Insider Threat Senior Associate - Acquisition Cybersecurity Team
Job Description
Join JPMorgan Chase in Seattle for a role that blends advanced security work with strong support for your career. The Insider Threat Senior Associate on the Acquisition Cybersecurity Team focuses on proactively detecting, assessing, and responding to insider threats affecting the organization and its acquisitions, while developing detection strategies and awareness programs. We offer a competitive total rewards package including base salary, performance incentives, and discretionary compensation, plus a comprehensive suite of benefits. JPMorgan Chase is committed to diversity and inclusion and is an Equal Opportunity Employer.
Benefits
- Base salary determined by role, experience, skill set and location
- Commission-based pay
- Discretionary incentive compensation, paid in cash and/or forfeitable equity
- Comprehensive health care coverage
- On-site health and wellness centers
- Retirement savings plan
- Backup childcare
- Tuitions reimbursement
- Mental health support
- Financial coaching
Responsibilities
- Monitor and analyze user activity and security infrastructure to detect and respond to potential insider threats
- Conduct in-depth investigations of anomalous behavior, including log and network trace analysis, to identify root causes and gather evidence
- Triage and remediate insider threat alerts, owning investigations end to end and participating in incident response
- Create and maintain process documentation and playbooks for insider threat detection and response
- Develop and update insider threat detection strategies using industry best practices and regulatory requirements
- Collaborate with teams to implement insider threat awareness programs, policies, and procedures, and educate employees on best practices
- Provide intelligence services to acquisitions, drafting and sharing insider threat and vulnerability reports
- Liaise with acquisitions to understand their unique insider threat challenges and identify opportunities for improvement
- Work a shift schedule that includes weekend coverage and comply with in-office attendance policies
- Take ownership of issues affecting acquisitions and drive identified improvements to completion
- Act as a point of escalation for team analysts on insider threat matters
Requirements
- Experience in cybersecurity operations with a focus on insider threat detection, incident response, or vulnerability management
- Proficiency in user activity monitoring, network trace analysis, log analysis, and security investigations
- Ability to script for task automation, implement controls, and manipulate data
- Strong understanding of security protocols, authentication, authorization, and security architecture principles
- Hands-on experience with security tools such as SIEM, UEBA, IDS, EDR, and email security solutions
- Knowledge of adversary tactics, insider threat indicators, and detection methods
- Familiarity with enterprise security technologies and both Windows and Linux operating systems
- Ability to identify signs of compromise and anomalous behavior across platforms
- Excellent communication skills for presenting risks and findings to technical and non-technical audiences
Technologies
- SIEM, UEBA, IDS, EDR, Email security solutions, XDR
- Windows, Linux, Cloud environments
About JPMorgan Chase
JPMorgan Chase & Co is a long established financial institution offering innovative financial solutions to millions of consumers, small businesses, and prominent corporate, institutional, and government clients under the J.P. Morgan and Chase brands. With a history spanning over 200 years, the firm leads in investment banking, consumer and small business banking, commercial banking, financial transaction processing, and asset management.
About the Team
Our corporate functions cover diverse areas from finance and risk to human resources and marketing. The corporate teams are essential in ensuring that the company supports its businesses, clients, customers, and employees for long-term success.