Cybersecurity Threat Intelligence – Engagement Analyst
Jersey City, NJ
JP Morgan Chase & Co. (NYSE: JPM) is a leading global financial services firm with assets of $2.6 trillion and operations worldwide. The firm is a leader in investment banking, financial services for consumers and small business, commercial banking, financial transaction processing, and asset management. A component of the Dow Jones Industrial Average, JPMorgan Chase & Co. serves millions of consumers in the United States and many of the world’s most prominent corporate, institutional and government clients under its J.P. Morgan and Chase brands. Information about JPMorgan Chase & Co. is available at http://www.jpmorganchase.com/ .
Threat Intelligence (TI) holds the global mandate for JPMorgan Chase’s cyber intelligence collection, analysis, and dissemination of finished products to JPMorgan Chase’s population of security operations teams, information technology teams, lines of business and overall executive decision makers.
TI also plays an integral role in the intelligence driven defense of JPMC. This team is also responsible for external engagement with peer groups and information security circles regarding cyber threats, to address events such as intrusions, malware, DDoS, unauthorized access, insider attacks and loss of proprietary information. This includes developing a deep understanding of global threat actors.
Engagement Analysts within the Threat Intelligence team provide contextual awareness to decision makers at both a corporate level and down through the Lines of Business. They act as a conduit between the business enterprise and the Threat Intelligence team, creating and enabling the processes to ensure that all areas of the enterprise receive valuable and timely intelligence. Stakeholder Engagement Analysts must be natural problem solvers and have a strong client focus. They require a strong intelligence/cyber underpinning as well as possessing sound judgment and the ability to prioritize tasks to ensure the best possible outcome in the finite time available.
The responsibilities for this position include, but are not limited to, the following:
- Aid with the production and maintenance of priority intelligence requirements for the business enterprise and ensure that intelligence reporting meeting those requirements is distributed accordingly.
- Aid with the development and understanding of enterprise threat scenarios and potential attack vectors to support organisational risk management and threat modelling at all levels.
- Aid with the selection and evaluation of relevant external vendors and become conversant with the process for vendor on boarding and off boarding as required.
- Give direct intelligence support to specific organisational projects and operations and ensure that relevant teams receive the correct intelligence to enable successful project outcomes.
- On behalf of Global Cybersecurity, prepare and deliver regular written and verbal briefings across all levels of the enterprise as well as delivering authorised briefings to external clients when required.
- Maintain regular contact and liaison with internal partners across the enterprise to ensure a full understanding of their business processes, intelligence requirements and to respond to ad hoc requests as required.
- Identify and action opportunities to improve and progress intelligence support to the business both generically and in times of a specific need.
- Monitor the cyber threat environment to better predict future dangers to the enterprise’s business processes and proactively establish communication channels with the relevant lines of business.
The candidate will also need to learn to use of one or more High Security Access (HSA) systems. Users of these systems are subject to enhanced screening, which includes both criminal and credit background checks, and/or other enhanced screening at the time of accepting the position and on an annual basis thereafter. The enhanced screening will need to be successfully completed prior to commencing employment or assignment.
5+ years in an
intelligence role and 2+ years in a cyber-role, with a sound knowledge
of the management of intelligence and intelligence processes.
- A broad understanding of all areas of banking and the threats faced by the financial sector.
- Excellent understanding of networking concepts and Information Security, including emerging threats and attack methodologies.
- Specialist training or skills in one or more of the following:
- Open Source Intelligence (OSINT) gathering and/or analysis
- Social Media Intelligence (SMI/SOCMINT) gathering and/or analysis
- Human Intelligence (HUMINT) analysis
- Signals Intelligence (SIGINT) analysis
- A thorough understanding of the intelligence requirements process and threat modelling techniques.
- Detailed knowledge of global cyber threats, threat actors and the attack vectors used by adversaries.
- Excellent written and verbal communication skills
- Degree level qualification or equivalent.
- Intelligence Community experience.
- Experience in a CCIRM role and/or experience in an intelligence training role.
- Experience in or dealing with Government agencies
- Cyber/technical or network qualification.
- Experience in contract negotiation.
- Financial sector experience.
At JPMorgan Chase, the work we do matters. All of us are committed to putting our resources and our voices to work every day for our…