OCC company image
OCC
We clear and settle trades for the options industry.
Hybrid
View Profile
Jobs//Hybrid//Cybersecurity + IT//

Principal, Security Engineering

Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

What You'll Do:
OTSI is OCC's technology strategy, research, and development team. The team focuses on architectural design, problem solving, and security using cutting edge technologies to deliver solutions for the organization as part of the OCC Unified Technology Strategy.
As a Principal, Security Engineer and senior member of the team, you will be responsible for collaborating with stakeholders, partner teams, and solutions architects to research and engineer available technologies as part of a comprehensive requirements-driven solution design. You will be developing technology engineering requirements and leading proof-of-concept and laboratory testing efforts using modern approaches to process and automation. With a specialty in security, you will have the opportunity to use a combination of an attacker's mindset and a risk-based approach to integrate security into solutions.
Primary Duties and Responsibilities:
To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.

  • Key contributor to technology platform design, testing, and implementation process to introduce new technology and improve existing technology using a zero-trust approach.
  • Define and implement testing and success criteria for platforms, products, and technologies to ensure alignment with business, security, and architecture objectives.
  • Lead and participate in exploratory proof-of-concept engagements and technology stress testing to determine solution feasibility and stability, while also identifying potential security risks.
  • Collaborate with various partner teams across technology, security, and business to provide technical security consultation as part of projects and daily business activities.
  • Create technical security knowledge and guideline documentation for new and existing technologies to assist partner teams with self-service security integration.
  • Design and contribute to infrastructure-as-code initiatives.
  • Build and maintain test and evaluation environments in the public cloud and OCC data centers.


Supervisory Responsibilities:
No direct supervision, is expected to provide mentorship to members of the team.
Qualifications:
The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.

  • Excellent oral and written communication.
  • Data-driven and risk-based analytical skills to successfully assess, formulate, and present technical solutions.
  • Ability to work independently and collaboratively with local and remote OCC employees, vendors, and consultants.
  • Must possess critical OCC values, including (but not limited to) collaboration, credibility, trust, and adaptability.


Technical Skills:

  • Must have expertise in at least one of the following areas, as well as general knowledge in at least one additional area:
    • Network Security: solid understanding of the OSI model, common network protocols, next-generation firewalls and policy, intrusion prevention and detection, remote access solutions, ability to read and understand network traffic captures, etc.
    • Internet Security: Common layer 7 protocols (HTTP, SFTP, websockets, RTC, SMTP, etc.), forward and reverse proxies, cloud access security brokers, email security gateways and cloud API-based solutions, protocol tunneling, common web servers (Nginx, Apache, IIS) and OWASP, etc.
    • Systems Security: Operating systems (including NT, Linux, Unix, and mobile OS distributions), kernel modification, service/daemon hardening, file systems and registry, system authentication protocols, domain services, privileged access, application sandboxing, containerization, cloud and on-premises endpoint management, etc.
    • Identity Security: Domain services and identity-as-a-service platforms, authentication protocols and suites (NTLM, LDAP, Kerberos, SAML, OIDC, etc.), multi-factor authentication and password-less platforms and technologies, role-based access control and entitlements, etc.
    • Cloud Security: solid understanding of cloud infrastructure concepts, experience in Amazon Web Services, Microsoft Azure, and/or Google Cloud Platform, infrastructure-as-code and automation, DevSecOps concepts and tooling, etc.
    • Database Security: solid understanding of common database technologies on-premises and in the cloud (MSSQL, MySQL/MariaDB, Oracle, MongoDB, DB2), data field hardening and encryption, access controls, high-availability, etc.
  • Familiarity with adversarial testing (Red Team) techniques and use of cyber threat intelligence a plus
  • Understanding of security related frameworks and standards such as COBIT, NIST CSF are a plus.
  • Experience with regulatory frameworks such as Reg SCI and CFTC 99.18 are a plus.


Education and/or Experience:

  • [Required] 10+ years of progressive experience in IT or Security-related fields
  • [Required] 5+ years of experience in demonstrating proficiency in Network Security, Internet Security, Systems Security, Identity Security, Cloud Security and/or Database Security.
  • [Preferred] Bachelor's degree or higher in a technical field


Certificates or Licenses:

  • N/A


Who We Are
The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com.
What We Offer
A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:
A hybrid work environment, up to 2 days per week of remote work
Tuition Reimbursement to support your continued education
Student Loan Repayment Assistance
Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely
Generous PTO and Parental leave
Competitive health benefits including medical, dental and vision
Step 1
When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume.
Step 2
You will receive an email notification to confirm that we've received your application.
Step 3
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.
For more information about OCC , please click here .
OCC is an Equal Opportunity Employer

See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.

What are OCC Perks + Benefits

OCC Benefits Overview

Educational Assistance and Student Debt Forgiveness, 12-week paid parental leave, BYOD program with technology stipend up to $2,000 every three years, $35 per month pay to offset costs of mobile data plans. Open offices, online health coaching.

Culture
Volunteer in local community
Each year, OCC employees select a locally-based charitable organization for each of our three offices (Chicago, Dallas and Washington, D.C.). We offer multiple opportunities to get involved.
Partners with nonprofits
OCC Partners with local organizations in Dallas, Chicago and DC to raise funds and support their missions. Employees select the charity and are eligible for up to 8 hours of paid time to volunteer.
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Flexible work schedule
OCC provides employees with a flexible work schedule that includes Flexible start and end times.
Remote work program
2 days per week work from home program
Diversity
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity employee resource groups
Health Insurance + Wellness
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
HSA or FSA accounts available for those enrolled in medical plans.
Life insurance
Wellness programs
Includes back-up child or elder care along with other wellness programs.
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
OCC provides employees with a 401(k) matching plan managed by Fidelity. We match 50% of contributions up to 12% of an employee's annual gross pay.
Performance bonus
Charitable contribution matching
Child Care & Parental Leave
Generous parental leave
12-week paid parental leave
Vacation + Time Off
Generous PTO
OCC employees receive between 22 and 32 days per year of paid time off based on years of service.
Paid volunteer time
Sabbatical
Eligible employees get 30 days of paid sabbatical after their first 10 years of working at the company.
Paid holidays
Paid sick days
Office Perks
Commuter benefits
OCC Offers pre-tax commuter benefits for employees in Chicago and Washington, D.C.
Company-sponsored happy hours
Relocation assistance
OCC offers relocation assistance which varies based on the position level and location.
Home-office stipend for remote employees
Professional Development
Job training & conferences
OCC offers employees professional development opportunities including onsite training courses and the ability to attend job related certification courses, conferences and seminars.
Tuition reimbursement
Our tuition reimbursement plan offers an annual max of $10000.
Lunch and learns
OCC hosts leadership lunches on a regular basis so you can learn about your colleagues and their unique backgrounds.
Promote from within
Online course subscriptions available
Customized development tracks
Paid industry certifications
Employees are strongly encouraged to stay current in relevant technologies and supports certification programs.

Additional Perks + Benefits

We were recently recognized as one of LinkedIn's Top Company in Financial Services! Take a look at our blog post here: https://www.theocc.com/newsroom/press-releases/2022/06-23-linkedin-list…

View full list of perks + benefits
Photo Gallery

More Jobs at OCC

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about OCCFind similar jobs like this