Senior Director of Software Engineering - Trust & Security

JPMorgan Chase · Banking · New York, NY +1 · Consumer & Community Banking

Senior Director of Software Engineering to lead multiple technical areas and departments, focusing on identity, authentication, and customer access technology. The role involves driving the adoption and implementation of AI and automation for CIAM modernization, password-less adoption, and developer productivity. Key responsibilities include setting strategy for agentic AI-enabled engineering, defining agentic capabilities for CIAM use cases, and ensuring safety, guardrails, and auditability. Requires extensive experience in leading large teams, cloud-native technologies (AWS), IAM standards, and deep understanding of responsible AI risk and controls.

What you'd actually do

Leads multiple identity, authentication, and customer-access technology programs and process implementations across departments to achieve firmwide technology objectives, including CIAM modernization, password-less adoption, and measurable developer productivity uplift through AI and automation.
Directly manages multiple areas with strategic, transformational focus (e.g., identity architecture, authentication engineering, developer platform/tooling, and site reliability for CIAM services), ensuring alignment to business outcomes and secure-by-design principles.
Provides leadership and high-level direction to software engineering and platform teams while frequently overseeing employee populations across multiple platforms, divisions, and lines of business, including public cloud (AWS) and hybrid environments.
Acts as the primary interface with senior leaders, stakeholders, and executives, driving consensus across competing objectives while balancing security, customer experience, time-to-market, and regulatory/compliance needs.
Manages multiple stakeholders, complex projects, and large cross-product collaborations spanning identity proofing, authorization, risk-based adaptive authentication, and login experience across web and mobile channels.

Skills

Required

Formal training or certification on software engineering concepts and 10+ years applied experience.
5+ year of experience leading technologists to manage, anticipate and solve complex technical items within your domain of expertise and more broadly across the organization
Experience developing or leading large or cross-functional teams of technologists, including platform, application, and SRE functions delivering high-availability customer identity services.
Demonstrated prior experience influencing across highly matrixed, complex organizations and delivering value at scale (e.g., enterprise-wide authentication upgrades, CIAM migrations, passwordless rollouts).
Experience leading complex projects supporting system design, testing, and operational stability, including zero-downtime migrations, blue/green or canary deployments, and rigorous SLIs/SLOs for auth services.
Experience with hiring, developing, and recognizing talent, building succession pipelines, and mentoring engineering leaders and architects.
Extensive practical cloud-native experience, particularly on AWS (e.g., VPC, IAM, KMS, Lambda, ECS/EKS, API Gateway, CloudFront, Route 53, Secrets Manager, Certificate Manager, CloudWatch, WAF), with secure-by-default patterns and cost-aware scaling.
Deep understanding of responsible AI risk, controls, and resiliency/security expectations at scale, with demonstrated ability to advise senior leaders on safe adoption, portfolio governance, and reuse-first strategies.
Experience leading multi-organization adoption of agentic AI-enabled engineering operating models (using enterprise-authorized tools within the work environment), including defining governance (human-in-the-loop decisioning, quality gates), measurement frameworks, and secure handling of sensitive inputs/outputs across teams.
Hands-on experience architecting and operationalizing agentic systems for CIAM use cases—such as automated certificate lifecycle agents, secrets rotation, configuration drift detection/remediation, and incident response orchestration—integrated with approvals, audit trails, and guardrails.
Deep hands-on understanding of IAM standards and protocols: OAuth 2.0 (including grant types and token lifecycles), OIDC, SAML 2.0, FIDO2, and WebAuthn; ability to set firmwide standards and governance for their adoption.
Security, risk, and compliance fluency for identity: familiarity with NIST SP 800-63 Digital Identity Guidelines and other relevant standard bodies; ability to translate standards into pragmatic policies, controls, and customer experiences.

Nice to have

Experience with CIAM products

What the JD emphasized

agentic AI-enabled engineering
agentic capabilities
agentic systems
responsible AI risk
controls
resiliency/security expectations at scale
safe adoption
portfolio governance
reuse-first strategies
human-in-the-loop decisioning
quality gates
measurement frameworks
secure handling of sensitive inputs/outputs

Other signals

AI-enabled engineering
agentic AI
agentic systems
agentic capabilities

Read full job description

Your opportunity to make a real impact and shape the future of financial services is waiting for you. Let’s push the boundaries of what's possible together.

As a Senior Director of Software Engineering at JPMorganChase within Connected Commerce Technology, you lead multiple technical areas, manage the activities of multiple departments, and collaborate across technical domains. Your expertise is applied cross-functionally to drive the adoption and implementation of technical methods within various teams and aid the firm in remaining at the forefront of industry trends, best practices, and technological advances.

