OCC

We clear and settle trades for the options industry.

Hybrid

View Profile

Jobs//Hybrid//Cybersecurity + IT//

Associate Principal, Security Governance

Sorry, this job was removed at 11:24 a.m. (CST) on Friday, September 16, 2022

View 264 Jobs

Find out who's hiring remotely in Chicago.

See all Remote Cybersecurity + IT jobs in Chicago

View 264 Jobs

Apply

By clicking Apply Now you agree to share your profile information with the hiring company.

Save job

COVID-19
All OCC employees are required to disclose their COVID-19 vaccination status to OCC's Human Resources department, and provide acceptable proof of vaccination status, as applicable. In addition, OCC requires employees who enter one of its offices to be fully vaccinated against COVID-19 or submit to regular testing as a condition of employment, subject to reasonable accommodation.
Who We Are
The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com.
What We Offer
A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:
A hybrid work environment, up to 3 days per week of remote work
Tuition Reimbursement to support your continued education
Student Loan Repayment Assistance
Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely
Generous PTO and Parental leave
Competitive health benefits including medical, dental and vision
What You'll Do
The Associate Principal, Security Governance (reporting to the Director Security Governance) supports the Security Services Department and will regularly liaise with, Compliance, Enterprise Risk Management, Internal Audit and OCC's Regulators. This person is responsible for driving information security initiatives related to regulatory exam and Internal Audit remediation planning, tracking, and mitigation. Additionally, this role will lead the development, review and publication of policy, procedures and controls for the Security Services Department in support of the NIST Cyber Security Framework. Likewise, this role will facilitate the management self-testing efforts for the Security Service Department by identifying, recommending, and driving enhancements to the performance, integrity, and compliance of the organization's processes.
This role will also focus on compliance with applicable regulatory and legal rules and requirements (i.e. SEC-Regulation SCI, CFTC-System Safeguards, etc.) as they relate to information security.
Primary Duties and Responsibilities:
To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.

Responsibilities include the development, review and continuous improvement of the Security Services Department policies, procedures, and controls to enhance OCC's risk control environment
Recommendation of appropriate reporting frameworks, standards and best practices.
Assist with remediating regulatory and Internal Audit findings, including collecting data to identify root cause of problems, identifying trends, formulating solutions, and escalating potential issues related to the lifecycle of remediation activities including, but not limited to:
- Management responses
- Development of appropriate action plans
- Delivery timeline tracking
- Gathering, and review of appropriate evidence artifacts
- Proving feedback to responsible SME's regarding appropriateness of evidence artifacts
- Development of documentation for closure
Act as supporting point of contact from Security Services to senior management in Compliance, Internal Audit, Enterprise Risk Management, Legal and the Enterprise Project Management Office.
Lead development, implementation, review and improvement of right sized management self-testing of controls.
Lead Information Security Cyber Security Working Group Program efforts.
Act on Security Services behalf related to compliance matters including developing and implementing strategies for strengthening the Security Services compliance posture
Manage Security Services responses to Third-Party requests and surveys
Perform ad-hoc duties for Security Governance management as necessary

Supervisory Responsibilities:

Qualifications:
The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.

Broad knowledge of applicable regulatory, legal rules and requirements (e.g., SEC, CFTC, Federal Reserve Board, etc.) as they pertain to Information Security.
Sound knowledge of and experience working with Security and Technology authoritative industry standards and control framework s (e.g. NIST CSF, NIST 800-53, CIS 20, COBIT, COSO, ITIL, ISO 27001, CSA CCM, etc.)
Strong understanding of information technology and risk management concepts
Strong experience in Information Security related policy, procedure and control writing.
Basic knowledge of Cloud implementation and Cloud compliance strategies including for data, information, application, platform and network security
Understanding of Systems Development Life Cycle (SDLC) process (Agile) and Secure Software Development Lifecycle.
Ability to work independently and as a member of a team, proficient in collaborating with internal business clients from different departments and at various levels of seniority.
Proficient in gathering, analyzing, and evaluating facts and preparing/presenting concise oral and written Compliance related data analysis and reports.
Excellent organizational, written and oral communication skills.

Technical Skills:

Proficiency with Microsoft Office Suite, including Word, Excel, and PowerPoint
Experience using an integrated risk management system (such as RSA Archer Suite) a plus
Business Intelligence tool experience (i.e. Tableau), a plus

Education and/or Experience:

Bachelor Degree - Computer Science, Management Information Systems, or related field or the equivalent combination of education and/or relevant experience.
5 or more years hands-on Information Security or EGRC-related work experience.
Previous work in Compliance, Audit, Risk Management, Project Management or control activities in the financial services industry.

Certificates or Licenses:

Professional network and/or security certifications a plus (i.e., GIAC, CISSP, CISA, CISM, CRISC)

Step 1
When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume.
Step 2
You will receive an email notification to confirm that we've received your application.
Step 3
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.
For more information about OCC , please click here .
OCC is an Equal Opportunity Employer

Apply Now

By clicking Apply Now you agree to share your profile information with the hiring company.

Save job

Email For Later

loading ...

