Senior Information Security Analyst jobs at First Commonwealth Bank

Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Senior Lead Security Engineer at JPMorgan Chase within the Cybersecurity Technology & Controls, you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. **Job responsibilities** + Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs + Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability + Regularly provides technical guidance and direction to support the business and its technical teams, contractors, and vendors, leveraging cloud-native backend systems and infrastructure-as-code tools such as Terraform and AWS CloudFormation + Architect and deploy scalable solutions on AWS Cloud & develops secure and high-quality production code, and reviews and debugs code written by others, utilizing modern CI/CD workflows and containerization technologies (Docker) + Drives decisions that influence the product design, application functionality, and technical operations and processes, including the serverless solutions + Serves as a function-wide subject matter expert in one or more areas of focus, such as scalable backend development, AI-powered agents, and data automation pipelines + Actively contributes to the engineering community as an advocate of firmwide frameworks, tools, and practices of the Software Development Life Cycle, including observability and monitoring solutions (CloudWatch, Datadog, Prometheus) + Influences peers and project decision-makers to consider the use and application of leading-edge technologies, such as LLMs (OpenAI, Bedrock), AI frameworks (LangChain, LlamaIndex), and vector databases (OpenSearch) **Required qualifications, capabilities, and skills** + Formal training or certification on software engineering concepts and 5+ years applied experience, including backend software development using Python + Hands-on practical experience delivering system design, application development, testing, and operational stability in AWS Cloud environments + Advanced knowledge of software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) + Advanced in one or more programming language(s), with deep expertise in Python and experience designing RESTful APIs and microservices + Advanced knowledge of software applications and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, etc.), including data modeling with SQL databases (PostgreSQL,Aurora) + Ability to tackle design and functionality problems independently with little to no oversight, including integrating AI/LLM-based services and building intelligent automation components + Practical cloud native experience, including exposure to event-driven and serverless architectures, and understanding of security best practices in AWS environments (IAM, KMS, VPC, Secrets Manager) + Skilled in planning, designing, and implementing enterprise-level security solutions **\#CTC** JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans **Base Pay/Salary** Jersey City,NJ $171,000.00 - $260,000.00 / year

The Information Security Specialist plays a vital role in protecting the Bank's information assets by ensuring the integrity, confidentiality, and availability of systems across the enterprise. This position is responsible for the effective application of security controls across both business operations and technology environments. The successful candidate will perform security administration, conduct continuous monitoring, and lead investigations into security events triggered by the Bank's security infrastructure. Organization Overview FHLBank Pittsburgh provides reliable funding and liquidity to its member financial institutions, which include commercial and savings banks, community development financial institutions, credit unions and insurance companies in Delaware, Pennsylvania and West Virginia. FHLBank products and resources help support community lending, housing and economic development. As one of 11 Federal Home Loan Banks established by Congress, FHLBank has been an integral and reliable part of the financial system since 1932. Primary Success Factors * Supports the efficient and effective implementation and maintenance of security for the Bank's information assets and resources; evaluates, installs and maintains security software on a variety of platforms; and actively promotes the advancement of sound security policies and procedures. Provides customer support for email processing and security, Help Desk ticket queues for security and account requests. * Monitoring and investigation of security events generated by the Bank's security infrastructure * Designs appropriate security measures in new system development efforts as defined by security requirements, product options and implementation strategies. * Evaluates, engineers, and recommends security enhancements to Bank's current environment and architecture. * Establishes and executes procedures for authorizing access to information across all platforms to appropriately restrict access. * Participates in establishing and maintaining security policies and procedures * Provides daily support and management of Security incident and event Management (SIEM) solution according to industry best practice and Bank policy. * Performs monitoring, analysis, and reporting of security events across a complex environment. * Establishes and executes procedures for performing self-audits of the security administration function to detect inappropriately defined security parameters. * Manages bank firewalls to ensure access and controls are properly applied to all systems. * Manages security systems (IDS, firewall, mail/web filtering, etc.) to ensure systems are properly functioning and upgraded. * Works with business users to ensure proper access to applications is in place. * Regularly reviews systems and networks to ensure compliance with IT Security policy. * Assists in the designing of network architecture to ensure industry-standard network practices are enforced. * Deciphers network packet captures for troubleshooting. * Ensures compliance with applicable policies, procedures, and regulations to ensure safe and sound business operations. Required Experience * Bachelor's degree in Computer Science, Information Systems or related degree or equivalent work experience * At least one of the following professional Security-related certifications required: CISSP, SANS GIAC, CCSP * Five or more years of experience in an information security role * At least two years of hands-on experience with firewall administration * Hands-on experience with administering security in Windows Active Directory Security * Demonstrated knowledge of managing and administering spam filtering system * Demonstrated knowledge of securing and administering security on multiple operating environments: Linux, Windows * Demonstrated knowledge of host-based and network-based Intrusion Detection System concepts * Experience with DDOS mitigation and related network traffic risk mitigation techniques * Experience with Network Access Control Platforms and Procedures Candidates with at least three years of experience in an information security role and Windows Active Directory Security will be considered for an alternative role. It is the policy of the Federal Home Loan Bank of Pittsburgh to ensure equal employment opportunity (EEO) for all employees and applicants for employment without regard to race, religion, color, sex, national origin, age, disability status, genetic information, veteran's status, ancestry, sexual orientation or status as a parent as defined by applicable law. It is the Bank's policy to comply with applicable laws concerning the employment of persons with disabilities, including reasonable accommodation for applicants and employees with disabilities.

