com/ .

The Cybersecurity organization within JPMorgan Chase & Co. provides security services to all lines of business (LOB) across JPMC. The objective of Cybersecurity is to balance both business alignment and the centralized delivery of core products and services including Security Standards, Monitoring & Protection, Assurance & Awareness, and Security Operations. Cybersecurity is designed to address the JPMC global security needs across all LOBs and the demand to leverage economies of scale across the firm.

The Vulnerability Management function is hiring for a VM Response Team member based in our Singapore location:
This role requires a wide variety of strengths and capabilities, including:

  • Expertise in Cybersecurity practices: including Vulnerability Management workflows and a working knowledge of Threat Intelligence, Attack Analysis, Risk management processes & principles (ATT&CK, MITRE) & Proficiency in the use of standard Cyber Operational tools (Scanning, Operational, Threat Intelligence gathering)
  • Ability to analyze and respond to vulnerabilities, threats, & procedures. Produce reports and sharing intelligence on behalf of Global Cybersecurity, and prepare and deliver regular written and verbal briefings across all levels of the enterprise.
  • Collaborate with high-performing teams and individuals throughout the firm to accomplish strategic goals and delivery of innovation solutions to reduce risk and improve Cyber posture.
  • Strong deductive reasoning, critical thinking, problem solving, and prioritization at pace
  • Identify and action opportunities to improve and progress support to the business both generically and in times of a specific need.
  • Demonstrable strong knowledge of Vulnerability Management techniques in a (cyber) environment.
  • Previous experience in an incident management or operations function
  • A broad understanding of all areas of banking and the threats faced by the financial sector.
  • Working understanding of networking concepts and Information Security, including emerging threats and attack methodologies.
  • Training or skills in one or more of the following:
  • Open Source Intelligence (OSINT) gathering and/or analysis.
  • Social Media Intelligence (SMI/SOCMINT) gathering and/or analysis.
  • Human Intelligence (HUMINT) analysis.
  • Signals Intelligence (SIGINT) analysis.
  • Detailed knowledge of global cyber threats, threat actors and the attack vectors used by adversaries.
  • Excellent written and verbal communication skills.
  • Solid and demonstrable comprehension of Information Security and Industry standards.
  • Sound awareness of leading vendor products/applications from Oracle [Java], Adobe and Microsoft to include product lifecycle & release schedules

    Highly Desired:
  • Previous experience in an 'at scale' Cyber Security Operational function - with experience in driving optimization of incidents, impact assessment, resolution of time sensitive escalations, incident handling, and vulnerability response.
  • Working knowledge of global threats to international cyber security, and conversant in the tactics, techniques and procedures used by cyber adversaries.
  • Degree level qualification or equivalent.
  • Experience in a CCIRM role and/or experience in an intelligence training role.
  • Experience in or dealing with Government agencies.
  • Cyber/technical or network qualifications.
  • Financial sector experience.


At JPMorgan Chase & Co. we value the unique skills ofevery employee, and we're building a technology organization that thrives ondiversity. We encourage professionalgrowth and career development, and offer competitive benefits andcompensation. If you're looking to buildyour career as part of a global technology team tackling big challenges thatimpact the lives of people and companies all around the world, we want to meetyou.

Ready to take yourcareer to the next level? Apply today