Take on a crucial role where you'll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the world's largest and most influential companies.
As a Lead Security Engineer at JPMorgan Chase within the CTC Emerging Technologies Security group, you will design, build, and operate an enterprise-grade Digital Asset Custody and Wallet Orchestration Platform. In this role, you will be at the forefront of institutional blockchain infrastructure, responsible for building secure, scalable, and compliant wallet services that power our digital asset operations across multiple blockchain networks. You will work at the intersection of distributed systems engineering, cryptographic security, and financial services technology — building the foundational infrastructure that enables secure key management, programmable transaction policies, and seamless multi-chain wallet capabilities. This is a hands-on engineering role requiring knowledge of blockchain protocols, cloud-native development, and enterprise security practices.
Job Responsibilities
- Design, architect, and develop a production-grade digital asset custody & wallet orchestration platform by integrating with wallet infra platforms leveraging their APIs and SDKs for wallet provisioning, key management, and transaction orchestration
- Implement secure key management workflows using Multi-Party Computation (MPC) and distributed key generation, ensuring no single point of failure
- Build and configure programmable transaction policy engines, including multi-approval workflows, spending thresholds, velocity limits and role-based access controls
- Develop multi-chain wallet capabilities supporting blockchain networks such as Ethereum, Bitcoin, Solana, and Polygon through unified API abstractions
- Manage the full blockchain transaction lifecycle, including transaction construction, fee estimation, payload signing, broadcast, confirmation tracking, and idempotent retry logic for failed or stuck transactions
- Design event-driven and webhook-based architectures to process real-time blockchain notifications such as transaction confirmations, smart contract events
- Build secure RESTful APIs and microservices that expose wallet functionality to internal consumers, applying OAuth 2.0, JWT-based authentication, API gateway patterns
- Develop and maintain integrations with compliance and risk systems, including transaction monitoring and comprehensive audit trail generation
- Implement robust observability across the wallet service stack, including distributed tracing, structured logging, alerting, and dashboarding using tools such as Datadog, Dynatrace, and Splunk
- Architect the wallet service for high availability, disaster recovery, and horizontal scalability using container orchestration on AWS (EKS/ECS), infrastructure-as-code (Terraform), and cloud-native resilience patterns
- Collaborate with product managers, security teams, and business stakeholders to translate regulatory and business requirements into technical designs and delivery milestones
- Add to team culture of diversity, opportunity, inclusion, and respect
Required Qualifications, Capabilities, and Skills
- Bachelor's degree in Computer Science, Software Engineering, or a related field, with 7+ years of software development experience, including at least 2 years working with blockchain technologies or digital asset platforms
- Strong proficiency in Java/J2EE and/or Python, with hands-on experience building production microservices using frameworks such as Spring Boot, Flask, or FastAPI
- Solid understanding of blockchain fundamentals, including transaction models, consensus mechanisms, smart contract interaction (EVM-based and non-EVM), gas and fee management, and block finality across major networks
- Working knowledge of cryptographic primitives and protocols relevant to digital asset custody, including Multi-Party Computation (MPC), threshold signatures (TSS), distributed key generation (DKG), elliptic curve cryptography (ECDSA, EdDSA), and HD wallet derivation paths (BIP-32/BIP-44)
- Experience designing and implementing policy engines or rule-based authorization frameworks for financial transaction workflows, including multi-signature schemes, approval chains, and configurable spending controls
- Proficiency with cloud infrastructure on AWS, including EC2, EKS, Lambda, S3, RDS, IAM, SQS, SNS, API Gateway, and KMS, with experience using Terraform or CloudFormation for infrastructure-as-code
- Strong experience with containerization and orchestration using Docker and Kubernetes, including deployment pipelines, and auto-scaling configurations
- Experience designing and consuming RESTful APIs, with deep understanding of OAuth 2.0, JWT, TLS/mTLS, certificate management, and API security best practices
- Familiarity with event-driven architectures, webhook processing, and asynchronous messaging patterns for handling real-time blockchain state changes and notifications
- Experience with relational (Oracle, PostgreSQL) and NoSQL (DynamoDB, MongoDB, Redis) databases, including schema design, query optimization, and data consistency patterns for financial systems
- Proficiency with observability and monitoring tools such as Datadog, Dynatrace, Splunk, Grafana, or Prometheus for distributed tracing, log aggregation, and performance monitoring
- Solid understanding of agile development methodologies, CI/CD pipelines (Jenkins, GitHub Actions, Spinnaker), and DevOps practices in a large enterprise environment
Preferred Qualifications
- Experience building or operating digital asset custody solutions in a regulated financial institution
- Experience using AI-assisted development tools (e.g., GitHub Copilot, Claude Code ) to accelerate development and test generation
#CTC