Principal IT Security Engineer

Depository Trust Clearing Corporation - Coppell, TX

posted 3 days ago

Full-time - Senior
Coppell, TX
Credit Intermediation and Related Activities

About the position

The Principal IT Security Engineer at DTCC is a key role within the Identity Access Management (IAM) Team, responsible for the functional and technical design of business systems, integration of business services with information security, and ensuring adherence to industry best practices and regulatory compliance. This position involves leading projects, providing technical leadership, and collaborating with various IT areas and business partners to enhance security measures and improve operational efficiency.

Responsibilities

  • Responsible for the functional and technical design of business systems.
  • Integrate business services with information security.
  • Drive industry-specific best practices and standards.
  • Understand regulatory compliance needs and coordinate test planning and execution.
  • Provide leadership to Active Directory teams and act as a technology liaison to all IT areas within DTCC.
  • Lead projects and teams, including conducting code reviews.
  • Define performance, scalability, availability, resiliency, security, maintainability, support, testing, and cost requirements in technology selection and application design.
  • Define approaches for modernizing legacy applications, including migration to cloud infrastructure.
  • Own the engineering design practices of the software development organization.
  • Lead design review sessions and collaborate with Infrastructure and Solution Architecture teams.
  • Focus on industry practices such as loose coupling of applications, standardization, APIs, and reusability.
  • Identify and solve for non-functional requirements for platform consumers.
  • Ensure solutions adhere to security policies and standards of the firm and industry.
  • Conduct proof of concepts (POCs) for tools as needed.

Requirements

  • Minimum of 6 years of related experience.
  • Bachelor's degree preferred or equivalent experience.
  • Strong Information Security experience, specifically in PKI/Cryptography and Secrets management.
  • Solid working experience with certificate issuance ceremonies.
  • In-depth knowledge of Certificate Lifecycle Management including CRLs standard processes.
  • Hands-on experience with vendors such as Venafi, Hashicorp, Microsoft, Thales, Gemalto, DigiCert, and Hitachi.
  • Experience in SSL certificate management concepts and solution management.
  • Expertise with OCSP infrastructure, HSM, CMS Enterprise, and Venafi software suites.
  • Experience in building Certificate Policy (CP) and Certificate Practice Statements (CPS).
  • Solid experience with Python, networking fundamentals, and OS security (Windows/Linux).
  • Experience with Information Security frameworks (e.g., ISO 27001 and NIST) and security architecture frameworks.
  • Deep technical writing skills to support required documentation.
  • Demonstrated ability to collaborate between product management, engineering, risk, and IT teams.
  • Good communication skills with the ability to present in front of large audiences.

Benefits

  • Competitive compensation, including base pay and annual incentive.
  • Comprehensive health and life insurance and well-being benefits, based on location.
  • Pension / Retirement benefits.
  • Paid Time Off and Personal/Family Care, and other leaves of absence.
  • Flexible/hybrid model of 3 days onsite and 2 days remote.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service