As a Supplier Threat Intelligence analyst at JPMorgan Chase, you will be working in both a strategic and operational capacity to identify the overall Supplier Threat and Risk posture for the firm. In this role, you will be required to be familiar with the current overall Supplier risk posture as well as regularly analyze and interpret emerging threat intelligence information from multiple organizational, third party, and public sources. Interpretation includes the activities related to translating data and information into intelligence that is targeted and actionable for the organization. Additional responsibilities include providing insights on how to evolve the function specifically including: (1) engagement and collaboration, (2) refining roles & responsibilities, (3) business processes, (4) technology platform refinements such as business rules and dashboards as well as (5) business analytics and metrics.
Duties & Responsibilities:
Analyze Supplier portfolio risk posture on a regular basis - including:
Conducts research on emerging security threats; provides correlation and trending of cyber incident activity.
Maintains knowledge of adversary activities, including intrusion tactics, attack techniques and operational procedures.
Maintains Situational Awareness and reports on advanced threats, including Advanced Persistent Threat (APT)
Coordinates with management, business partners and team members to deliver prompt and actionable intelligence
Foster a close partnership with our Firmwide Cybersecurity Threat Intelligence team (to interpret and manage risk as well as evolve processes and function)
Interpret and disposition risks into appropriate response categories
Generate Supplier Threat Intelligence reports & alerts on a regular basis
Maintains close coordination with Incident Response & Vulnerability Management Teams regarding emerging threats
Follow-up on reports and alerts to ensure proper ownership and follow-through on downstream resources (both internal and external)
Identify opportunities for new data sources, business rules and analytics/reports required to continuously improve the Threat Intel function
Create/encode business requirements as Agile User Stories and position on product backlog for prioritization and implementation (business rules, reporting, dashboard configuration...etc)
Implement and test business rules in technology platform
Evaluate functionality responsibilities, supporting platform and operating model and provide feedback on how to evolve and improve the function
Qualifications:
Bachelor's or Master's Degree in one of the following fields is preferred:
Computer Science or Computer Engineering
Information Assurance or Cybersecurity
Management Information Systems
Ability to work in a fast-paced environment
Strong written and verbal communication skills
Strong critical thinking, analytical and problem solving skills
Understanding of threat actor Tactics, Techniques, and Procedures
Experience working with the output from security products, tools and SIEMs
5+ years experience synthesizing intelligence from multiple sources to provide operational recommendations.
Strong analytical skills
JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as any mental health or physical disability needs.