This role is for a Data Protection Analyst working in the Data Discovery and Protection Program. The Analyst is responsible for supporting, developing, and enhancing the Data at Rest Protection Program for both on-premise and cloud environments. The colleague will engage with Business Units across the organization, produce metrics and documentation, and implement and support tools related to the data protection program. A successful candidate will: * Assess existing scanning program to implement cloud scanning capabilities * Assist in deployment and maintenance of data scanning tools * Partner with other groups within the organization to identify and remediate data at rest access risk. * Work with risk partners to identify controls, determine control adequacy, and identify control monitoring opportunities and areas for improvement/enhancement * Assist in collecting, analyzing, and interpreting data access information and remediate permission compliance issues based on company security standards * Discern patterns of complex threat actor behavior, communicate an understanding of current and developing Cyber threats to key stakeholders, and stay current with emerging trends and threats in the field of insider threat Qualifications Required: * Understanding of information security concepts, best practices, and regulations related to data loss prevention * Understanding of enterprise security and networking technology and how the technology relates to the prevention, detection, and response of data loss * Advanced understanding of the Microsoft Office suite (e.g., Outlook, Word, Excel, PowerPoint, etc) * Excellent verbal and written communication skills (including but not limited to: correct English usage, grammar, spelling, punctuation, vocabulary, etc.). * Ability to execute work independently and as a team member with good interpersonal skills - using tact, patience and courtesy. * Experience as a security consultant * Working knowledge of cloud topology * Knowledge of file share security and Windows ACL administration * Familiarity with the Financial Services Industry * Knowledge of varying cloud platforms * Familiarity with cloud security at major cloud service providers * Certifications: Associate of (ISC)^2, CISSP, or similar. Education: * Bachelor's degree in Information Security, Computer Science or a related field OR * Bachelor's degree in Business or other field + 3 years relevant experience * Equivalent years: BA/BA = HS + 5 years of experience Pay Transparency The salary range for this position is $97,049 - $145,574 per year. Actual pay is based on various factors including but not limited to the work location, and relevant skills and experience. We offer competitive pay, comprehensive medical, dental and vision coverage, retirement benefits, maternity/paternity leave, flexible work arrangements, education reimbursement, wellness programs and more. Note, Citizens' paid time off policy exceeds the mandatory, paid sick or paid time-away policy of every local and state jurisdiction in the United States. For an overview of our benefits, visit ************************************** . Some job boards have started using jobseeker-reported data to estimate salary ranges for roles. If you apply and qualify for this role, a recruiter will discuss accurate pay guidance. Equal Employment Opportunity Citizens, its parent, subsidiaries, and related companies (Citizens) provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, ancestry, color, citizenship, physical or mental disability, perceived disability or history or record of a disability, ethnicity, gender, gender identity or expression, genetic information, genetic characteristic, marital or domestic partner status, victim of domestic violence, family status/parenthood, medical condition, military or veteran status, national origin, pregnancy/childbirth/lactation, colleague's or a dependent's reproductive health decision making, race, religion, sex, sexual orientation, or any other category protected by federal, state and/or local laws. At Citizens, we are committed to fostering an inclusive culture that enables all colleagues to bring their best selves to work every day and everyone is expected to be treated with respect and professionalism. Employment decisions are based solely on merit, qualifications, performance and capability. Background Check Any offer of employment is conditioned upon the candidate successfully passing a background check, which may include initial credit, motor vehicle record, public record, prior employment verification, and criminal background checks. Results of the background check are individually reviewed based upon legal requirements imposed by our regulators and with consideration of the nature and gravity of the background history and the job offered. Any offer of employment will include further information. Benefits We offer competitive pay, comprehensive medical, dental and vision coverage, retirement benefits, maternity/paternity leave, flexible work arrangements, education reimbursement, wellness programs and more. View Benefits Awards We've Received Age-Friendly Institute's Certified Age-Friendly Employer Dave Thomas Foundation's Best Adoption-Friendly Workplace Disability:IN Best Places to Work for Disability Inclusion Human Rights Campaign Corporate Equality Index 100 Award Fair360 Top Regional Company FORTUNE's World's Most Admired Companies Military Friendly Employer

Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JP Morgan Chase within the Cybersecurity & Technology Controls, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. **Job Responsibilities :** + Specific experience deploying commercial software at scale into an enterprise environment. Develop and enforce robust change management practices to ensure system integrity and security. + Show strong experience defining and implementing infrastructure as Code (IaC), working with CI/CD pipelines, and associated automation tooling. + Function in systems engineering, systems integrations, and systems administration roles. Demonstrate strong working knowledge of Windows and Linux systems internals. + Execute on key deliverables in the security engineering space. Design and develop production deployments with the ability to think beyond routine or conventional approaches in order to deliver technology solutions for key stakeholders. + Develop secure and high-quality production code and review and debug code written by others. Able to implement complex business logic in Python, Bash, PowerShell, and other scripting languages. + Engage effectively with third-party vendors and communicate and collaborate with a broad range of internal teams. + Minimize security vulnerabilities by following industry insights and government regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls. + Work with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability. **Required qualifications, capabilities, and skills** + Formal training or certification on Engineering and/or Cybersecurity concepts and 5+ years applied experience as a cloud engineer, deployment engineer, DevOps engineer, or equivalent role. + Experience with cloud engineering, deployment engineering, DevOps engineering, or equivalent + Demonstrated skills in planning, designing, and implementing enterprise level security solutions. + Strong experience defining and implementing infrastructure as Code (IaC), working with CI/CD pipelines, and associated automation tooling + Commanding knowledge of a programming/scripting language for automation and integration tasks. Proficiency in all aspects of the Software Development Life Cycle. + Strong analytical experience with problem solving mindset and the ability to solve complex challenges. + Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security. **Preferred qualifications, capabilities, and skills** + Cloud computing related certifications with an AWS focus are strongly preferred, such as Certified Solutions Architect, DevOps Engineer, or similar. + Experience effectively communicating with senior business leaders. \#CTC JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans

Oversee and validate the effectiveness of security controls and configuration baselines implemented by first line teams. Regularly review security documentation and operational practices to ensure alignment with regulatory requirements, industry standards, and organizational policies. Recommend improvements to control frameworks and support the development and maintenance of security policies, standards, and procedures. Review and validate reports and metrics provided by first line teams to assess the effectiveness of security solutions and controls. Analyze trends and findings to identify systemic risks or gaps and collaborate with operational teams to ensure timely remediation and continuous improvement. Prepare independent summaries and recommendations for management based on oversight activities. Maintain up-to-date detailed knowledge of the IT security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors. Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security. Assist in the deployment, integration, and initial configuration of all new security solutions and any enhancements to existing security solutions in accordance with standard best operating procedures and the enterprise's security documents. Assist in investigations of security incidents and problematic activities to help identify root causes and recommend corrective actions. Contribute to the development and delivery of information security awareness training programs for all organizational levels, including new hire orientation and ongoing awareness campaigns. Perform additional responsibilities as assigned to support the overall security objectives of the organization. Participate in the planning and design of enterprise security architecture, under the direction of the Information Security Manager. Assist in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the CISO. Contribute to the planning and design of an enterprise Business Continuity Plan and Disaster Recovery Plan, under the direction of the CISO. Minimum Qualifications: Second year college student focusing on Information Technology or Information Security Two to four years related experience or equivalent combination of education and experience Security related certifications such as: Security +, CISA, CISSP, CRISC, CISM, GRCP, CCSP, CGEIT are strongly desired Eligibility requirements may differ for each benefit or program. National Cooperative Bank, N.A. is an Equal Employment Opportunity Employer (EOE/AA)

Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Senior Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls , you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. **Job responsibilities** + Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs + Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability + Be responsible for triaging based on risk assessments of various threats and managing resources to cover impact of disruptive events + Adds to team culture of diversity, equity, inclusion, and respect **Required qualifications, capabilities, and skills** + Formal training or certification on software engineering concepts and 5+ years applied experience . + Experience planning, designing, building and implementing enterprise level security engineering products and solutions in a public cloud environment (i.e. AWS, GCP, Azure) + Advanced in one or more programming languages/scripts (i.e. C/C#, Python, PowerShell) + Advanced knowledge of secure software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) + Experience with continuous integration and continuous deployment (CI/CD) tools (Jenkins), version control tools (BitBucket, Git), managing and tracking work using management tools like Jira + Experience building security engineering products and solutions + Advanced knowledge of the Windows Workstation OSs (Windows 10/Windows 11 and Virtual platforms) and/or Mac OSX + Understanding of Active Directory concept and practical implementation of GPO management + Ability to tackle design and functionality problems independently with little to no oversight **Preferred qualifications, capabilities, and skills** + Experience within Cyber Security is preferred + Excellent communication and presentation skills + Prior experience in finance industry is a huge plus **\#CTC** JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management. We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation. JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans

JobID: 210686675 JobSchedule: Full time JobShift: : Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Senior Lead Security Engineer at JPMorganChase within Cyber Technology & Controls you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. Job responsibilities * Architect, implement, and maintain security control objectives and procedures to ensure alignment with industry best practices and JPMorgan Chase (JPMC) security standards. * Partner in the design and actively participate in building security applications and technical solutions that enforce control objectives and address recurring HR security challenges. * Systematically identify gaps in vendor security offerings, and design and build in-house solutions to effectively mitigate these deficiencies. * Collaborate with HR and other stakeholders to understand business processes and security pain points, translating requirements into actionable engineering solutions. * Conduct comprehensive threat modeling for HR systems and processes; when threat models reveal security gaps, support the design and building of tailored security controls or applications. * Develop scripts, automation, and custom code to streamline security processes, enhance monitoring, and improve the efficiency and effectiveness of security controls. Required qualifications, capabilities, and skills * Formal training or certification on software engineering concepts and 5+ years applied experience. * Experience planning, designing, building and implementing enterprise level security engineering products and solutions in a public cloud environment (i.e. AWS, GCP, Azure) * Experience working with vendors to assess the sufficiency of their security practices and controls meet industry standards. * Extensive experience with threat modelling of applications or architectures using models such as STRIDE. * Advanced in one or more programming languages/scripts (i.e. C/C#, Python, PowerShell) * Advanced knowledge of secure software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) * Experience with continuous integration and continuous deployment (CI/CD) tools (Jenkins), version control tools (BitBucket, Git), managing and tracking work using management tools like Jira * Ability to tackle design and functionality problems independently with little to no oversight Preferred qualifications, capabilities, and skills * Experience within Cyber Security is preferred with good understanding of industry frameworks like MITRE ATT&CK, NIST, CIS etc. * Certified Secure Software Lifecycle Professional or similar industry certification * Excellent communication and presentation skills * Prior experience in finance industry is a huge plus * Willingness to learn and drive to excel

Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Senior Lead Security Engineer at JPMorgan Chase within the Cybersecurity and Technology Controls , you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. Job responsibilities Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability Be responsible for triaging based on risk assessments of various threats and managing resources to cover impact of disruptive events Adds to team culture of diversity, equity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on software engineering concepts and 5+ years applied experience . Experience planning, designing, building and implementing enterprise level security engineering products and solutions in a public cloud environment (i.e. AWS, GCP, Azure) Advanced in one or more programming languages/scripts (i.e. C/C#, Python, PowerShell) Advanced knowledge of secure software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) Experience with continuous integration and continuous deployment (CI/CD) tools (Jenkins), version control tools (BitBucket, Git), managing and tracking work using management tools like Jira Experience building security engineering products and solutions Advanced knowledge of the Windows Workstation OSs (Windows 10/Windows 11 and Virtual platforms) and/or Mac OSX Understanding of Active Directory concept and practical implementation of GPO management Ability to tackle design and functionality problems independently with little to no oversight Preferred qualifications, capabilities, and skills Experience within Cyber Security is preferred Excellent communication and presentation skills Prior experience in finance industry is a huge plus

Join a team where you can play a crucial role in shaping the future of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Senior Lead Security Engineer at JPMorgan Chase within the Cybersecurity Technology & Controls, you are an integral part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. Drive significant business impact through your capabilities and contributions and apply deep technical expertise and problem-solving methodologies to tackle a diverse array of cybersecurity challenges that span multiple technology domains. Job responsibilities Facilitates security requirements clarification for multiple networks to enable multi-level security to satisfy organizational needs Works with stakeholders and senior business leaders to recommend business modifications during periods of vulnerability Regularly provides technical guidance and direction to support the business and its technical teams, contractors, and vendors, leveraging cloud-native backend systems and infrastructure-as-code tools such as Terraform and AWS CloudFormation Architect and deploy scalable solutions on AWS Cloud & develops secure and high-quality production code, and reviews and debugs code written by others, utilizing modern CI/CD workflows and containerization technologies (Docker) Drives decisions that influence the product design, application functionality, and technical operations and processes, including the serverless solutions Serves as a function-wide subject matter expert in one or more areas of focus, such as scalable backend development, AI-powered agents, and data automation pipelines Actively contributes to the engineering community as an advocate of firmwide frameworks, tools, and practices of the Software Development Life Cycle, including observability and monitoring solutions (CloudWatch, Datadog, Prometheus) Influences peers and project decision-makers to consider the use and application of leading-edge technologies, such as LLMs (OpenAI, Bedrock), AI frameworks (LangChain, LlamaIndex), and vector databases (OpenSearch) Required qualifications, capabilities, and skills Formal training or certification on software engineering concepts and 5+ years applied experience, including backend software development using Python Hands-on practical experience delivering system design, application development, testing, and operational stability in AWS Cloud environments Advanced knowledge of software application development and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, mobile, etc.) Advanced in one or more programming language(s), with deep expertise in Python and experience designing RESTful APIs and microservices Advanced knowledge of software applications and technical processes with considerable in-depth knowledge in one or more technical disciplines (e.g., cloud, artificial intelligence, machine learning, etc.), including data modeling with SQL databases (PostgreSQL,Aurora) Ability to tackle design and functionality problems independently with little to no oversight, including integrating AI/LLM-based services and building intelligent automation components Practical cloud native experience, including exposure to event-driven and serverless architectures, and understanding of security best practices in AWS environments (IAM, KMS, VPC, Secrets Manager) Skilled in planning, designing, and implementing enterprise-level security solutions #CTC

