Associate Principal, Security Assurance
Chicago - 125 S Franklin
What You'll Do:
This position is responsible for security testing and helping to manage OCC’s configuration baseline process. This position is a junior to midrange engineering position that requires the ability to complete technical testing and provide informational updates to leadership and executive staff.
Primary Duties and Responsibilities:
To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.
Perform a variety of assessments under the guidance of senior team members which could include cloud assessments, light penetration testing, and network and operating system assessments
Perform guided reviews of OCC’s security, network, applications, and cloud environments
Produce reports and artifacts for various levels of leadership and staff relating to security related activities
Ensure alignment of security controls as part of OCC’s Blue Team testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices
Assist management with the improvement of policy and procedure to support Security Testing and Blue Team activities as well as other security duties which may arise
Participate in developing security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends
Continue to support, grow, and assist the development of current processes and tools
Supervisory Responsibilities:
NA
Qualifications:
The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.
Requires working knowledge of security controls and standards for a variety of technologies including networking, operating systems, Cloud Security, DevOps, and Security Testing.
Ability to participate in multiple concurrent testing assignments while maintaining high quality of work
Ability to think critically about the relative risk of security observations within the context of the overall environment and controls
Technical Skills:
Experience supporting server operating systems, networking, and enterprise applications
Experience with AWS Services including automation services (Lambda, JSON, etc)
Experience with DevOps Pipelines and GitHub Repos
Architectural understanding and expertise of cloud and hybrid cloud infrastructure
Education and/or Experience:
Three years of experience with Security Engineering activities and testing.
One to two years of experience with DevOps processes
One to two years of experience with AWS architecture and services.
Prior experience as a systems or network engineer desired
Prior experience with vulnerability management and security remediation desired
Detailed experience with operating system control framework such as CIS Benchmark or STIG desired
Certificates or Licenses:
Strongly prefer at least one of the following certifications:
AWS Certified Solutions Architect
AWS Certified Security Specialty
Certification Information Systems Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
GIAC Cloud Security Essentials (GCLD)
GIAC Cloud Security Automation (GCSA)
GIAC Security Essentials (GSEC)
GIAC Defensible Security Architecture (GDSA)
Who We Are
The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com.
What We Offer
A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:
A hybrid work environment, up to 2 days per week of remote work
Tuition Reimbursement to support your continued education
Student Loan Repayment Assistance
Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely
Generous PTO and Parental leave
Competitive health benefits including medical, dental and vision
Step 1
When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume.
Step 2
You will receive an email notification to confirm that we've received your application.
Step 3
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.
For more information about OCC, please click here.
OCC is an Equal Opportunity Employer
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Blue team CCSP CISSP Cloud DevOps GIAC GitHub GSEC JSON Lambda Pentesting Vulnerability management
Perks/benefits: Career development Health care Home office stipend Medical leave Parental leave Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.