OCC company image
OCC
We clear and settle trades for the options industry.
Hybrid
View Profile
Jobs//Hybrid//Operations//

Principal, Security Implementation

Sorry, this job was removed at 7:06 a.m. (CST) on Tuesday, June 1, 2021
View 598 Jobs
Find out who's hiring in Chicago.
See all Operations jobs in Chicago
View 598 Jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

Summary

 As a Principal, Security Implementation Lead you will be part of a team responsible for analyzing, triaging, solutioning vulnerabilities identified via Black Duck and Veracode scanning on open source libraries. This team is responsible for identifying solutions, testing out hands-on solutions across a variety of software, and working closely with the development community to implement solutions. The team is also responsible for assessing the total risk of the vulnerabilities with respect to The OCC environment.

You would be a good candidate for this role if you like:

  • Lead a Kanban team in the capacity of a Product Owner. Also manage the Scrum Master Responsibility
  • Work very closely with other product owners and development leads of other scrum teams to influence and prioritize security remediation effort for delivery
  • Manage the security vulnerabilities across the enterprise for Open Source Libraries and track the remediation plan for identification to closure across different teams
  • Report to senior management on status, next steps, risks, dependencies
  • Learning about new technologies and their secure implementation and build remediation strategy for open source libraries
  • Capturing security vulnerabilities, building remediation, and assisting product teams to remediate these.
  • Researching problems and solving the root cause instead of just the current symptoms
  • Sharing your knowledge with others

Primary Duties and Responsibilities:

To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.

  • Lead a Kanban team in the capacity of a Product Owner. Also manage the Scrum Master Responsibility
  • Work very closely with other product owners and development leads of other scrum teams to prioritize and influence security remediation effort for delivery
  • Manage the security vulnerabilities and track the remediation plan for identification to closure across different teams
  • Report to senior management on status, next steps, risks, dependencies
  • Provide general guidelines for preventing commonly found vulnerabilities by defining and updating security requirements
  • Interacting with project teams to seek implementation and completion of security requirements
  • Documenting processes based on established guidelines
  • Defining pen test plans through stories/tasks for moderately complex applications such as those deployed to Relativity platform (ADS app) or those involved in security critical workflows (e.g. authentication)
  • Collaborate with development, platform automation and security teams to create and continuously improve a simple to use standardized repeatable automated application pipeline that includes testing, security and automated deployment to development and QA environments.
  • Collaborate with development, platform automation, security teams, IT business management & senior IT management to create reporting, metrics and dashboards.
  • Other job-related duties as assigned.

Supervisory Responsibilities:

Qualifications:

The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.

  • Strong collaboration and presentation skills reaching across functional borders including technical and non-technical audiences.
  • Understanding of Kanban and/or Agile methodologies.
  • Hands-on experience working in Agile and DevOps cultures, focusing on process improvement and automation. Experience of working both independently and collaboratively in a fast paced, change oriented, and demanding IT environment with a strong focus on business outcomes.
  • Self-starter – takes the initiative to research, learn and deliver. Anticipates the play.
  • Team player – humble, collaborative, and focused on making sure the entire team succeeds.
  • Familiarity with common software vulnerabilities (e.g. OWASP Top 10) and their remediation
  • Deep interest in security architecture of applications and technologies (Web, Kubernetes, Network)
  • Ability to follow established processes
  • Ability to juggle several high visibility projects
  • Ability to read code in mainstream programming languages such as Python, C#, Java

Technical Skills:

  • Knowledge and experience with Security scanning tools such as Black Duck and Veracode
  • Knowledge of different tools. delivery (CI/CD) tools (examples - GitHub, Jenkins, Artifactory, Docker, Docker-Compose, K8s).
  • Knowledge of Product Owner role. Product Owner certification is a plus.
  • Practicing Knowledge of Kanban / Scrum team mechanics with hands-on experience
  • Certification of some type of Project / Program management is a plus.
  • A total experience in technology and security landscape for 11 to 15 years is required.

Education and/or Experience:

  • Bachelor’s or Master’s Degrees in Computer Science, Information Systems or other related field. Or equivalent work experience.

Certificates or Licenses:

See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Christopher Michaelson
Executive Director, Data Analytics Engineering
Data skills
STRENGTHENING OCC’S FOUNDATION OF DATA SKILLS
Director of Central Analytics Christopher Michaelson is working to strengthen a data-oriented culture within OCC — well beyond his team of analysts. “Self-service data enablement is the best way we can scale our impact on the organization,” he said. “While stakeholders might be uncomfortable working with data, equipping them with trusted data and the skills to answer their own questions broadens our reach immensely.” With robust data skills across the organization, Michaelson’s team is able to spend more time building solutions for and utilizing data from OCC’s SaaS applications.
Director of Central Analytics Christopher Michaelson is working to strengthen a data-oriented culture within OCC — well beyond his team of analysts. “Self-service data enablement is the best way we can scale our impact on the organization,” he said. “While stakeholders might be uncomfortable working with data, equipping them with trusted data and the skills to answer their own questions broadens our reach immensely.” With robust data skills across the organization, Michaelson’s team is able to spend more time building solutions for and utilizing data from OCC’s SaaS applications.
Data is at the foundation of everything at OCC.
Jennifer Stathis
Executive Director, Enterprise Technology Solutions
AUTOMATING FOR EFFICIENCY
OCC’s enterprise-level solution for centralizing data
Executive Director of Enterprise Technology Solutions Jennifer Stathis is helping to build an enterprise data platform, which will provide the foundation for establishing data as a centralized resource across the organization. “Our team’s mission is to enable our business partners to do their jobs more efficiently and effectively while finding ways to reduce manual work with automation,” Stathis said. “Creating a self-service platform will give our business partners much faster access to data and information, removing the IT bottleneck from the process.”
Executive Director of Enterprise Technology Solutions Jennifer Stathis is helping to build an enterprise data platform, which will provide the foundation for establishing data as a centralized resource across the organization. “Our team’s mission is to enable our business partners to do their jobs more efficiently and effectively while finding ways to reduce manual work with automation,” Stathis said. “Creating a self-service platform will give our business partners much faster access to data and information, removing the IT bottleneck from the process.”
We use business intelligence tools to package data in a visual way so each of our metrics can be understood at a glance.
Callista Christ
Senior Associate, Data Analytics Engineering
TECHNICAL CURIOSITY
Finding empowerment in the freedom to explore
Before Callista Christ joined OCC, she was a data scientist in academia — a role she felt focused too much on end results. Now as a senior associate, Christ loves the freedom she has to play with tech during a project’s journey. “We’re very hands-on with various tools related to security scanning, CI/CD and data integrity,” she said. This approach empowers Christ to learn more and achieve her best work, which currently includes making OCC’s transition to the cloud transparent and measurable. “I’m excited to be in such a challenging environment with so many opportunities for growth!”
Before Callista Christ joined OCC, she was a data scientist in academia — a role she felt focused too much on end results. Now as a senior associate, Christ loves the freedom she has to play with tech during a project’s journey. “We’re very hands-on with various tools related to security scanning, CI/CD and data integrity,” she said. This approach empowers Christ to learn more and achieve her best work, which currently includes making OCC’s transition to the cloud transparent and measurable. “I’m excited to be in such a challenging environment with so many opportunities for growth!”
You will certainly be surrounded by complex challenges at OCC. However, you’re never alone. You will be surrounded by brilliant colleagues who will support your endeavors to build viable solutions.

What are OCC Perks + Benefits

OCC Benefits Overview

Educational Assistance and Student Debt Forgiveness, 12-week paid parental leave, BYOD program with technology stipend up to $2,000 every three years, $35 per month pay to offset costs of mobile data plans. Open offices, online health coaching.

Culture
Volunteer in local community
Each year, OCC employees select a locally-based charitable organization for each of our three offices (Chicago, Dallas and Washington, D.C.). We offer multiple opportunities to get involved.
Partners with nonprofits
OCC Partners with local organizations in Dallas, Chicago and DC to raise funds and support their missions. Employees select the charity and are eligible for up to 8 hours of paid time to volunteer.
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Flexible work schedule
OCC provides employees with a flexible work schedule that includes Flexible start and end times.
Remote work program
2 days per week work from home program
Diversity
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity employee resource groups
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
HSA or FSA accounts available for those enrolled in medical plans.
Life insurance
Wellness programs
Includes back-up child or elder care along with other wellness programs.
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
OCC provides employees with a 401(k) matching plan managed by Fidelity. We match 50% of contributions up to 12% of an employee's annual gross pay.
Performance bonus
Charitable contribution matching
Child Care & Parental Leave Benefits
Generous parental leave
12-week paid parental leave
Vacation & Time Off Benefits
Generous PTO
OCC employees receive between 22 and 32 days per year of paid time off based on years of service.
Paid volunteer time
Sabbatical
Eligible employees get 30 days of paid sabbatical after their first 10 years of working at the company.
Paid holidays
Paid sick days
Office Perks
Commuter benefits
OCC Offers pre-tax commuter benefits for employees in Chicago and Washington, D.C.
Company-sponsored happy hours
Relocation assistance
OCC offers relocation assistance which varies based on the position level and location.
Home-office stipend for remote employees
Professional Development Benefits
Job training & conferences
OCC offers employees professional development opportunities including onsite training courses and the ability to attend job related certification courses, conferences and seminars.
Tuition reimbursement
Our tuition reimbursement plan offers an annual max of $10000.
Lunch and learns
OCC hosts leadership lunches on a regular basis so you can learn about your colleagues and their unique backgrounds.
Promote from within
Online course subscriptions available
Customized development tracks
Paid industry certifications
Employees are strongly encouraged to stay current in relevant technologies and supports certification programs.

Additional Perks + Benefits

We were recently recognized as one of LinkedIn's Top Company in Financial Services! Take a look at our blog post here: https://www.theocc.com/newsroom/press-releases/2022/06-23-linkedin-list…

View full list of perks + benefits
Photo Gallery

More Jobs at OCC

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about OCCFind similar jobs like this