Quant Analytics Sr. Associate- Model Risk Must Have Technical/Functional Skills As a Senior Quantitative Analytics Associate, you will be responsible for leading independent validations and reviews of the bank's various risk models. This role ensures that models are functioning as intended, comply with regulatory requirements, and that their risks are accurately identified, measured, and reported to senior management. Specifically, you will be performing in-depth validations and reviews of new and existing models used across the bank, including those for fraud risk, compliance risk (such as AML, OFAC), and/or other areas. Essential Job Functions * Perform hands-on quantitative model validation/review. This includes testing the model's conceptual soundness, data accuracy, methodology, and ongoing performance through techniques like back testing, benchmarking, and stress testing, etc. * Provide an effective challenge throughout the model validation/review to ensure that models are robust, and all assumptions and limitations are justified. * Present findings, weakness and/or observations identified from the validation/review to model developers/owners and provide them with executable finding remediations. * Prepare detailed validation reports and memos that document the validation approach, findings, and conclusions. * Participate in internal audits and regulatory exams by presenting validation results and methodologies and assisting in the remediation of any audit or exam findings. * Act as a subject matter expert on modeling techniques, risk management practices, and regulatory trends. This involves performing research and developing advanced analytical tools or benchmarking models to aid the validation process. Required Qualifications * Hands-on experience in statistical and AI/ML model development or validation, with a strong understanding of quantitative modeling methods (including AI/ML algorithms) used for various risk predictive models, such as fraud risk, AML risk models, etc. * Proficiency in programming languages such as Python, R, SQL or SAS. * Excellent written and verbal communication skills to clearly articulate complex technical findings to both technical and non-technical stakeholder. * Knowledge of model risk management policies, procedures, and relevant regulatory guidance (e.g., from the OCC). Salary Range- $100,000-$210,000 a year

The Manager, Information Security is responsible for implementing and executing WPCU's Information Security program and strategies under the leadership of the VP, Information Security. This role will collaborate with all lines of business through projects, risk assessments, controls, and control effectiveness reviews. The manager will oversee tools utilized by the Information Security team to provide feedback on vendors and applications. Position will be responsible for collaboration with various business units during a data incident to ensure incidents are properly documented and evidence is captured. This role will be expected to provide thought leadership to ensure the efficiency and effectiveness of the Information Security team. The major activities for this position include: 1) Information Security Operations (40%) a) Develop and oversee control effectiveness reviews to ensure all activities align in scope and frequency with information security policies and approved information security frameworks. b) Develop and oversee information security's involvement with vendor due diligence processes. c) Develop and oversee Identity Access Governance processes to ensure alignment with the principle of least privilege access. d) Develop and oversee information security related risk assessments. Develop and oversee processes to rate criticality of applications and controls to ensure risk assessments are aligned. e) Ensure all assessments are completed in a timely manner including developing appropriate cross training plans to schedule impacts. f) Develop and oversee reporting related to all assessments to ensure risk levels are appropriately assigned and management responses are captured. g) Ensure identified gaps from information security assessments are appropriately tracked. Coordinate with various business units to collect timely updates. 2) Personnel Management & Procedures (20%) a) Mentor assigned partners by administering individual development plans, making recommendations for promotions, or implementing coaching plans. This includes performing regular 1-on-1s with partners and completing annual reviews. b) Ensure departmental procedures are effective, up-to-date, and follow company standards. 3) Project Management (20%) a) Participate in project planning events to provide estimated work effort for projects including pro-active escalation of resources constraints to the VP of Information Security. b) Assist in fostering an enterprise-wide security first culture by participating in project requirement gathering session. Inform project owners of applicable controls, audit findings, or control effectiveness gaps that are appropriate for the project. c) Attend on-going project meetings to advise and ensure information security controls are addressed. 4) Incident Management (10%) a) Role will be responsible for ensuring data incidents are tracked, properly documented, and evidence has been collected. b) Provide regular status updates to the VP of Information Security on open data incidents. 5) Audit and Regulatory Exam Support (10%) a) Assist the Vice President of Information Security with internal and external audits to ensure document collections are completed in a timely manner and properly vetted. b) Serve as subject matter expert during internal and external audits related to activities completed by Information Security. c) Ensure assigned business units are operating efficiently and reliably, are in compliance with applicable laws, regulations, and rules, have appropriate operating controls to mitigate risk, and are performing at a high level. Required Skills This leader in information security must be skilled at developing and leading strategic Information Security programs across the enterprise in a complex, multi-system and multi-vendor environment. Strong, practical knowledge of Information Security concepts and technical architecture are essential. Expert knowledge of risk and information security frameworks are essential. 1) A bachelor's degree is required, preferably in Information Technology, Information Security, or a related field. A master's degree in a related discipline is preferred. 2) At least 7+ years of experience in Information Technology or Information Security is required, with at least 3+ years of experience in a leadership role. Demonstrated experience with developing mapping controls to business processes, building control effectiveness reviews, or building risk ratings to allow business units to identify priorities is preferred. 3) A Certified Information System Security Professional (CISSP), Certified Information Security manager (CISM), or similar certification is required. 4) Demonstrate experience in evaluating vendor due diligence and vendor risk assessment processes. 5) Demonstrate experience in Identity Access Management including how to perform user access and rights reviews to align with least privilege access. 6) Demonstrate experience with developing and implementing a risk assessment process that is collaborative with business units and documents risk in accordance with board approved risk appetite. 7) Demonstrate strong leadership skills including the ability to work collaboratively and manage a remote workforce. 8) Demonstrate ability to drive and manage initiatives that increase operational efficiency, enhances quality, and improves/maintains service levels.

