Director IT Risk and Security Management

Are you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We're committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve. Pay and Benefits:

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on

location

• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when

needed to support your physical, financial, and emotional well-being. * DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee). The Impact you will have in this role: Being a member of IT Cybersecurity Engineering and Operations at DTCC, your purpose is to provide best in class and versatile security services to the enterprises. As a Director in Cybersecurity Operations and Engineering, you will be responsible for the guidance and oversight of the services the team provides. Maturing and optimizing while driving the team toward excellence in engineering, innovation, and implementation of best-in-class security solutions will be the primary focus. The result will be an obsession of bringing the best of security solutions to protect the DTCC assets and systems. This role is a People Leader role and the security engineers aligned will directly report into this position. As a People Leader (functional manager), strong candidates will have ample experience guiding & mentoring dynamic teams as it relates to each capability, identifying opportune areas to optimize the capability and stretching the squads to meet their maximum performance. Team members will be both within the US and global. Your Primary Responsibilities: * As the Director of Cybersecurity Engineering and Operations, you will be providing leadership to a growing global team of analysts, engineers, and incident responders. You will be responsible for ensuring that your team has the right skills, tools, competence, and processes to detect, defend and respond to any cyber event at DTCC. * Influence the delivery, metrics and direction of the Security Operations performance and trends by proactively looking forward on security gaps, anticipation of upskilling and resource prioritization that require planning * The Director will be developing comprehensive security strategies aligned with the organization's overall security objectives. This involves identifying and evaluating potential risks associated with cloud services, applications, and infrastructure, and devising proactive measures to mitigate these risks effectively. * To ensure the teams adhere to relevant regulatory requirements, industry standards, and internal policies. This involves conducting regular audits and assessments to evaluate compliance with standards across DTCC. * Participate in iteration planning, backlog management, and other agile ceremonies with Scrum Masters * Lead talent planning, career development mentoring, coaching and feedback to team members and remote employees while evaluating team member performance leading to continuous optimization. * Build partnerships with collaborators while keeping management up to date with the status of major deliverables as well as sustain strong working relations with business partners, peers to enhance business value. **NOTE: The Primary Responsibilities of this role are not limited to the details above. ** Qualifications:

• Bachelor’s degree and/or equivalent experience
• Minimum 10 years technology industry experience with a minimum three years in

a cybersecurity leadership role. Talents Needed for Success: * The ability to lead and motivate teams, set strategic direction, and effectively communicate cybersecurity priorities to collaborators across the organization. * Capable of developing long-term cybersecurity strategies aligned with business objectives and industry trends. This includes anticipating future threats and proactively implementing measures to address them. * Strong Information Security experience in many of the following Operational Security Domains: Network Security, Endpoint Security (EDR), IdM/ IAM/ PAM, SIEM, Cloud (AWS/Azure), Containers, Cloud Access Security Broker, Zscaler (Zero Trust), SOAR, SRE, DLP, UEBA, DLP, PKI/ Certificate Management, File Integrity, and Vulnerability Management etc.) * Strong people leadership skills with experience leading Agile security engineering team * Communicate effectively, including executive communication to senior leadership * Strong, proven technical experience in Cybersecurity engineering, design, implementation, and documentation. This includes understanding of all aspects of network infrastructure (Networking protocols- TCP/IP, DNS, firewalls, proxies, IDS, IPS etc.), agent/ agentless security, XaaS (SaaS, IaaS, PaaS, DaaS, DBaaS, FaaS) and FOSS * Knowledge of industry-standard Information Security frameworks, policies and procedures * Security certifications (CISSP, CISM, GSEC, CCSP, CEH, OSCP, etc.) are a plus The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC’s subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC’s Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at [ or connect with us on LinkedIn

• X
• YouTube
• Facebook
• and Instagram

DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you’ll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It’s the chance to make a difference at a company that’s truly one of a kind. Learn more about Clearance and Settlement by clicking here [