Executive Director Cyber Exposure Management

Job Description

Are you ready to make an impact at DTCC?


Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.


Pay and Benefits:

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee)

The Impact You Will Have in this Role

DTCC is seeking an Executive Director to lead and transform critical cybersecurity capabilities across Application Security, Exposure and Vulnerability Management, Cyber Threat Intelligence, and Offensive Security.

Reporting to the Deputy Chief Information Security Officer, this role is responsible for defining and executing a multi-year strategy to reduce enterprise cyber risk by improving the identification, prioritization, and remediation of exposures. The Executive Director will play a key role in modernizing these capabilities, with a focus on integrating threat intelligence and leveraging advanced analytics and AI to enhance decision-making and effectiveness.

This is a highly visible leadership role that partners across technology and business teams to embed security into the design, development, and operation of DTCC systems.
Your Primary Responsibilities

• Define and execute an enterprise strategy across application security, exposure management, threat intelligence, and offensive security.
• Lead transformation initiatives to modernize capabilities, including adoption of automation and AI.
• Establish measurable outcomes to drive reduction in enterprise cyber risk.
• Advance secure software development practices and embed security into the software development lifecycle.
• Lead the enterprise vulnerability management program, including identification, assessment, prioritization, and remediation of risks.
• Build and expand threat intelligence capabilities to provide actionable insights that inform enterprise security priorities.
• Oversee penetration testing, red teaming, and adversary emulation activities.
• Lead a team of directors and senior leaders across multiple cybersecurity domains.
• Partner across Cybersecurity, Engineering, Infrastructure, and Business teams to drive aligned outcomes.
• Provide clear reporting to senior leadership on risk posture and remediation progress.

**NOTE: The Primary Responsibilities of this role are not limited to the details above. **
Qualifications

• 15+ years of cybersecurity experience, including leadership across multiple domains such as application security, vulnerability management, threat intelligence, or offensive security.
• Demonstrated experience leading large-scale, enterprise cybersecurity programs and transformation initiatives.
• Strong understanding of modern application architectures and secure development practices.
• Experience implementing risk-based vulnerability management and integrating threat intelligence into security programs.
• Experience leveraging data, analytics, and emerging technologies, including AI, to improve cybersecurity outcomes.
• Proven ability to lead in a highly matrixed, global organization and influence senior stakeholders.
• Financial services or regulated industry experience preferred.

Preferred Certifications

CISSP, CISM, or equivalent.

The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation

The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation

About Us

With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC's subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC's Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at or connect with us on LinkedIn, X, YouTube, Facebook and Instagram.

DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you'll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It's the chance to make a difference at a company that's truly one of a kind.

Learn more about Clearance and Settlement by clicking here.

About the Team

The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance.