Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Lead Security Engineer - Cryptographic Libraries & TLS

J.P. Morgan

hackajob is collaborating with J.P. Morgan to connect them with exceptional professionals for this role.

JOB DESCRIPTION

Take on a crucial role where you'll be a key part of a high-performing team building and maintaining foundational cryptographic infrastructure. Make a real impact as you help shape the way secure communications are configured, tested, and deployed across the enterprise at one of the world's largest and most influential companies.

As a Lead Security Engineer at JPMorgan Chase within the CTC Emerging Technologies Security group, you will own and evolve a TLS abstraction layer that provides a unified interface for TLS stack configuration across Java, Python, and Node.js runtimes. You will serve as both a hands-on developer and a subject-matter expert at the intersection of network security protocols and polyglot software engineering. You will be responsible for ensuring that the library remains secure, performant, well-tested, and aligned with evolving TLS standards and enterprise security policy.

Job Responsibilities

  • Design, implement, debug, and extend the TLS abstraction layer, ensuring consistent TLS configuration and behavior across Java (JSSE/Bouncy Castle), Python (ssl/OpenSSL bindings), and Node.js (built-in TLS/OpenSSL) runtimes.
  • Serve as the team's subject-matter expert on TLS 1.2 and 1.3 handshake mechanics, cipher suite negotiation, certificate validation, key exchange algorithms, and session resumption - and translate that expertise into library design decisions.
  • Architect clean, well-documented APIs that decouple application-level TLS intent (e.g., minimum protocol version, allowed cipher suites, certificate pinning, mutual TLS) from the platform-specific implementation details of each runtime's TLS stack.
  • Build and maintain comprehensive test suites - including unit, integration, interoperability, and protocol-conformance tests - that verify correct TLS behavior across all supported runtimes and configurations. Develop test harnesses that exercise edge cases such as certificate chain validation failures, protocol downgrade scenarios, and cipher suite mismatches.
  • Design, maintain, and improve CI/CD pipelines for the library, including automated builds, multi-runtime test matrices, static analysis, dependency scanning, and artifact publishing across all supported language ecosystems (Maven/Gradle, PyPI, npm).
  • Triage and resolve complex TLS-related issues reported by consuming applications, including handshake failures, performance regressions, certificate trust-store misconfigurations, and runtime-specific behavioral differences.
  • Monitor developments in TLS standards (IETF RFCs), cryptographic library updates (OpenSSL, Bouncy Castle), and runtime release notes to proactively assess impact on the library and plan necessary updates.
  • Produce clear integration guides, migration documentation, and configuration references so that consuming teams can adopt and configure the library with minimal friction.
  • Work with application teams, platform engineering, and enterprise security policy owners to gather requirements, communicate breaking changes, and align library capabilities with organizational security mandates.
  • Contribute to a team culture of diversity, equity, inclusion, and mutual respect.

Required Qualifications, Capabilities, and Skills

  • Bachelor's degree in Computer Science, Computer Engineering, or a related field; 7+ years of software development experience, with at least 3 years focused on security-sensitive or infrastructure-level library development.
  • Strong hands-on development skills in at least two of Java, Python, and Node.js/TypeScript, with a willingness and ability to work across all three. Experience with each language's native TLS/cryptographic APIs (e.g., JSSE, Python ssl module, Node.js tls module).
  • Deep understanding of TLS 1.2 and 1.3 - including handshake flows, key exchange mechanisms (ECDHE, DHE), certificate authentication (X.509, chain-of-trust, Certificate Verify), cipher suite semantics, ALPN/SNI, and session management. Familiarity with underlying cryptographic primitives (AES-GCM, ChaCha20-Poly1305, RSA, ECDSA, EdDSA, HKDF).
  • Demonstrated experience designing, versioning, and maintaining libraries or SDKs consumed by other engineering teams, including thoughtful API surface design, semantic versioning, and backward-compatibility management.
  • Proven experience building multi-dimensional test strategies for security-critical software, including protocol-conformance testing, cross-platform interoperability testing, and negative/adversarial test cases.
  • Hands-on experience designing and maintaining CI/CD pipelines (e.g., Jenkins, GitHub Actions, or equivalent), including multi-language build matrices, automated security scanning (SAST, dependency vulnerability checks), and artifact publication.
  • Strong diagnostic skills for network-level issues - comfortable using tools like Wireshark, OpenSSL CLI (s_client, s_server), keytool, and language-specific debuggers to trace TLS handshake failures and certificate issues.
  • Solid understanding of agile development methodologies, including iterative delivery, code review discipline, and application resiliency principles.

Preferred Qualifications, Capabilities, and Skills

  • Experience with cryptographic library internals such as OpenSSL, Bouncy Castle, or LibreSSL.
  • Familiarity with FIPS 140-2/140-3 compliance requirements and their impact on TLS configuration and cryptographic provider selection.
  • Experience with mutual TLS (mTLS) at scale, including certificate lifecycle management and automated rotation.
  • Knowledge of PKI systems, HSMs, or key management infrastructure.
  • Experience with container-based build and test environments (Docker, Kubernetes) and cloud platforms (AWS).
  • Familiarity with performance profiling of TLS handshakes and bulk-encryption throughput across runtimes.
  • Experience using AI-assisted development tools (e.g., GitHub Copilot, Claude Code ) to accelerate library development and test generation.
  • Relevant certifications such as CISSP, CCSP, or vendor-specific security credentials are a plus but not required.