Job responsibilities

Leads multiple identity, authentication, and customer-access technology programs and process implementations across departments to achieve firmwide technology objectives, including CIAM modernization, password-less adoption, and measurable developer productivity uplift through AI and automation.
Directly manages multiple areas with strategic, transformational focus (e.g., identity architecture, authentication engineering, developer platform/tooling, and site reliability for CIAM services), ensuring alignment to business outcomes and secure-by-design principles.
Provides leadership and high-level direction to software engineering and platform teams while frequently overseeing employee populations across multiple platforms, divisions, and lines of business, including public cloud (AWS) and hybrid environments.
Acts as the primary interface with senior leaders, stakeholders, and executives, driving consensus across competing objectives while balancing security, customer experience, time-to-market, and regulatory/compliance needs.
Manages multiple stakeholders, complex projects, and large cross-product collaborations spanning identity proofing, authorization, risk-based adaptive authentication, and login experience across web and mobile channels.
Influences peer leaders and senior stakeholders across business, product, and technology teams to drive adoption of IAM standards (SAML, OAuth 2.0, OIDC, FIDO2/WebAuthn) and modernization of CI/CD, testing, observability, and incident practices.
Sets and scales multi-department strategy for agentic AI-enabled engineering and SDLC/TLM automation (using enterprise-authorized tools within the work environment) to drive firmwide objectives (speed, scalability, reliability, and cost-to-serve), including portfolio-level standards for AI-orchestrated delivery workflows, release governance, automated test modernization, resilience engineering, and incident response acceleration; establishes guardrails for validation, security, resiliency, traceability, and reuse.
Applies knowledge of tools within the Software Development Life Cycle toolchain, including enterprise-authorized AI-assisted development and automation capabilities, to drive cross-domain reuse and measurable capacity unlock outcomes across departments.
Sets the vision and roadmap for agentic capabilities across the CIAM platform (e.g., autonomous runbooks for cert rotations, policy-as-code validation agents, incident triage/remediation agents, and developer assistants for API/SDK integration), ensuring safety, guardrails, and auditability.

Required qualifications, capabilities, and skills

Formal training or certification on software engineering concepts and 10+ years applied experience. In addition, 5+ year of experience leading technologists to manage, anticipate and solve complex technical items within your domain of expertise and more broadly across the organization
Experience developing or leading large or cross-functional teams of technologists, including platform, application, and SRE functions delivering high-availability customer identity services.
Demonstrated prior experience influencing across highly matrixed, complex organizations and delivering value at scale (e.g., enterprise-wide authentication upgrades, CIAM migrations, passwordless rollouts).
Experience leading complex projects supporting system design, testing, and operational stability, including zero-downtime migrations, blue/green or canary deployments, and rigorous SLIs/SLOs for auth services.
Experience with hiring, developing, and recognizing talent, building succession pipelines, and mentoring engineering leaders and architects.
Extensive practical cloud-native experience, particularly on AWS (e.g., VPC, IAM, KMS, Lambda, ECS/EKS, API Gateway, CloudFront, Route 53, Secrets Manager, Certificate Manager, CloudWatch, WAF), with secure-by-default patterns and cost-aware scaling.
Deep understanding of responsible AI risk, controls, and resiliency/security expectations at scale, with demonstrated ability to advise senior leaders on safe adoption, portfolio governance, and reuse-first strategies.
Experience leading multi-organization adoption of agentic AI-enabled engineering operating models (using enterprise-authorized tools within the work environment), including defining governance (human-in-the-loop decisioning, quality gates), measurement frameworks, and secure handling of sensitive inputs/outputs across teams.
Hands-on experience architecting and operationalizing agentic systems for CIAM use cases—such as automated certificate lifecycle agents, secrets rotation, configuration drift detection/remediation, and incident response orchestration—integrated with approvals, audit trails, and guardrails.
Deep hands-on understanding of IAM standards and protocols: OAuth 2.0 (including grant types and token lifecycles), OIDC, SAML 2.0, FIDO2, and WebAuthn; ability to set firmwide standards and governance for their adoption.
Security, risk, and compliance fluency for identity: familiarity with NIST SP 800-63 Digital Identity Guidelines and other relevant standard bodies; ability to translate standards into pragmatic policies, controls, and customer experiences.

Preferred qualifications, capabilities, and skills

Experience with CIAM products and ecosystems such as Ping Identity and ForgeRock, including vendor evaluation, integration patterns, migration strategies, and customization via SDKs/gateways.
Background with customer fraud/risk signals and adaptive/authentication orchestration (e.g., step-up MFA, device intelligence, behavioral analytics) integrated into login and transaction flows.
Familiarity with API security best practices (OAuth 2.0 scopes, token introspection, JWT/JWS/JWE, MTLS/OAuth mTLS profiles), gateway patterns, and zero-trust-aligned access strategies.
Experience in observability for identity services (structured logging, distributed tracing, metrics, synthetic monitoring of auth flows) and incident response/forensics for security events.
Good to have hands-on experience and knowledge of modern UI frameworks such as React and Next.js for customer-facing identity flows, consent and profile management, and secure session handling.

Your opportunity to make a real impact and shape the future of financial services is waiting for you. Let’s push the boundaries of what's possible together.