Envestnet is seeking a Senior Security Analyst to join our Enterprise Security team. This is a hybrid role, with in-office work required at our Berwyn, PA office location. Envestnet is transforming the way financial advice is delivered through its connected technology, advanced insights, and asset management solutions - backed by industry-leading service and support. Since 1999, Envestnet has served the wealth management industry and today supports trillions in platform assets, serving over a hundred thousand financial advisors. The vast majority of the nation's leading banks, the largest wealth management and brokerage firms, and over 500 of the largest RIAs rely on Envestnet's wealth management platform and solutions to drive business growth, boost productivity, and deliver better financial outcomes for their clients. Envestnet's Strategy: Deliver the industry-leading wealth management platform, powered by advanced data and insights Leverage our scale and efficiencies to serve our clients' needs comprehensively Enable financial advisors to deliver more holistic advice - reflecting a more complete view of their clients' financial lives, and in a more connected environment For more information, please visit ****************** Job Summary: We are seeking a highly skilled and experienced Senior Security Analyst to join Envestnet's Cyber Defense Team. This role will report into the Director of Security Operations. In this pivotal role, you will be entrusted with safeguarding our organization's assets through leading incident response, conducting thorough security triage and analysis, Vulnerability assessment, Threat Hunting, Security response Automation and continuously enhancing our overall security framework. As a vital member of our team, you will contribute significantly to the development and maintenance of our Security Operations Center (SOC) processes and procedures. The ideal candidate will possess extensive experience in cybersecurity, exceptional analytical skills, and a demonstrated ability to effectively manage and resolve intricate security incidents. This position is fundamental to our mission of fortifying our security posture and ensuring the protection of our critical assets. Job Responsibilities: Lead and manage all stages of the incident response lifecycle, which includes detection, analysis, containment, eradication, recovery, and post-incident review. Prepare comprehensive incident reports and effectively communicate findings to both technical and non-technical stakeholders. Perform in-depth analysis of security events, alerts, and logs from various tools such as SIEM, EDR, IDS/IPS, and firewalls to identify and investigate potential threats. Update and implement incident response playbooks and procedures to ensure the efficient and effective handling of security incidents. Streamline and automate detection and prevention processes to enable rapid response, consistent triage, and swift root cause analysis and recovery. Contribute to the development and fine-tuning of the EDR platform, automating incident triage and response tasks using SOAR to create state-of-the-art detection capabilities. Ensure alignment of security operations and detection platforms with industry-standard frameworks such as MITRE ATT&CK and NIST CSF. Manage the relationship with the MDR vendor, tracking performance against SLAs and key performance indicators (KPIs). Conduct regular reviews of reports, incident trends, and feedback from internal teams. Conduct vulnerability assessments and gap analyses to determine security weaknesses in systems, applications, and networks. Collaborate with workload owners and cross-functional teams to coordinate remediation activities. Engage in proactive threat and vulnerability searches, leveraging threat intelligence and Envestnet's network knowledge. Collaborate with the offensive security team on Breach and Attack Simulation (BAS) platform exercises. Automate repetitive searches using various tools, monitor threat actor tactics, and manage simulated cyber-attacks based on prioritized threats. Participate in the evaluation, selection, and implementation of new security technologies and solutions. Assist in writing best practice procedures for services such as incident analysis, incident response coordination, security audits or assessments, certificate authority, log analysis and diagnostics, and host vulnerability scanning. Implement end-point security using EDR, EPM, and AV tools. Adherence to and application of Envestnet legal, compliance, risk, business continuity and administrative policy within the role and department(s) including the timely completion of training & awareness, affirmations and testing as requested. As part of the responsibilities for this role, you will understand and readily support Envestnet's established corporate business practices, policies, internal controls and procedures designed to create value or minimize risk Required Qualifications: Bachelor's degree in computer science, Information Security, or a related field (or equivalent practical experience). 8+ years of cybersecurity experience, specializing in Security Operations and Incident Response. Relevant industry certifications in Incident Response and Forensics related certificates areas, such as GIAC (GCIH, GCFA, GCFE), CISSP, or CEH is highly desirable. Excellent communication skills, both written and verbal, with the ability to convey technical information clearly. Expertise in incident handling, threat hunting, digital forensics, malware analysis, SOAR, operating systems, network security, purple teaming, and emerging security intelligence. Skilled in using tools like CrowdStrike EDR, Breach & Attack Simulation platforms, NDR, Splunk Enterprise Security, and IDP/ITDR. Comprehensive understanding of network protocols, Windows and Linux operating systems, and security architectures. Capable of working independently or within a team in high-pressure environments. Knowledgeable about the MITRE ATT&CK framework. Process-oriented with strong analytical and decision-making skills. Effective team player with excellent interpersonal abilities. Familiarity with cloud security (AWS, Azure, GCP) is advantageous. Envestnet: Be a member of an innovative and industry leading financial technology and solutions company Competitive Compensation/Total Reward Packages that include: Health Benefits (Health/Dental/Vision) Paid Time Off (PTO) & Volunteer Time Off (VTO) 401K - Company Match Annual Bonus Incentives Parental Stipend Tuition Reimbursement Student Debt Program Charitable Match Wellness Program Envestnet is an Equal Opportunity Employer. #LI-AQ1

At WSFS Bank, we empower our Associates to grow their careers, guide our customers to secure their financial futures, and actively support our Communities so they can fully thrive. Careers with WSFS Bank offer an inclusive and supportive culture, competitive salaries, advancement opportunities, and more. We are the region's locally headquartered bank and wealth management company. We are honored to consistently be named a Top Workplace by our Associates, who make a difference every day for the people, businesses, and Communities we serve. We Stand For Service is more than part of our name, it's our mission and our purpose. The Data Security Analyst is a key member of the incident response team performing incident response for security and data loss incidents. The Data Security Analyst provides oversight of the controls adopted under the Information Security Program by enforcing confidentiality, integrity and availability of all data within WSFS. The incumbent will maintain systems to protect data from unauthorized access and identifies, reports, and resolves security violations. In addition, the Data Security Analyst develops and enforces policy in accordance with FFIEC regulations. Job Responsibilities: Assist the Information Security Officer in providing a comprehensive, practical program of security coverage for the Bank. Responsible for the development and implementation of policies, procedures, and best practices that protect the company's information assets from unauthorized disclosure and alteration, while meeting legitimate needs for functionality. Identify and assess external and internal risks through technology risk assessments. Facilitate and support requests of Internal Audit during contract penetration tests, including review, remediation, and responding to Audit findings. Facilitate requests of the OCC during IT examinations. Proactively identify opportunities for improvement in the availability and security of information through process improvement and/or information technology. Administration, Maintenance and reporting of enterprise training platform. Assess and enforce technology compliance policies for all enterprise systems. Investigation of all incidents pertaining to data loss or exposure of data. Perform access control review of information and information systems. Perform other duties as assigned by management. WSFS Bank will only consider candidates who are presently authorized to work for any employer in the United States and who will not require work visa sponsorship from WSFS Bank now or in the future in order to retain their authorization to work in the United States. Minimum Qualification: Bachelor's degree in Computer Science/Engineering, Cybersecurity, or Information Systems or related technology discipline. Minimum of 2 years of directly related information security experience with focus on data security. Relevant certifications, such as Security +, CEH, CISSP are preferred. Demonstrated understanding of security industry best practices, and current technologies. Knowledge of Data Security (Structured and Unstructured). Basic networking knowledge of Windows Enterprise. Experience with Windows, Files and Directories, Data Loss, and understanding of importance of Data Security. Experience with Active Directory. Demonstrated understanding of Data Classification & Protection. Demonstrated understanding of current threat attack vectors including Malware, Data Loss, Phishing, and Social Engineering. Ability to recommend, implement and assess the effectiveness of countermeasures. Ability to interact with various levels of associates in Information Technology, Risk, and Audit. Strong interpersonal skills. Strong written and verbal communication skills. Demonstrated ability to work in a team environment. Prior banking or financial services industry experience is a plus. Salary Range: $52,433.00 - $86,137.25 Individual base pay may vary on additional factors such as the candidate's experience, job-related skills, relevant education, geographic location, and other specific business and organizational needs. In addition to base salary, WSFS Financial Corporation (WSFS) and its subsidiaries may offer eligible Associates discretionary and formula-based incentive and retention awards. WSFS provides a competitive benefits package, which includes medical, dental, and vision coverage; a 401(k) plan; life, accident, and disability insurance; flexible spending accounts (FSAs) and health savings accounts (HSAs); and wellness programs. Additional benefits may include paid parental leave, military leave, vacation and other paid time off, sick leave in accordance with applicable state laws, and paid holidays. Benefit offerings are subject to eligibility requirements, legal limitations, and may vary based on an Associate's location and employment status. For more information about Associate benefits, please visit *************************************** WSFS Bank is inclusive and supportive of individual needs. If you have a physical or other impairment that might require an accommodation, including technical assistance with the WSFS Bank Careers website or submission process, please contact us via email at ********************. WSFS is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

