JPMorganChase
Overview
Head of Identity and Access Management for CDAO
— Senior Director, Head of Identity and Access Management for Chief Data & Analytics Office (CDAO). Join JPMorgan Chase to shape the future of secure and resilient AI. As an IAM leader in our CDAO group, you will safeguard the firm’s most critical assets in an era of rapid technological advancement. We are seeking a visionary Senior Director to pioneer the IAM strategy for our AI and ML initiatives, building a best-in-class framework that enables innovation while mitigating AI-specific risks. In this pivotal role, you will develop and implement a forward-looking IAM program tailored to the complexities of CDAO and AI/ML data platforms. You will anticipate emerging threats, challenge the status quo, and apply expert judgment to solve real-world challenges that impact the company, customers, and communities. If you are passionate about security at the intersection of cybersecurity and artificial intelligence, we invite you to join our team. Responsibilities
Pioneer a Visionary IAM Strategy: Develop and execute a comprehensive IAM roadmap for our CDAO and AI/ML data platforms, incorporating the latest advancements in securing LLMs, machine learning models, and the AI development lifecycle. Secure the AI Ecosystem: Engineer robust access control mechanisms for large-scale datasets, model training and inference environments, and the AI/ML supply chain. Define and manage identities for human users, AI models, and autonomous agents. Mitigate Emerging AI-Specific Risks: Conduct in-depth assessments of IAM technologies and processes to identify and address vulnerabilities inherent to AI systems, such as prompt injection, data poisoning, and model theft. Drive Intelligent and Automated Governance: Leverage AI/ML to enhance IAM processes, including predictive access management, continuous behavioral authentication, and automated identity governance for AI platforms. Stay at the Forefront of Innovation: Remain informed on evolving IAM for AI, including regulatory changes, enforcement actions, and emerging solutions to keep the control environment state-of-the-art. Lead with Expertise: Serve as the firm’s subject matter expert on IAM for AI/ML, respond to regulatory inquiries, provide documentation, and demonstrate a mature and compliant program. Foster a Culture of Security: Collaborate with cybersecurity, data science, and engineering teams to embed secure IAM practices throughout the AI development lifecycle and promote risk awareness. Analyze and Learn from Incidents: Review significant security events where IAM is a contributing factor and continuously improve our defensive posture. Govern and Influence: Participate in IAM governance forums, provide strategic insights to drive risk management initiatives, and help shape security policies. Qualifications
Formal training or certification on software engineering concepts and 10+ years of applied experience. A minimum of 10 years of senior IAM, cybersecurity, or related engineering experience. Expert-level understanding of core IAM principles, including Privileged Access Management (PAM), RBAC, and least privilege. Experience with modern authentication and authorization technologies such as MFA, SSO, and Zero Trust. In-depth knowledge of cloud security principles with hands-on IAM experience in hybrid/multi-cloud environments (Azure, AWS, GCP). Proven ability to assess, design, and remediate complex IAM vulnerabilities and access control weaknesses. Hands-on experience with market-leading IAM solutions (e.g., SailPoint, Okta, CyberArk, Microsoft Entra ID, Ping Identity). Extensive experience securing and managing Microsoft Active Directory (AD) and Azure AD (Entra ID). Preferred Qualifications
Expertise in advanced Active Directory security concepts, including GPO management, Kerberos, NTLM, and LDAP. Experience implementing least privilege, just-in-time access, and admin tiering in large enterprises. Strong understanding of security challenges and opportunities from LLMs and generative AI. Familiarity with the machine learning lifecycle and related IAM needs. Experience securing data pipelines and implementing data-centric security controls. Knowledge of AD-related threats and familiarity with Defender for Identity and Azure AD Identity Protection. Experience with ADFS, conditional access policies, and identity federation in complex hybrid environments. About Us
JPMorganChase is a leading financial services institution offering innovative financial solutions to consumers, small businesses, and institutions. We value diversity and inclusion and are an equal opportunity employer. We provide a comprehensive benefits package and total rewards details during the hiring process.
