J
Lead Security Engineer - Cloud Proxy
Job Description
This onsite Plano, Texas role at JPMorganChase focuses on designing, securing, and operating a cloud network perimeter platform to govern outbound cloud traffic at enterprise scale; the position offers USD 152,000 to 215,000 per year.
Responsibilities
- Design and implement secure software for cloud network perimeter infrastructure, delivering production‑grade code and reviewing peers' work across the full development lifecycle
- Leverage enterprise‑approved AI capabilities to accelerate threat modeling, vulnerability analysis, and security documentation, validating outputs and ensuring proper handling of sensitive data
- Build and manage infrastructure as code to automate provisioning, configuration, and scaling of cloud networking and proxy layers in a consistent, repeatable, and auditable manner
- Operate enterprise‑scale proxy infrastructure, ensuring high availability, performance, and security of outbound traffic controls across cloud environments
- Develop and maintain automation tooling to streamline network configuration, proxy onboarding workflows, certificate management, and policy enforcement
- Troubleshoot complex network and proxy connectivity issues across cloud environments using structured diagnostic methods to identify root cause and drive resolution
- Collaborate with application teams, platform engineers, and architects to design secure, scalable network connectivity patterns meeting technical and business requirements
- Minimize security vulnerabilities by following industry insights and evolving best practices, continuously improving perimeter controls and validating their effectiveness
- Contribute to a culture that values diversity, opportunity, inclusion, and respect
- Incorporate reuse‑first, AI‑assisted practices within SDLC/toolchains to strengthen security testing and control validation, ensuring traceability and alignment with resiliency and security expectations
Requirements
- Formal training or certification in software engineering, security engineering, or network engineering, with 5+ years of applied experience in one or more of these disciplines
- Experience planning, designing, and delivering enterprise‑level security and or network solutions within cloud environments
- Proficient in developing secure, high‑quality production code and reviewing or debugging code written by others, focusing on cloud network security automation and infrastructure‑as‑code
- Minimizes security vulnerabilities by following industry insights and regulatory requirements; establishes processes to measure current control effectiveness
- Works with stakeholders and business leaders to understand secure connectivity needs and recommends architectural patterns during periods of vulnerability or change
- Experience with AWS services including serverless solutions, ECS, EC2, Lambda, API Gateway, and networking services such as VPCs, Transit Gateway, and PrivateLink
- Ability to review and validate AI‑assisted code and security recommendations before adoption, escalating uncertainty and ensuring outcomes align with security, resiliency, and auditability
- Strong communication, teamwork, and a self‑driven learning mindset
- Proven experience using enterprise‑approved AI capabilities to support security engineering workflows with rigorous validation and awareness of data sensitivity
Technologies
- AWS, AWS ECS, AWS EC2, AWS Lambda, AWS API Gateway, AWS VPC, AWS Transit Gateway, AWS PrivateLink
- F5, Squid, Envoy
- TLS/SSL certificate management, PKI, mTLS, truststore configuration
- HTTP CONNECT, HTTPS, SOCKS5, DNS‑based routing
Benefits
- Base salary
- Commission‑based pay
- Discretionary incentive compensation
- Cash and/or forfeitable equity
- Comprehensive health care coverage
- On‑site health and wellness centers
- Retirement savings plan
- Backup childcare
- Tuition reimbursement
- Mental health support
- Financial coaching
Similar Jobs
J
J
J
J
J
J