Job responsibilities

Leads multiple identity, authentication, and customer-access technology programs and process implementations across departments to achieve firmwide technology objectives, including CIAM modernization, password-less adoption, and measurable developer productivity uplift through AI and automation.
Directly manages multiple areas with strategic, transformational focus (e.g., identity architecture, authentication engineering, developer platform/tooling, and site reliability for CIAM services), ensuring alignment to business outcomes and secure-by-design principles.
Provides leadership and high-level direction to software engineering and platform teams while frequently overseeing employee populations across multiple platforms, divisions, and lines of business, including public cloud (AWS) and hybrid environments.
Acts as the primary interface with senior leaders, stakeholders, and executives, driving consensus across competing objectives while balancing security, customer experience, time-to-market, and regulatory/compliance needs.
Manages multiple stakeholders, complex projects, and large cross-product collaborations spanning identity proofing, authorization, risk-based adaptive authentication, and login experience across web and mobile channels.
Influences peer leaders and senior stakeholders across business, product, and technology teams to drive adoption of IAM standards (SAML, OAuth 2.0, OIDC, FIDO2/WebAuthn) and modernization of CI/CD, testing, observability, and incident practices.
Sets and scales multi-department strategy for agentic AI-enabled engineering and SDLC/TLM automation (using enterprise-authorized tools within the work environment) to drive firmwide objectives (speed, scalability, reliability, and cost-to-serve), including portfolio-level standards for AI-orchestrated delivery workflows, release governance, automated test modernization, resilience engineering, and incident response acceleration; establishes guardrails for validation, security, resiliency, traceability, and reuse.
Applies knowledge of tools within the Software Development Life Cycle toolchain, including enterprise-authorized AI-assisted development and automation capabilities, to drive cross-domain reuse and measurable capacity unlock outcomes across departments.
Sets the vision and roadmap for agentic capabilities across the CIAM platform (e.g., autonomous runbooks for cert rotations, policy-as-code validation agents, incident triage/remediation agents, and developer assistants for API/SDK integration), ensuring safety, guardrails, and auditability.

Required qualifications, capabilities, and skills

Formal training or certification on software engineering concepts and 10+ years applied experience. In addition, 5+ year of experience leading technologists to manage, anticipate and solve complex technical items within your domain of expertise and more broadly across the organization
Experience developing or leading large or cross-functional teams of technologists, including platform, application, and SRE functions delivering high-availability customer identity services.
Demonstrated prior experience influencing across highly matrixed, complex organizations and delivering value at scale (e.g., enterprise-wide authentication upgrades, CIAM migrations, passwordless rollouts).
Experience leading complex projects supporting system design, testing, and operational stability, including zero-downtime migrations, blue/green or canary deployments, and rigorous SLIs/SLOs for auth services.
Experience with hiring, developing, and recognizing talent, building succession pipelines, and mentoring engineering leaders and architects.
Extensive practical cloud-native experience, particularly on AWS (e.g., VPC, IAM, KMS, Lambda, ECS/EKS, API Gateway, CloudFront, Route 53, Secrets Manager, Certificate Manager, CloudWatch, WAF), with secure-by-default patterns and cost-aware scaling.
Deep understanding of responsible AI risk, controls, and resiliency/security expectations at scale, with demonstrated ability to advise senior leaders on safe adoption, portfolio governance, and reuse-first strategies.
Experience leading multi-organization adoption of agentic AI-enabled engineering operating models (using enterprise-authorized tools within the work environment), including defining governance (human-in-the-loop decisioning, quality gates), measurement frameworks, and secure handling of sensitive inputs/outputs across teams.
Hands-on experience architecting and operationalizing agentic systems for CIAM use cases—such as automated certificate lifecycle agents, secrets rotation, configuration drift detection/remediation, and incident response orchestration—integrated with approvals, audit trails, and guardrails.
Deep hands-on understanding of IAM standards and protocols: OAuth 2.0 (including grant types and token lifecycles), OIDC, SAML 2.0, FIDO2, and WebAuthn; ability to set firmwide standards and governance for their adoption.
Security, risk, and compliance fluency for identity: familiarity with NIST SP 800-63 Digital Identity Guidelines and other relevant standard bodies; ability to translate standards into pragmatic policies, controls, and customer experiences.

Preferred qualifications, capabilities, and skills

Experience with CIAM products and ecosystems such as Ping Identity and ForgeRock, including vendor evaluation, integration patterns, migration strategies, and customization via SDKs/gateways.
Background with customer fraud/risk signals and adaptive/authentication orchestration (e.g., step-up MFA, device intelligence, behavioral analytics) integrated into login and transaction flows.
Familiarity with API security best practices (OAuth 2.0 scopes, token introspection, JWT/JWS/JWE, MTLS/OAuth mTLS profiles), gateway patterns, and zero-trust-aligned access strategies.
Experience in observability for identity services (structured logging, distributed tracing, metrics, synthetic monitoring of auth flows) and incident response/forensics for security events.
Good to have hands-on experience and knowledge of modern UI frameworks such as React and Next.js for customer-facing identity flows, consent and profile management, and secure session handling.