Emailed

By clicking Apply Now you agree to share your profile information with the hiring company.

Christopher Michaelson

Executive Director, Data Analytics Engineering

Data skills

STRENGTHENING OCC’S FOUNDATION OF DATA SKILLS

Director of Central Analytics Christopher Michaelson is working to strengthen a data-oriented culture within OCC — well beyond his team of analysts. “Self-service data enablement is the best way we can scale our impact on the organization,” he said. “While stakeholders might be uncomfortable working with data, equipping them with trusted data and the skills to answer their own questions broadens our reach immensely.” With robust data skills across the organization, Michaelson’s team is able to spend more time building solutions for and utilizing data from OCC’s SaaS applications.

Data is at the foundation of everything at OCC.

Jennifer Stathis

Executive Director, Enterprise Technology Solutions

AUTOMATING FOR EFFICIENCY

OCC’s enterprise-level solution for centralizing data

Executive Director of Enterprise Technology Solutions Jennifer Stathis is helping to build an enterprise data platform, which will provide the foundation for establishing data as a centralized resource across the organization. “Our team’s mission is to enable our business partners to do their jobs more efficiently and effectively while finding ways to reduce manual work with automation,” Stathis said. “Creating a self-service platform will give our business partners much faster access to data and information, removing the IT bottleneck from the process.”

We use business intelligence tools to package data in a visual way so each of our metrics can be understood at a glance.

Callista Christ

Senior Associate, Data Analytics Engineering

TECHNICAL CURIOSITY

Finding empowerment in the freedom to explore

Before Callista Christ joined OCC, she was a data scientist in academia — a role she felt focused too much on end results. Now as a senior associate, Christ loves the freedom she has to play with tech during a project’s journey. “We’re very hands-on with various tools related to security scanning, CI/CD and data integrity,” she said. This approach empowers Christ to learn more and achieve her best work, which currently includes making OCC’s transition to the cloud transparent and measurable. “I’m excited to be in such a challenging environment with so many opportunities for growth!”

You will certainly be surrounded by complex challenges at OCC. However, you’re never alone. You will be surrounded by brilliant colleagues who will support your endeavors to build viable solutions.

What are OCC Perks + Benefits

OCC Benefits Overview

Educational Assistance and Student Debt Forgiveness, 12-week paid parental leave, BYOD program with technology stipend up to $2,000 every three years, $35 per month pay to offset costs of mobile data plans. Open offices, online health coaching.

Culture

Volunteer in local community

Each year, OCC employees select a locally-based charitable organization for each of our three offices (Chicago, Dallas and Washington, D.C.). We offer multiple opportunities to get involved.

Partners with nonprofits

OCC Partners with local organizations in Dallas, Chicago and DC to raise funds and support their missions. Employees select the charity and are eligible for up to 8 hours of paid time to volunteer.

Open door policy

OKR operational model

Team based strategic planning

Open office floor plan

Flexible work schedule

OCC provides employees with a flexible work schedule that includes Flexible start and end times.

Remote work program

2 days per week work from home program

Diversity

Dedicated diversity and inclusion staff

Mandated unconscious bias training

Diversity employee resource groups

Health Insurance & Wellness Benefits

Flexible Spending Account (FSA)

Disability insurance

Dental insurance

Vision insurance

Health insurance

HSA or FSA accounts available for those enrolled in medical plans.

Life insurance

Wellness programs

Includes back-up child or elder care along with other wellness programs.

Mental health benefits

Financial & Retirement

401(K)

401(K) matching

OCC provides employees with a 401(k) matching plan managed by Fidelity. We match 50% of contributions up to 12% of an employee's annual gross pay.

Performance bonus

Charitable contribution matching

Child Care & Parental Leave Benefits

Generous parental leave

12-week paid parental leave

Vacation & Time Off Benefits

Generous PTO

OCC employees receive between 22 and 32 days per year of paid time off based on years of service.

Paid volunteer time

Sabbatical

Eligible employees get 30 days of paid sabbatical after their first 10 years of working at the company.

Paid holidays

Paid sick days

Office Perks

Commuter benefits

OCC Offers pre-tax commuter benefits for employees in Chicago and Washington, D.C.

Company-sponsored happy hours

Relocation assistance

OCC offers relocation assistance which varies based on the position level and location.

Home-office stipend for remote employees

Professional Development Benefits

Job training & conferences

OCC offers employees professional development opportunities including onsite training courses and the ability to attend job related certification courses, conferences and seminars.

Tuition reimbursement

Our tuition reimbursement plan offers an annual max of $10000.

Lunch and learns

OCC hosts leadership lunches on a regular basis so you can learn about your colleagues and their unique backgrounds.

Promote from within

Online course subscriptions available

Customized development tracks

Paid industry certifications

Employees are strongly encouraged to stay current in relevant technologies and supports certification programs.

Additional Perks + Benefits

We were recently recognized as one of LinkedIn's Top Company in Financial Services! Take a look at our blog post here: https://www.theocc.com/newsroom/press-releases/2022/06-23-linkedin-list…

View full list of perks + benefits

Photo Gallery