DTCC

Are you ready to make an impact at DTCC? 

Do you want to work on innovative projects, collaborate with a dynamic and encouraging team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to crafting a workplace that looks like the world that we serve. 

Pay and Benefits:

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

The Impact you will have in this role:

Technology Risk Management (TRM) is responsible for setting strategic direction in the areas of IT Risk and Information Security. Maintains corporate security policies and control standards, acts as a second line of defense via a robust collection of risk and control assessments, reports to leadership and the Board on the status of the IT Risk and Information Security Programs, acts as an operational arm for supervising threat intelligence, understanding when threats are being targeted against the firm, and responding to potential incidents, and serves as the main interface for Regulatory and Client reviews that focus on IT Risk and Information Security. Threat Management ensures security monitoring controls provide proper coverage, data quality, and effectiveness to improve DTCC's ability to properly identify current cyber threats, monitor, and detect suspicious activities or instances of data loss.

Your Primary Responsibilities:

• Collaborate with the Cyber Defense and Threat Intelligence team to develop indicators of compromise (IOC’s) for specific cyber threat actors or groups and to understand their tactics, techniques, and procedures (TTP’s).
• Perform analysis of historical security alerts and incidents for further improvement or modification of use cases to ensure alert precision and low false positive rate.
• Provide support for the Cyber Monitoring Incident Response Team for forensic analysis of network packet captures, Domain Name System (DNS), proxy, NetFlow, malware, host-based security, and application logs, as needed during active investigations.
• Support the preparation of reports that goes out to customers and senior management.
• Participate in remediation and alignment meetings with IT teams.
• Conduct testing on the effectiveness of host and network-based security monitoring controls.
• Researches and understands a wide variety of information systems and new technologies.
• Perform quality assurance on the data consumed by security monitoring controls.
• Aligns risk and control processes into day to day responsibilities to supervise and mitigate risk; advances appropriately

Qualifications:

• Minimum of 6 years of related experience
• Degree in Computer or Software Engineering, Computer Science, Information Management, Information Science or equivalent hands-on work experience. 
• Solid understanding of the Cyber Kill Chain, MITRE ATT&CK Framework and campaign strategies.
• Demonstrated ability to communicate effectively with business and technical audiences across all levels of an organization. 
• Background in intrusion detection, security investigations, and incident response. 
• Strong knowledge and understanding of networking including IP, TCP/UDP, and common application layer protocols (E.g. HTTP, HTTPS, SSL, FTP). 
• Security knowledge across multiple security domains and technologies (e.g., operating systems, databases, networking, applications, identity and access management). 
• Working knowledge of Snort signatures, Yara, Regex, Sigma, and programming/scripting knowledge desired. 
• Solid understanding of common security technologies (e.g., firewalls, IDS/IPS, WAF, threat analytic platforms, SIEM, Database monitoring platforms, host based and network based forensic tools, email gateways, web proxies/filtering end point anti-virus, etc.). 
• User-level understanding of common IT technologies (e.g., service management systems, CMDB, IP management systems, Active Directory). 
• Experience working with threat intelligence reports, IOAs, IOCs, TTPs. 
• Strong knowledge of and experience working in Windows and Linux environments. 
• Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as: Logs and events processing, Incident Management, and Detection and/or Response tool development.
• Provide domain expertise during critical incident investigations and threat hunting efforts. 
• A solid understanding of the current threat landscape including knowledge of different threat actor profiles and threats against the financial services industry. 
• Solid understanding of various SIEM concepts such as correlation, aggregation, normalization, and parsing. 

Talents Needed for Success:

• Fosters a culture where integrity and transparency are expected.
• Stays ahead of changes in their own specialist area and seeks out learning opportunities to ensure knowledge is up-to-date.
• Invests effort to individually coach others.
• Builds collaborative teams across the organization.
• Communicates openly keeping everyone across the organization informed.

The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

DTCC safeguards the financial markets and helps them run efficiently, in times of prosperity and crisis. We are uniquely positioned at the center of global trading activity, processing over 100 million financial transactions every day, pioneering industry-wide, post-trade solutions and maintaining multiple data and operating centers worldwide. From where we stand, we can anticipate the industry’s needs and we’re working to continually improve the world’s most resilient, secure and efficient market infrastructure. Our employees are driven to deliver innovative technologies that improve efficiency, lower cost and bring stability and certainty to the post-trade lifecycle.

DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you’ll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It’s the chance to make a difference at a company that’s truly one of a kind.

Learn more about Clearance and Settlement by clicking here.

Our Risk Management teams work to protect the safety and soundness of our systems and are responsible for identifying, managing, measuring and mitigating a spectrum of key risk types including credit, market, liquidity, systemic, operational and technology in all existing and new products, activities, processes and systems.

The Technology Risk Management department is responsible for setting strategic direction in the areas of IT Risk and Information Security. They are accountable for maintaining DTCC's corporate security policies and control standards and acting as an operational arm for monitoring threat intelligence.