Lead Cloud Security Engineer

Are you ready to make an impact at DTCC? Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve. The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance. Pay and Benefits: Competitive compensation, including base pay and annual incentive Comprehensive health and life insurance and well-being benefits, based on location Pension / Retirement benefits Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being. DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee). The Impact you will have in this role: The purpose of Cybersecurity Engineering team is to provide outstanding and versatile security services to the enterprise. This position is for a Lead Security Engineer on the Cloud Security Engineering team. This position is focused on being a domain expert (SME) for Cloud Security Capabilities in AWS, Azure and GCP. As a SME, the Lead Cloud Security Engineer is responsible for analyzing sophisticated security issues to improve the overall posture of the company, evaluating new capabilities & ensure preparation for Production implementation. Your Primary Responsibilities: Responsible for evaluating new technologies and services and working with our Architecture team to design and implement well-rounded security solutions. Find opportunities for automation eliminating manual, mundane activities and improving machine learning capabilities along with providing content for security playbooks. Proactively identify deficiencies in security services, propose plans for improvement and implement them. Maintain professional and technical process knowledge by keeping abreast of security standards. Provide new security capabilities through industry leading security tools or by creating custom tools as needed. Document security policies, controls, and processes, and develop runbooks and how-to guides for operational readiness of engineered solutions. Evaluate IAM requests from other groups and assure that least privilege is preserved. Evaluate and create cloud security baselines and implement monitoring to assure compliance. Provide expert guidance to stakeholder and internal clients **NOTE: The Primary Responsibilities of this role are not limited to the details above. ** Qualifications: Bachelor’s degree and/or equivalent experience 5+ years of industry security experience including 3 year in public cloud (AWS and Azure preferred) Talents Needed for Success: Problem solving skills to resolve problems effectively and creatively while maintaining a high level of flexibility, professionalism, and integrity. Programming experience one or more of the following languages: Python, C#, C++, PowerShell, Bash, Terraform, and SQL as well as experience with GIT version control (GITFlow, GitHub, BitBucket, etc.). Experience with delivering reliable, available, and high-performance enterprise-scale solutions. Experience with vulnerability management, SIEM, compliance to security baselines, and Identity and Access Management in the cloud and on-prem. Familiarity with industry standards, guidelines, and regulatory compliance requirements related to information security and cloud computing (NIST 800-53, ISO-27001, etc.). One or more of the following certifications: Cloud (AWS, Azure, Google Cloud Platform), CISSP, Security+. Demonstrated experience in Cloud Security tools such as Aquasec, Inspector, and Wiz a plus. The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations.