Threat Management Associate

Business Unit: Global Chief Risk Office

Department: Technology Risk Management

Job Family: Risk Management

Job Title: Threat Management Associate

Corporate Title: Associate

FLSA Code: Exempt


Our Risk Management teams work to protect the safety and soundness of our systems and are responsible for identifying, managing, measuring and mitigating a spectrum of key risk types including credit, market, liquidity, systemic, operational and technology in all existing and new products, activities, processes and systems.

The Technology Risk Management department is responsible for setting strategic direction in the areas of IT Risk and Information Security. They are accountable for maintaining DTCC's corporate security policies and control standards and acting as an operational arm for monitoring threat intelligence.

Position Summary

The incumbent will act as a Cyber-Incident Responder, using their heightened experience to perform forensic log, host, and network analysis. They will act as a responder to process cyber-incidents and coordinate response efforts throughout the Incident Response Lifecycle.

Specific Responsibilities

* Collect and exam all available forensic artifacts (e.g., source code, malware, and Trojans)

* Develop and enable mitigation requirements for cyber-incidents within the environment

* Coordinate with Cyber Intelligence teams to correlate threat assessment information

* Perform real time cyber-incident handling (e.g., host and network based forensic collection, intrusion correlation and tracking, and cyber-threat analysis)

* Maintain Incident Response software and hardware toolkits (e.g., VMware workstations with static and dynamic analysis tools)

* Provide oversight and coordination for cyber-incident data flow, response, and remediation

* Provide other complex technical and non-technical solutions for the organization related to cyber-incident detection and response, as directed by senior leadership

* Aligns risk and control processes into day to day responsibilities to monitor and mitigate risk; escalates appropriately

Leadership Competencies for this level include

* Accountability: Demonstrates reliability by taking necessary actions to continuously meet required deadlines and goals

* Global Collaboration: Applies global perspective when working within a team by being aware of own style and ensuring all relevant parties are involved in key team tasks and decisions

* Communication: Articulates information clearly and presents information effectively and confidently when working with others

* Influencing: Convinces others by making a strong case, bringing others along to their viewpoint; maintains strong, trusting relationships while at the same time is comfortable challenging ideas

* Innovation and Creativity: Thinks boldly and out of the box, generates new ideas and processes, and confidently pursues challenges as new avenues of opportunity


* Minimum of 3 years of related experience minimum; at least 2 years of direct information security experience

* Bachelor's Degree in Computer Science or a related technical degree

* At least one of the following certifications: GCIH, GCFA, CEH, GSEC or comparable

* Familiar with Cyber Threat Intelligence gathering and processing

About DTCC

With over 40 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From operating facilities and data centers around the world, DTCC automates, centralizes, and standardizes the processing of financial transactions across the trade lifecycle and mitigates risk for thousands of institutions worldwide.

At DTCC we value on our clients' interests and partner to deliver superior results with excellence and innovation and lead with integrity. We proactively develop your potential and invest in your career.