What You'll Do:

OTSI is OCC's technology strategy, research, and development team. The team focuses on architectural design, problem solving, and security using cutting edge technologies to deliver solutions for the organization as part of the OCC Unified Technology Strategy.

As a Principal, Security Engineer and senior member of the team, you will be responsible for collaborating with stakeholders, partner teams, and solutions architects to research and engineer available technologies as part of a comprehensive requirements-driven solution design. You will be developing technology engineering requirements and leading proof-of-concept and laboratory testing efforts using modern approaches to process and automation. With a specialty in security, you will have the opportunity to use a combination of an attacker's mindset and a risk-based approach to integrate security into solutions.

Primary Duties and Responsibilities:

To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.

• Key contributor to technology platform design, testing, and implementation process to introduce new technology and improve existing technology using a zero-trust approach.

• Define and implement testing and success criteria for platforms, products, and technologies to ensure alignment with business, security, and architecture objectives.

• Lead and participate in exploratory proof-of-concept engagements and technology stress testing to determine solution feasibility and stability, while also identifying potential security risks.

• Collaborate with various partner teams across technology, security, and business to provide technical security consultation as part of projects and daily business activities.

• Create technical security knowledge and guideline documentation for new and existing technologies to assist partner teams with self-service security integration.

• Design and contribute to infrastructure-as-code initiatives.

• Build and maintain test and evaluation environments in the public cloud and OCC data centers.

Supervisory Responsibilities:

No direct supervision, is expected to provide mentorship to members of the team.

Qualifications:

The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.

• Excellent oral and written communication.

• Data-driven and risk-based analytical skills to successfully assess, formulate, and present technical solutions.

• Ability to work independently and collaboratively with local and remote OCC employees, vendors, and consultants.

• Must possess critical OCC values, including (but not limited to) collaboration, credibility, trust, and adaptability.

Technical Skills:

• Must have expertise in at least one of the following areas, as well as general knowledge in at least one additional area:

  • Network Security: solid understanding of the OSI model, common network protocols, next-generation firewalls and policy, intrusion prevention and detection, remote access solutions, ability to read and understand network traffic captures, etc.

  • Internet Security: Common layer 7 protocols (HTTP, SFTP, websockets, RTC, SMTP, etc.), forward and reverse proxies, cloud access security brokers, email security gateways and cloud API-based solutions, protocol tunneling, common web servers (Nginx, Apache, IIS) and OWASP, etc.

  • Systems Security: Operating systems (including NT, Linux, Unix, and mobile OS distributions), kernel modification, service/daemon hardening, file systems and registry, system authentication protocols, domain services, privileged access, application sandboxing, containerization, cloud and on-premises endpoint management, etc.

  • Identity Security: Domain services and identity-as-a-service platforms, authentication protocols and suites (NTLM, LDAP, Kerberos, SAML, OIDC, etc.), multi-factor authentication and password-less platforms and technologies, role-based access control and entitlements, etc.

  • Cloud Security: solid understanding of cloud infrastructure concepts, experience in Amazon Web Services, Microsoft Azure, and/or Google Cloud Platform, infrastructure-as-code and automation, DevSecOps concepts and tooling, etc.

  • Database Security: solid understanding of common database technologies on-premises and in the cloud (MSSQL, MySQL/MariaDB, Oracle, MongoDB, DB2), data field hardening and encryption, access controls, high-availability, etc.

• Familiarity with adversarial testing (Red Team) techniques and use of cyber threat intelligence a plus

• Understanding of security related frameworks and standards such as COBIT, NIST CSF are a plus.

• Experience with regulatory frameworks such as Reg SCI and CFTC 99.18 are a plus.

Education and/or Experience:

• [Required] 10+ years of progressive experience in IT or Security-related fields

• [Required] 5+ years of experience in demonstrating proficiency in Network Security, Internet Security, Systems Security, Identity Security, Cloud Security and/or Database Security.

• [Preferred] Bachelor's degree or higher in a technical field

Certificates or Licenses:

• N/A

Who We Are

The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com.

What We Offer

A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:

A hybrid work environment, up to 2 days per week of remote work

Tuition Reimbursement to support your continued education

Student Loan Repayment Assistance

Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely

Generous PTO and Parental leave

Competitive health benefits including medical, dental and vision

Step 1
When you find a position you're interested in, click the 'Apply' button. Please complete the application andattach your resume.

Step 2
You will receive an email notification to confirm that we've received your application.

Step 3
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.

For more information about , please click .

OCC is an Equal Opportunity Employer