About this role: Wells Fargo is seeking an Information Security Engineering Manager in Technology as part of Cybersecurity. Learn more about the career areas and lines of business at wellsfargojobs.com. Wells Fargo is seeking an Information Security Engineering Manager to lead a cross-functional team of talented detection engineers and operationalize innovative capabilities within the SIEM platform. This team provides 24x7 on-call support for security incidents as well as data onboarding and normalization, data feed health and maintenance, data model health and maintenance, and ad-hoc support requests for the SIEM. This team operates under the Agile Scrum framework supporting multiple security monitoring focused teams. In this role, you will: * Manage a team of talented engineers that design, document, test, maintain and provide issue resolution recommendations for highly complex security solutions related to networking, cryptography, cloud, authentication or directory services, email, internet, applications or endpoint security * Manage security consulting on large projects for internal clients to ensure conformity with corporate information security policy, and standards * Possess subject matter expertise at a mastery level in current and emerging security solutions and best practices * Review and correlate security logs, including overseeing data onboarding and normalization best practices * Manage computer security incident response activities for highly complex events * Conduct technical investigation of security-related incidents, and conduct post-incident digital forensics to identify causes and recommend future mitigation strategies * Manage implementation of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity * Define, track and report on key performance indicators to demonstrate value add for the team * Implement and refine established best practices, processes and workflows to increase team efficiency and continuous improvement * Mentor and guide talent development of direct reports and assist in hiring talent Required Qualifications: * 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education * 2+ years of Leadership experience Desired Qualifications: * Experience leading a Scrum team and a deep knowledge of Agile practices * Experience with data onboarding and normalization in a large SIEM environment * Experience with detection engineering for advanced security use cases * Experience leading a cross-functional team of advanced security engineers * Proven ability to lead, develop, coach and mentor technical teams * Deep understanding of the MITRE ATT&CK framework * Experience with SDLC practices and CI/CD deployment * Deep understanding of cyber threats, adversary tactics, techniques and procedures as it relates to detection development * Strong written and verbal communication skills Job Expectations: * 10% Travel may be required Pay Range Reflected is the base pay range offered for this position. Pay may vary depending on factors including but not limited to achievements, skills, experience, or work location. The range listed is just one component of the compensation package offered to candidates. $119,000.00 - $224,000.00 Benefits Wells Fargo provides eligible employees with a comprehensive set of benefits, many of which are listed below. Visit Benefits - Wells Fargo Jobs for an overview of the following benefit plans and programs offered to employees. * Health benefits * 401(k) Plan * Paid time off * Disability benefits * Life insurance, critical illness insurance, and accident insurance * Parental leave * Critical caregiving leave * Discounts and savings * Commuter benefits * Tuition reimbursement * Scholarships for dependent children * Adoption reimbursement Posting End Date: 11 Dec 2025 * Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Applicants with Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo. Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment and Hiring Requirements: a. Third-Party recordings are prohibited unless authorized by Wells Fargo. b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.

