Principal Cybersecurity Architect-Database
Company: JPMorganChase
Location: Plano
Posted on: April 2, 2026
|
|
|
Job Description:
Description Take your engineering expertise to new heights by
joining a team of exceptionally talented professionals and solidify
your place among top performers in the industry. As a Principal
Cybersecurity Architect at JPMorgan Chase within Cybersecurity
Technology and Controls, you will be the subject matter expert for
threat modeling and security architecture for database platforms.
You will collaborate with architects focused on public cloud
databases and controls optimization to ensure secure database
solutions. This senior technical leadership role requires deep
knowledge of databases, threat modeling, and security architecture.
You will influence product teams, drive the development of security
controls, and act as a key escalation point for complex database
security challenges. Job Responsibilities Lead structured threat
modeling for database platforms and data flows, identifying attack
surfaces, misuse cases, and risk scenarios Integrate threat
modeling into the software development lifecycle (SDLC) and design
review processes for database products Conduct security
architecture reviews for new database deployments, migrations, and
significant changes Develop and enhance database security controls
focused on risk reduction Evaluate and address emerging security
requirements, including Model Context Protocol (MCP) and
post-quantum cryptography (PQC) for database encryption Establish,
maintain, and govern database security standards and baselines
using STIGs, CIS Benchmarks, and industry best practices Serve as a
subject matter expert and escalation point for IT Risk and
Cybersecurity issues related to database security Monitor key risk
indicators (KRIs) to identify, assess, communicate, and manage
issues with recommended solutions Collaborate on audit and
regulatory engagements, risk assessments, and project initiatives
Translate threat modeling findings into actionable security
requirements for engineering teams Support the publication and
tracking of database security standards Required qualifications,
capabilities, and skills Formal training or certification in
security concepts and 10 years of experience in database
technologies, with at least 5 years focused on database security
architecture Expertise in at least two database platforms such as
Oracle, SQL Server, PostgreSQL, Cassandra, or cloud-native
databases Demonstrated experience with threat modeling
methodologies (e.g., STRIDE, attack trees) applied to databases and
data flows Strong understanding of database security controls,
including encryption at rest/in transit, access controls, audit
logging, data masking/tokenization, and network segmentation
Experience with STIGs and CIS Benchmarks for database hardening,
including hands-on experience publishing and tracking standards
Ability to translate threat modeling results into practical
security requirements for engineering teams Experience working in
regulated environments with a three lines of defense (3LoD) model,
such as financial services or healthcare Strong written and verbal
communication skills, with the ability to explain complex technical
concepts to diverse audiences Experience supporting audit and
regulatory activities related to database security Proactive
approach to identifying and resolving security issues Ability to
collaborate effectively with cross-functional teams Preferred
qualifications, capabilities, and skills Experience with NoSQL
database security, including Cassandra, MongoDB, or DynamoDB
Familiarity with cloud database security configurations (e.g., AWS
RDS/Aurora, Azure SQL/Cosmos DB, GCP Cloud SQL) Knowledge of
emerging cryptographic requirements, including post-quantum
cryptography (PQC) for database encryption Experience with AI/ML
data security, including securing training data, model outputs, and
vector databases Relevant certifications such as CISSP,
CISSP-ISSAP, or database vendor certifications (e.g., Oracle OCP,
AWS Database Specialty) Background in financial services consumer
businesses (e.g., Mortgages, Cards, Digital) Experience designing
database access controls for AI agents and LLM tool-use scenarios
(MCP security) CTC
Keywords: JPMorganChase, Richardson , Principal Cybersecurity Architect-Database, IT / Software / Systems , Plano, Texas
