Security Engineer II - Cloud, AI/ML

As a Security Engineer II at JPMorganChase within the Cybersecurity & Tech Controls team, youare part of an agile team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As an emerging member of the security engineering team, you execute basic software solutions through the design, development, and troubleshooting of multiple components within a technical area, while gaining skills and experience to grow within your role.

Job responsibilities

• Executes standard security solutions in accordance with existing playbooks to satisfy security requirements for internal clients (e.g., product, platform, and application owners)
• Writes secure and high-quality code using the syntax of at least one programming language with limited guidance
• Applies specialized tools (e.g.,vulnerability scanner) to analyzeand correlate incident data toidentify, interpret, andsummarize probability andimpact of threats whendetermining specificvulnerabilities
• Supports delivery of continuity-related awareness, training, educational activities, andexercises
• Adds to team culture of diversity, opportunity, inclusion, and respect

Required qualifications, capabilities, and skills

• Formal training or certification on security engineering concepts and 2+ years applied experience
• Strong, hands-on expertise with Google Cloud and Vertex AI in production (secure endpoints, private networking, CMEK/KMS, model registry, pipelines) AWS expertise and Azure awareness.
• Python-based security automation and tooling for inference safety tests, detections, logging, analysis, and policy enforcement.
• Define and implement AI/ML security controls across training and inference apply threat matrices (prompt injection, jailbreaks, data exfiltration, supply chain) with pre/post-deploy testing integrated into CI/CD.
• Infrastructure as Code with Terraform and policy-as-code implement CI/CD security gates and scanners (SAST/DAST/container/IaC).
• Experience in Container and orchestration hardening Docker and Kubernetes (GKE/EKS/ECS).
• Production operations: strong debugging and troubleshooting, incident response and RCA database fundamentals with Postgres or equivalent (privileges, encryption, auditing).

• Hands-on security inference testing and red teaming for LLMs/ML with automated evaluation pipelines integrated into CI/CD.
• RAG security patterns and protections for embedding/vector stores, including secret and data handling for retrieval systems.
• Experience with API gateways and service mesh, Multi-cloud familiarity (Azure and AWS) with GCP expertise knowledge of analogous services and security controls across clouds.
• Familiarity with AI coding assistants