At Customers Bank, we believe in working hard, working smart, working together to deliver memorable customer experiences and having fun. Our vision, mission, and values guide us along our path to achieve excellence. Passion, attitude, creativity, integrity, alignment, and execution are cornerstones of our behaviors. They define who we are as an organization and as individuals. Everyone is encouraged to have personal development plans. By doing so, our team members are on their way to achieve their highest potential and be successful in their personal and professional lives. This role is required to be ONSITE in Malvern, PA Monday through Thursday with Friday remote. Must be eligible to work in the U.S. without requiring sponsorship now or in the future. Who is Customers Bank? Founded in 2009, Customers Bank is a super-community bank with over $22 billion in assets. We believe in dedicated personal service for the businesses, professionals, individuals, and families we work with. We get you further, faster. Focused on you: We provide every customer with a single point of contact. A dedicated team member who's committed to meeting your needs today and tomorrow. On the leading edge: We're innovating with the latest tools and technology so we can react to market conditions quicker and help you get ahead. Proven reliability: We always ground our innovation in our deep experience and strong financial foundation, so we're a partner you can trust. What you'll do: Control Testing & Evaluation: Assist in definition of and execute testing procedures to assess the design and effectiveness of key internal controls across business units, technology, and operational processes. Risk & Compliance Alignment: Ensure testing activities are aligned with regulatory standards (SOX, FFIEC, FDIC, etc.) and internal policies. Issue Identification & Reporting: Document test results, identify control deficiencies, and provide clear recommendations for remediation. Collaboration: Work closely with business process owners, auditors, compliance, and risk teams to ensure timely resolution of identified issues. Process Improvement: Recommend enhancements to testing methodologies, control design, and risk management practices to strengthen the bank's control environment. Maintain awareness of industry regulatory environment and threat landscape. Documentation & Communication: Prepare executive-ready reports, dashboards, and presentations for senior management and regulators, and information technology peers. Continuous Monitoring: Participate in ongoing monitoring and follow-up activities to confirm remediation effectiveness and sustainability. What do you need? Must-Haves 3+ years of experience in internal audit, compliance testing, risk management, or internal controls. Strong knowledge of information security and IT risk control frameworks (e.g., COSO, COBIT, NIST). Understanding of financial, operational, and IT control environments. Strong analytical skills with attention to detail and accuracy. Excellent written and verbal communication skills with the ability to present complex findings clearly. Bachelor's degree in information systems, or related field. Key Skills Risk and control assessments in highly regulated environments Understanding of information technology infrastructure (networking, Active Directory, backups, etc.) Process analysis and documentation. Strong interpersonal skills to work across departments. Proficiency with Microsoft Office applications (Excel, Word, PowerPoint). Develop and maintain working relationships with audit, GRC, and IT teams to promote continuous control awareness and improvements. Nice-to-Haves Professional certifications such as CIA, CISSP, CISA, Microsoft certifications, or CRMA. Experience with GRC (Governance, Risk, and Compliance) tools. Banking or financial services industry experience Customers Bank is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also provide “reasonable accommodations”, upon request, to qualified individuals with disabilities, in accordance with the Americans with Disabilities Act and applicable state and local laws. Diversity Statement: At Customers Bank, we believe in working smart, working together, and having fun while delivering innovative solutions and memorable experiences for our customers. We are committed to the continual advancement of a culture which reflects the value we place on diversity, equity, and inclusion. We honor the diverse experiences, perspectives, and identities of our team members, and we recognize that it is their passion, creativity, and integrity that drives our success. Step into your future with us! Let's take on tomorrow.

At Customers Bank, we believe in working hard, working smart, working together to deliver memorable customer experiences and having fun. Our vision, mission, and values guide us along our path to achieve excellence. Passion, attitude, creativity, integrity, alignment, and execution are cornerstones of our behaviors. They define who we are as an organization and as individuals. Everyone is encouraged to have personal development plans. By doing so, our team members are on their way to achieve their highest potential and be successful in their personal and professional lives. This role is required to be ONSITE in Malvern, PA Monday through Thursday with Friday remote. Must be eligible to work in the U.S. without requiring sponsorship now or in the future. Who is Customers Bank? Founded in 2009, Customers Bank is a super-community bank with over $22 billion in assets. We believe in dedicated personal service for the businesses, professionals, individuals, and families we work with. We get you further, faster. Focused on you: We provide every customer with a single point of contact. A dedicated team member who's committed to meeting your needs today and tomorrow. On the leading edge: We're innovating with the latest tools and technology so we can react to market conditions quicker and help you get ahead. Proven reliability: We always ground our innovation in our deep experience and strong financial foundation, so we're a partner you can trust. What you'll do: * Control Testing & Evaluation: Assist in definition of and execute testing procedures to assess the design and effectiveness of key internal controls across business units, technology, and operational processes. * Risk & Compliance Alignment: Ensure testing activities are aligned with regulatory standards (SOX, FFIEC, FDIC, etc.) and internal policies. * Issue Identification & Reporting: Document test results, identify control deficiencies, and provide clear recommendations for remediation. * Collaboration: Work closely with business process owners, auditors, compliance, and risk teams to ensure timely resolution of identified issues. * Process Improvement: Recommend enhancements to testing methodologies, control design, and risk management practices to strengthen the bank's control environment. Maintain awareness of industry regulatory environment and threat landscape. * Documentation & Communication: Prepare executive-ready reports, dashboards, and presentations for senior management and regulators, and information technology peers. * Continuous Monitoring: Participate in ongoing monitoring and follow-up activities to confirm remediation effectiveness and sustainability. What do you need? * Must-Haves * 3+ years of experience in internal audit, compliance testing, risk management, or internal controls. * Strong knowledge of information security and IT risk control frameworks (e.g., COSO, COBIT, NIST). * Understanding of financial, operational, and IT control environments. * Strong analytical skills with attention to detail and accuracy. * Excellent written and verbal communication skills with the ability to present complex findings clearly. * Bachelor's degree in information systems, or related field. * Key Skills * Risk and control assessments in highly regulated environments * Understanding of information technology infrastructure (networking, Active Directory, backups, etc.) * Process analysis and documentation. * Strong interpersonal skills to work across departments. * Proficiency with Microsoft Office applications (Excel, Word, PowerPoint). * Develop and maintain working relationships with audit, GRC, and IT teams to promote continuous control awareness and improvements. * Nice-to-Haves * Professional certifications such as CIA, CISSP, CISA, Microsoft certifications, or CRMA. * Experience with GRC (Governance, Risk, and Compliance) tools. * Banking or financial services industry experience Customers Bank is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also provide "reasonable accommodations", upon request, to qualified individuals with disabilities, in accordance with the Americans with Disabilities Act and applicable state and local laws. Diversity Statement: At Customers Bank, we believe in working smart, working together, and having fun while delivering innovative solutions and memorable experiences for our customers. We are committed to the continual advancement of a culture which reflects the value we place on diversity, equity, and inclusion. We honor the diverse experiences, perspectives, and identities of our team members, and we recognize that it is their passion, creativity, and integrity that drives our success. Step into your future with us! Let's take on tomorrow.