#CTC

ABOUT US

JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process. 

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans

ABOUT THE TEAM

Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we're setting our businesses, clients, customers and employees up for success.

Vacancy posted 9 days ago
Similar jobs that could be interesting for youBased on the Lead Security Engineer - Cryptographic Libraries & TLS in Columbus, OH vacancy
  •  ...world-class cybersecurity team where your expertise in cryptographic infrastructure and secure hardware directly protects the financial systems...  ...by millions of people around the globe. As a Sr Lead Security Engineer at JPMorganChase within the Cybersecurity &... 
    Suggested

    J.P. Morgan

    Columbus, OH
    9 days ago
  •  ...part of a high-performing team delivering secure, scalable cloud network perimeter...  ...and most influential companies. As a Lead Security Engineer at JPMorganChase within the Cloud Edge...  ...equivalent) Hands-on experience with TLS/SSL certificate management, PKI, mTLS,... 
    Suggested

    J.P. Morgan

    Columbus, OH
    9 days ago
  •  ...where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the...  ...the world's largest and most influential companies. As a Lead Security Engineer at JPMorganChase within Cybersecurity & Technology Controls... 
    Suggested
    Work at office

    J.P. Morgan

    Columbus, OH
    9 days ago
  •  ...of a world-renowned company and make a direct and meaningful impact in a space designed for top performers.  As a Senior Lead Security Engineer at JPMorgan Chase within Cybersecurity and Technology Controls, you are an integral part of an agile team that delivers secure... 
    Suggested

    J.P. Morgan

    Columbus, OH
    9 days ago
  •  ...Senior Lead Security Engineer The ideal candidate for this role must have a minimum of 5 years of experience with Cisco Firepower Firewall, strong understanding of network security protocols, and experience with network engineering and infrastructure projects. Additionally... 
    Suggested

    InterSources

    Columbus, OH
    5 days ago
  •  ...Job Summary As a Senior Lead AI Security Engineer in our Cybersecurity team, you will design and deliver secure artificial intelligence...  ...and analysts; publish playbooks, templates, and safe prompt libraries; lead brown-bags and office hours for adoption. Drive a... 
    Work at office

    JPMorgan Chase Bank, N.A.

    Columbus, OH
    4 hours ago
  •  ...Job Summary As a Senior Lead AI Security Engineer in our Cybersecurity team, you will design and deliver secure artificial intelligence solutions...  ...analysts; publish playbooks, templates, and safe prompt libraries; lead brown‑bags and office hours for adoption. Drive a... 
    Work at office

    TwinThread LLC

    Columbus, OH
    2 days ago
  • A leading financial institution is looking for a Lead Security Engineer to deliver secure software solutions with a focus on collaboration products security. Responsibilities include executing security solutions, minimizing vulnerabilities, and conducting threat assessments... 

    JPMorgan Chase & Co.

    Columbus, OH
    1 day ago
  •  ...Lead Security Engineer Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies... 

    Chase

    Columbus, OH
    1 day ago
  • Agecareers is seeking a Team Lead Firewall Administrator located in Columbus, OH. You will lead a team to ensure the security and performance of firewall and proxy services in compliance with DoD standards. The ideal candidate should have five years of relevant experience... 

    Agecareers

    Columbus, OH
    2 days ago
  • TwinThread is seeking a Senior Lead AI Security Engineer to design and deliver secure AI solutions for cybersecurity. This role involves leading projects, mentoring engineers, and establishing engineering standards. Candidates must have a minimum of 7 years in software/... 

    TwinThread LLC

    Columbus, OH
    3 days ago
  • A leading financial services company seeks a Senior Lead AI Security Engineer for its Cybersecurity team. The role involves designing secure AI solutions for critical cyber use cases and collaborating with various teams to drive innovation. Candidates need at least 7 years... 

    JPMorgan Chase & Co.

    Columbus, OH
    4 days ago
  •  ...of a world-renowned company and make a direct and meaningful impact in a space designed for top performers. As a Senior Lead Security Engineer at JPMorganChase within the Cybersecurity and Technology Controls line of business, you are an integral part of an agile team... 

    J.P. Morgan

    Delaware, OH
    7 days ago
  • $122.9k - $150k

     ...The PKI Lead Engineer serves as the senior technical authority for the...  ...Infrastructure services that enable secure authentication, encryption,...  ...of digital certificates and cryptographic keys, ensuring resilient,...  ...concepts, including TLS, digital signatures, certificate... 
    Contract work
    Work at office

    ASM Research, An Accenture Federal Services Company

    Columbus, OH
    1 day ago
  •  ...top-notch technology products. As a Lead Software Engineer at JPMorganChase within the CONSUMER &...  ...break down technical problems ~ Creates secure and high-quality production code and...  ...internet-facing APIs (OAuth 2.0/OIDC, JWT, TLS/mTLS, rate limiting). Preferred... 

    J.P. Morgan

    Columbus, OH
    7 days ago
  •  ...notch technology products. As a Senior Lead Software Engineer at JPMorganChase within the CONSUMER &...  ...contractors and vendors ⢠Develop secure, production-grade code; review, debug,...  ...internet-facing APIs (OAuth 2.0/OIDC, JWT, TLS/mTLS, rate limiting) ⢠Familiarity... 
    For contractors

    J.P. Morgan

    Columbus, OH
    9 days ago
  •  ...architectures that support the bank's information security operations functions. This role performs...  ...as a technical resource for security engineering initiatives, applying advanced knowledge...  ...remediation strategies. Leads tuning, configuration optimization, and... 
    Remote work

    WesBanco Bank Inc.

    Columbus, OH
    3 days ago
  •  ...the limits of what's possible. As a Lead Infrastructure Engineer at JPMorganChase within Corporate...  ...state-of-the-art technology products in a secure, stable, and scalable way. You will help...  ...enhancements for MQ/z/OS flows (TLS configurations, cipher/key usage, dependencies... 

    J.P. Morgan

    Columbus, OH
    9 days ago
  •  ...and most influential companies. As a Lead Infrastructure Engineer at JPMorganChase within the Corporate...  ..., with a focus on connectivity, security, performance, and operational efficiency...  ...CompTIA). Advanced understanding of TLS protocols, especially TLS 1.3, and their... 

    J.P. Morgan

    Columbus, OH
    7 days ago
  • An innovative lending technology firm is seeking a Senior Security Engineer to enhance security practices and build software solutions. The role requires ownership of security initiatives, mentoring, and improving system resilience. Candidates must have strong skills in... 
    Remote job

    Upstart

    Columbus, OH
    18 days ago
  •  ...At OCLC, we build technology with a purpose: to connect libraries and make knowledge accessible worldwide, because we believe...  ...of knowledge discovery for end users. This role is for a Lead software engineer who enjoys owning meaningful parts of a system end-to-end,... 
    Work experience placement
    Work at office
    Local area
    Worldwide
    3 days per week

    OCLC Online Computer Library Center, Inc

    Dublin, OH
    4 hours ago
  • $40k

     ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on...  ...that matter at a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity operations by monitoring... 
    Contract work
    Remote work

    MAXIMUS

    Columbus, OH
    2 days ago
  • $164.8k - $228.4k

     ...financially with clarity and confidence. As the leading AI lending marketplace, we partner with...  ...you. The Team Upstart’s Information Security team is dedicated to advancing security...  ...security design. As a Senior Security Engineer at Upstart, you will be responsible for... 
    Temporary work
    Summer work
    Remote work
    Work from home

    UpStart

    Columbus, OH
    22 hours ago
  • $98.9k

     ...What you can expect The Security Engineer is responsible for security design and reviews across our products and services. The ideal candidate brings broad technical expertise and hands-on experience in end-to-end product security. In this role, you'll collaborate with... 
    Work at office
    Remote work

    Zoom Corporation

    Columbus, OH
    5 days ago
  •  ...Job Title: Network Security Engineer Job Location: Columbus, OH (Hybrid) Scope of position The Network Security Engineer (DC and Cloud) is responsible for ensuring the security, stability, and integrity of our organization's network infrastructure, with a dual... 
    Work experience placement
    Local area

    My3Tech Inc

    Columbus, OH
    1 day ago
  •  ...the limits of what's possible. As a Lead Software Engineer at JPMorgan Chase within the Consumer...  ...to solve complex problems. Create secure, high-quality production code and maintain...  ...and integrate third-party tools, libraries, and frameworks to accelerate development... 

    J.P. Morgan

    Columbus, OH
    9 days ago
  •  ...cutting-edge solutions and transformative initiatives. As a Lead Software Engineer at JPMorgan Chase within the Consumer & Community Banking -...  ...delivering trusted, market-leading technology products in a secure, stable, and scalable manner. As a core technical... 

    J.P. Morgan

    Columbus, OH
    9 days ago
  •  ...across teams and functions. Develops secure and high-quality production code, and reviews and debugs code written by others; engineers systems with clear failure modes, retry strategies...  ..., and robust operational behavior. Leads cross-functional teams on technological... 

    J.P. Morgan

    Columbus, OH
    8 days ago
  •  ..., and deliver top-notch technology products. As a Senior Lead Software Engineer Mainframe Cobol at JPMorgan Chase within the Consumer & Community...  ...and deliver trusted market-leading technology products in a secure, stable, and scalable way. Drive significant business impact... 

    J.P. Morgan

    Columbus, OH
    9 days ago
  • ## Senior Security EngineerApplyremote type: Hybridlocations: OH - Columbus: OH - Clevelandtime type: Full timeposted on: Posted 2 Days Agojob requisition id: REQ2416As BWE’s Senior Security Engineer, your role is central to protecting our environment and advancing our... 

    Bwecap

    Columbus, OH
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Lead Security Engineer - Cryptographic Libraries & TLS. Be the first to apply!