×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Principal Security Controls Engineer

Job in Jersey City, Hudson County, New Jersey, 07390, USA
Listing for: JPMorganChase
Full Time position
Listed on 2026-06-18
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
  • Engineering
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 150000 - 200000 USD Yearly USD 150000.00 200000.00 YEAR
Job Description & How to Apply Below

You have spent your career building security controls that scale, designing governance frameworks that actually get adopted, and translating complex risk into engineering requirements that teams can act on. This role was built for that kind of engineer. As part of CTO Global Technology Asset Management, you will lead the modernization of how the firm designs, automates, and governs its technology controls - working at a scope and scale that few organizations can offer.

Your contributions will be visible, your impact will be measurable, and the problems you solve will matter.

As a Principal Security Controls Architect at JPMorgan

Chase within CTO Global Technology Asset Management, you will take ownership of one of the most consequential engineering challenges in enterprise security – building the control architecture and asset governance model that determines how a global technology organization measures, enforces, and demonstrates security assurance. You will reimagine the technology control ecosystem, architect the control design and automation pipelines that replace manual evidence collection, and establish the governance standards that satisfy both engineering teams and regulatory examiners.

Your influence will extend well beyond your immediate team – shaping how risk is understood and managed across the entire firm. If you are looking for a role where your engineering decisions have lasting, enterprise‑wide impact, this is it.

Job responsibilities
  • Define and drive the strategy and roadmap for technology control architecture across Global Technology Asset Management, aligning to regulatory expectations and firmwide security standards
  • Establish and enhance an enterprise‑grade asset taxonomy including critical metadata, ownership, lifecycle state, and control applicability
  • Architect and design control patterns that are reusable and scalable reducing manual processes and improving auditability
  • Partner with platform and product teams to embed controls into the asset lifecycle
  • Define control coverage and control health metrics, dashboards, and operational mechanisms to measure effectiveness, exceptions, and remediation progress
  • Evaluate, select, and implement security/control process/tooling to improve asset transparency, control automation, and evidence quality
  • Continually assess new trends in technology and determine implications on the overall security control process
  • Drive security engineering thought leadership within the product line
  • Champion the firm's culture of diversity, opportunity, inclusion, and respect
Required qualifications, capabilities, and skills
  • 10 years in cybersecurity, security and technology controls, ITAM or related engineering and risk domains, including senior‑level leadership and delivery ownership
  • Demonstrated experience architecting security and technology controls at scale
  • Strong experience with asset inventory, asset lifecycle management, and taxonomy and metadata modeling, including how taxonomy drives control applicability and coverage
  • Experience building automation‑first solutions including CI/CD pipelines, infrastructure‑as‑code, and automated evidence collection and monitoring frameworks
  • Strong engineering depth and ability to partner with developers
  • Translate threat models and attack surface analysis into actionable control requirements and auditable governance standards, grounded in a strong working knowledge of current and evolving security control frameworks
  • Ability to present and influence executive audiences, articulate complex technical risk clearly, and drive decisions across stakeholders
Preferred qualifications, capabilities, and skills
  • Experience partnering with Risk, Compliance, and Audit to improve control design, evidence quality and examination readiness while reducing operational burden
  • Experience with large‑scale enablement across multiple lines of business and engineering organizations
  • Familiarity mapping controls and governance requirements to common frameworks such as NIST, ISO 27001, or CIS Controls, and translating framework requirements into engineering‑executable standards
  • Experience with cybersecurity asset management platforms such as Service Now CMDB,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search