At WSFS Bank, we empower our Associates to grow their careers, guide our customers to secure their financial futures, and actively support our Communities so they can fully thrive. Careers with WSFS Bank offer an inclusive and supportive culture, competitive salaries, advancement opportunities, and more. We are the region's locally headquartered bank and wealth management company. We are honored to consistently be named a Top Workplace by our Associates, who make a difference every day for the people, businesses, and Communities we serve. We Stand For Service is more than part of our name, it's our mission and our purpose. The Data Security Analyst is a key member of the incident response team performing incident response for security and data loss incidents. The Data Security Analyst provides oversight of the controls adopted under the Information Security Program by enforcing confidentiality, integrity and availability of all data within WSFS. The incumbent will maintain systems to protect data from unauthorized access and identifies, reports, and resolves security violations. In addition, the Data Security Analyst develops and enforces policy in accordance with FFIEC regulations. Job Responsibilities: * Assist the Information Security Officer in providing a comprehensive, practical program of security coverage for the Bank. * Responsible for the development and implementation of policies, procedures, and best practices that protect the company's information assets from unauthorized disclosure and alteration, while meeting legitimate needs for functionality. * Identify and assess external and internal risks through technology risk assessments. * Facilitate and support requests of Internal Audit during contract penetration tests, including review, remediation, and responding to Audit findings. * Facilitate requests of the OCC during IT examinations. * Proactively identify opportunities for improvement in the availability and security of information through process improvement and/or information technology. * Administration, Maintenance and reporting of enterprise training platform. * Assess and enforce technology compliance policies for all enterprise systems. * Investigation of all incidents pertaining to data loss or exposure of data. * Perform access control review of information and information systems. * Perform other duties as assigned by management. WSFS Bank will only consider candidates who are presently authorized to work for any employer in the United States and who will not require work visa sponsorship from WSFS Bank now or in the future in order to retain their authorization to work in the United States. Minimum Qualification: * Bachelor's degree in Computer Science/Engineering, Cybersecurity, or Information Systems or related technology discipline. * Minimum of 2 years of directly related information security experience with focus on data security. * Relevant certifications, such as Security +, CEH, CISSP are preferred. * Demonstrated understanding of security industry best practices, and current technologies. * Knowledge of Data Security (Structured and Unstructured). * Basic networking knowledge of Windows Enterprise. * Experience with Windows, Files and Directories, Data Loss, and understanding of importance of Data Security. * Experience with Active Directory. * Demonstrated understanding of Data Classification & Protection. * Demonstrated understanding of current threat attack vectors including Malware, Data Loss, Phishing, and Social Engineering. * Ability to recommend, implement and assess the effectiveness of countermeasures. * Ability to interact with various levels of associates in Information Technology, Risk, and Audit. * Strong interpersonal skills. * Strong written and verbal communication skills. * Demonstrated ability to work in a team environment. * Prior banking or financial services industry experience is a plus. Salary Range: $52,433.00 - $86,137.25 Individual base pay may vary on additional factors such as the candidate's experience, job-related skills, relevant education, geographic location, and other specific business and organizational needs. In addition to base salary, WSFS Financial Corporation (WSFS) and its subsidiaries may offer eligible Associates discretionary and formula-based incentive and retention awards. WSFS provides a competitive benefits package, which includes medical, dental, and vision coverage; a 401(k) plan; life, accident, and disability insurance; flexible spending accounts (FSAs) and health savings accounts (HSAs); and wellness programs. Additional benefits may include paid parental leave, military leave, vacation and other paid time off, sick leave in accordance with applicable state laws, and paid holidays. Benefit offerings are subject to eligibility requirements, legal limitations, and may vary based on an Associate's location and employment status. For more information about Associate benefits, please visit *************************************** WSFS Bank is inclusive and supportive of individual needs. If you have a physical or other impairment that might require an accommodation, including technical assistance with the WSFS Bank Careers website or submission process, please contact us via email at ********************. WSFS is an equal opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JP Morgan Chase within the Cybersecurity & Technology Controls, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job Responsibilities : Specific experience deploying commercial software at scale into an enterprise environment. Develop and enforce robust change management practices to ensure system integrity and security. Show strong experience defining and implementing infrastructure as Code (IaC), working with CI/CD pipelines, and associated automation tooling. Function in systems engineering, systems integrations, and systems administration roles. Demonstrate strong working knowledge of Windows and Linux systems internals. Execute on key deliverables in the security engineering space. Design and develop production deployments with the ability to think beyond routine or conventional approaches in order to deliver technology solutions for key stakeholders. Develop secure and high-quality production code and review and debug code written by others. Able to implement complex business logic in Python, Bash, PowerShell, and other scripting languages. Engage effectively with third-party vendors and communicate and collaborate with a broad range of internal teams. Minimize security vulnerabilities by following industry insights and government regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls. Work with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability. Required qualifications, capabilities, and skills Formal training or certification on Engineering and/or Cybersecurity concepts and 5+ years applied experience as a cloud engineer, deployment engineer, DevOps engineer, or equivalent role. Experience with cloud engineering, deployment engineering, DevOps engineering, or equivalent Demonstrated skills in planning, designing, and implementing enterprise level security solutions. Strong experience defining and implementing infrastructure as Code (IaC), working with CI/CD pipelines, and associated automation tooling Commanding knowledge of a programming/scripting language for automation and integration tasks. Proficiency in all aspects of the Software Development Life Cycle. Strong analytical experience with problem solving mindset and the ability to solve complex challenges. Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security. Preferred qualifications, capabilities, and skills Cloud computing related certifications with an AWS focus are strongly preferred, such as Certified Solutions Architect, DevOps Engineer, or similar. Experience effectively communicating with senior business leaders.

JobID: 210664241 JobSchedule: Full time JobShift: Day : Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies. As a Lead Security Engineer at JP Morgan Chase within the Cybersecurity & Technology Controls, you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job Responsibilities : * Specific experience deploying commercial software at scale into an enterprise environment. Develop and enforce robust change management practices to ensure system integrity and security. * Show strong experience defining and implementing infrastructure as Code (IaC), working with CI/CD pipelines, and associated automation tooling. * Function in systems engineering, systems integrations, and systems administration roles. Demonstrate strong working knowledge of Windows and Linux systems internals. * Execute on key deliverables in the security engineering space. Design and develop production deployments with the ability to think beyond routine or conventional approaches in order to deliver technology solutions for key stakeholders. * Develop secure and high-quality production code and review and debug code written by others. Able to implement complex business logic in Python, Bash, PowerShell, and other scripting languages. * Engage effectively with third-party vendors and communicate and collaborate with a broad range of internal teams. * Minimize security vulnerabilities by following industry insights and government regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls. * Work with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability. Required qualifications, capabilities, and skills * Formal training or certification on Engineering and/or Cybersecurity concepts and 5+ years applied experience as a cloud engineer, deployment engineer, DevOps engineer, or equivalent role. * Experience with cloud engineering, deployment engineering, DevOps engineering, or equivalent * Demonstrated skills in planning, designing, and implementing enterprise level security solutions. * Strong experience defining and implementing infrastructure as Code (IaC), working with CI/CD pipelines, and associated automation tooling * Commanding knowledge of a programming/scripting language for automation and integration tasks. Proficiency in all aspects of the Software Development Life Cycle. * Strong analytical experience with problem solving mindset and the ability to solve complex challenges. * Advanced understanding of agile methodologies such as CI/CD, Application Resiliency, and Security. Preferred qualifications, capabilities, and skills * Cloud computing related certifications with an AWS focus are strongly preferred, such as Certified Solutions Architect, DevOps Engineer, or similar. * Experience effectively communicating with senior business leaders. #CTC