#J-18808-Ljbffr
Head of Identity and Access Management for CDAO
— Senior Director, Head of Identity and Access Management for Chief Data & Analytics Office (CDAO). Join JPMorgan Chase to shape the future of secure and resilient AI. As an IAM leader in our CDAO group, you will safeguard the firm’s most critical assets in an era of rapid technological advancement. We are seeking a visionary Senior Director to pioneer the IAM strategy for our AI and ML initiatives, building a best-in-class framework that enables innovation while mitigating AI-specific risks. In this pivotal role, you will develop and implement a forward-looking IAM program tailored to the complexities of CDAO and AI/ML data platforms. You will anticipate emerging threats, challenge the status quo, and apply expert judgment to solve real-world challenges that impact the company, customers, and communities. If you are passionate about security at the intersection of cybersecurity and artificial intelligence, we invite you to join our team. Responsibilities
Pioneer a Visionary IAM Strategy: Develop and execute a comprehensive IAM roadmap for our CDAO and AI/ML data platforms, incorporating the latest advancements in securing LLMs, machine learning models, and the AI development lifecycle. Secure the AI Ecosystem: Engineer robust access control mechanisms for large-scale datasets, model training and inference environments, and the AI/ML supply chain. Define and manage identities for human users, AI models, and autonomous agents. Mitigate Emerging AI-Specific Risks: Conduct in-depth assessments of IAM technologies and processes to identify and address vulnerabilities inherent to AI systems, such as prompt injection, data poisoning, and model theft. Drive Intelligent and Automated Governance: Leverage AI/ML to enhance IAM processes, including predictive access management, continuous behavioral authentication, and automated identity governance for AI platforms. Stay at the Forefront of Innovation: Remain informed on evolving IAM for AI, including regulatory changes, enforcement actions, and emerging solutions to keep the control environment state-of-the-art. Lead with Expertise: Serve as the firm’s subject matter expert on IAM for AI/ML, respond to regulatory inquiries, provide documentation, and demonstrate a mature and compliant program. Foster a Culture of Security: Collaborate with cybersecurity, data science, and engineering teams to embed secure IAM practices throughout the AI development lifecycle and promote risk awareness. Analyze and Learn from Incidents: Review significant security events where IAM is a contributing factor and continuously improve our defensive posture. Govern and Influence: Participate in IAM governance forums, provide strategic insights to drive risk management initiatives, and help shape security policies. Qualifications
Formal training or certification on software engineering concepts and 10+ years of applied experience. A minimum of 10 years of senior IAM, cybersecurity, or related engineering experience. Expert-level understanding of core IAM principles, including Privileged Access Management (PAM), RBAC, and least privilege. Experience with modern authentication and authorization technologies such as MFA, SSO, and Zero Trust. In-depth knowledge of cloud security principles with hands-on IAM experience in hybrid/multi-cloud environments (Azure, AWS, GCP). Proven ability to assess, design, and remediate complex IAM vulnerabilities and access control weaknesses. Hands-on experience with market-leading IAM solutions (e.g., SailPoint, Okta, CyberArk, Microsoft Entra ID, Ping Identity). Extensive experience securing and managing Microsoft Active Directory (AD) and Azure AD (Entra ID). Preferred Qualifications
Expertise in advanced Active Directory security concepts, including GPO management, Kerberos, NTLM, and LDAP. Experience implementing least privilege, just-in-time access, and admin tiering in large enterprises. Strong understanding of security challenges and opportunities from LLMs and generative AI. Familiarity with the machine learning lifecycle and related IAM needs. Experience securing data pipelines and implementing data-centric security controls. Knowledge of AD-related threats and familiarity with Defender for Identity and Azure AD Identity Protection. Experience with ADFS, conditional access policies, and identity federation in complex hybrid environments. About Us
JPMorganChase is a leading financial services institution offering innovative financial solutions to consumers, small businesses, and institutions. We value diversity and inclusion and are an equal opportunity employer. We provide a comprehensive benefits package and total rewards details during the hiring process.
#J-18808-Ljbffr