Job Description

Job Category: Information Technology
:
Are you ready to make an impact at DTCC?
Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.
Pay and Benefits:

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

The Impact you will have in this role:
Threat Management (Associate Director) Directs the deployment of cyber security assessment processes, reporting processes, management processes, demonstrating adoption and compliance within its processes and procedures, to regulatory compliance frameworks
Your Primary Responsibilities:

• Develop and manage technical roadmap to align various threat detection capabilities (EDR, SIEM, IPS, etc.) within the Threat Management Center's threat detection portfolio.
• Collaborate with business and IT teams to prioritize and drive implementation of threat detection capabilities for the organization.
• Lead a team of threat detection professionals, including hiring, training, mentoring, evaluating performance and drive continuous improvement in threat detection efficacy.
• Establish performance metrics and key performance indicators (KPIs) to measure the effectiveness of the Threat Detection Program. Proactively identify areas for improvement and implement strategies to enhance the performance of security controls.
• Drive continuous improvement of technology, processes, and procedures to align with stakeholder needs.
• Act as a subject matter expert, curating knowledge through documentation, procedures, playbooks, runbooks, awareness content, and other inter- and intra-team activities.
• Maintain strong relationships with security vendors, and industry peers to stay informed about emerging threats and engage in proactive information sharing.
• Provide subject matter expertise during critical incident investigations and threat hunting efforts

Qualifications:

• Minimum of 8 years of related experience
• Bachelor's degree preferred or equivalent experience

Talents Needed for Success:

• Solid understanding of the Cyber Kill Chain, MITRE ATT&CK Framework and campaign strategies.
• Solid understanding of common security technologies (e.g., firewalls, IDS/IPS, WAF, threat analytic platforms, SIEM, Database monitoring platforms, host based and network based forensic tools, email gateways, web proxies/filtering end point anti-virus, etc.).
• Demonstrable understanding of various SIEM concepts such as correlation, aggregation, normalization, and parsing.
• Demonstrated ability to communicate effectively with business and technical audiences across all levels of an organization.
• Strong knowledge and understanding of networking including IP, TCP/UDP, and common application layer protocols (E.g. HTTP, HTTPS, SSL, FTP).
• Security knowledge across multiple security domains and technologies (e.g., operating systems, databases, networking, applications, identity and access management).
• Experience working with threat intelligence reports, IOAs, IOCs, TTPs.
• Proficiency in Python, PowerShell, Bash, or Perl to automate compliance checks, data parsing, and reporting.
• Solid understanding of and experience working in Windows and Linux environments.
• Provide domain expertise during critical incident investigations and threat hunting efforts.
• Solid understanding of the current threat landscape includes knowledge of different threat actor profiles and threats against the financial services industry.
• Serves as a trusted coach or mentor within the organization.
• Communicates openly keeping everyone across the organization informed.

Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
About Us:
With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC's subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC's Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at or connect with us on , , , and .
DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you'll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It's the chance to make a difference at a company that's truly one of a kind.
Learn more about Clearance and Settlement by .
About the Team: Our Risk Management teams work to protect the safety and soundness of our systems and are responsible for identifying, managing, measuring and mitigating a spectrum of key risk types including credit, market, liquidity, systemic, operational and technology in all existing and new products, activities, processes and systems.
The Global Security Management department provides a general and specialized work force to enforce the rules, regulations, and procedures of DTCC. Responsible for the protection of all DTCC assets, to include the protection of data processing and telecommunications equipment, and to provide a safe and secure workplace for employees.

Skills Required