JobsEQ by Chmura Logo

Threat Hunt and Assessment Manager

DTCC
Location: Tampa, FL 33646
Type: Full-Time, Non-Remote
Posted on: April 8, 2021
This job is no longer available from the source.
4 DAYS AGO
Full Time
Threat Hunt & Assessment Manager
Are you ready to explore a world of possibilities?
Join our DTCC family, and you’ll grow your expertise and become the best version of you. As you embark on a new journey, you’ll tackle challenges with flexibility and grace, learning new skills and advancing your career while having the time of your life.
Why You’ll Love This Job:
Being a member of our Risk Management team, you’ll work to protect the safety and soundness of our systems and are responsible for identifying, managing, measuring and mitigating a spectrum of key risk types including credit, market, liquidity, systemic, operational and technology in all existing and new products, activities, processes and systems.
Your Primary Responsibilities:
This position is for a Security Professional who would provide leadership, vision, and accountability to the team responsible for guiding the oversight of a Threat Hunting Program and its reporting capabilities of DTCC’s on premise and cloud environments. The Threat Hunt and Assessment Team Manager will enhance partnership with the Cyber Red Team and the Cyber Blue Team in the Threat Management Center to deliver shared outcomes that measurably improve our efficacy and efficiency to detect and respond to vulnerabilities and threats and establish credibility as a trusted advisor to partners.
The candidate will develop test plans, collect and enrich intelligence feeds, operation schedules, perform threat hunts and prepare after-action reports for information systems. Candidates will also document the team’s activity in accordance with DTCC Information Security Policies and Cyber Red Team standard operating procedures.
Cyber Red Team security projects range in complexity and duration. Projects are ongoing, based on NPOV, threat modeling of recent events in the industry throughout the year. The level of effort and number of security assessors varies depending on the criticality of the system, technology, and schedule. Projects and testing are conducted worldwide, the ability to travel in CONUS and internationally is required.
The candidate will be comfortable researching and understanding a wide variety of existing and emerging technology, have the ability to participate in the aggressive testing schedule of the Cyber Red Team (CRT) and appropriately contribute to the daily workload and scope of a highly skilled and diverse group of security assessment testers.
• Develop and oversee compliance to Control Standards, policies and procedures related to the Threat Hunt program in collaboration with business requirements and best industry practices.
• Design, implement, and oversee multiple processes and procedures to identify Threat Hunt requirements and drive remediation of configuration related risks and vulnerabilities within the enterprise
• Develop and strengthen relationships with business partners, IT Area Leads, BISOs, ERMs, and other associated teams inside TRM.
• Communicate and coordinate with various internal teams including Infrastructure and Application development teams to ensure alignment with remediation efforts
• Evaluate and recommend options for remediation and collect evidence to verify the Threat no longer exists or offer compensating controls
• Encourage and guide the development of personnel through coaching and specified training to accomplish organizational goals
• Identify, select and handle vendor relationships to ensure that service delivery and support meet performance and business objectives
• Evaluate and assess current and future needs of the organization continuously, make recommendations and develop business cases to substantiate requested changes
• Understand, align, and adhere to the regulatory and compliance requirements as they continually evolve
• Ensure timely responses to issues that arise through Audit or GRC and provide execution of timely escalation and or documentation of issues.
• Provide regular reporting on the effective of the Threat Hunt program to the Senior Leadership Team, IT and Risk Management
• Rely on experience and judgment to plan and accomplish goals leaning on a wide degree of creativity
**NOTE: Responsibilities of this role are not limited to the details above. **
Talents Needed for Success:
The ideal candidate would be a Security Professional who would have in addition to regular Security Professional abilities, both of the following skill sets:
• 7 years or more of Professional Level experience across one or more of the following technology domains/common body of knowledge: Networking, Firewalls, Server Administration, Encryption, Databases, Development, and Identity Access Management
• Threat Hunt Experience which may include the development and participation in the maturing and integration of the program along with analysis role development.
• Ability to build and lead a team in support of the end-to-end Threat Hunting program development and execution
• Understand business goals and drivers and translate those into an appropriate technical solution
• Gather technical requirements, assess capabilities and provide appropriate solution recommendations and adoption strategy
• Utilize threat intelligence, current trends, and vulnerability information to perform hunts on DTCC networks.
• Be able to incorporate Vulnerabilities and Pentest findings to help prioritize current findings and enrich initiatives in these areas.
• Contribute to Cyber Security discussions and decisions on overall network design and best approach for implementing new solutions and technology.
• Focus on continuous improvement practices as required to meet system resiliency imperatives
• Review IT management processes to ensure they are in line with information security policies and standards.
• Understanding of the Tactics, Techniques, and Procedures (TTPs) of Advanced Persistent Threat (APT) groups
• Monitor open source intelligence, daily email feeds, and other threat intelligence products in order to continually assess our defensive posture. Identify new open source intelligence (OSINT) sources.
• Hunt for and identify threat actor groups and their tactics, tools, and processes in the DTCC environment.
• Maintain industry training by keeping up-to-date on security technologies, threats, and risk mitigation techniques
• Assist other teams and participate in exercises to ensure potential incident processes are handled efficiently in a timely manner
• Monitor security platforms’ health for errors, misconfigurations, or performance alerts
• Consolidate and prioritize, tracking and reporting of vulnerabilities, weaknesses, and exposures
• Manage threat intel integrations, Penetration Test Findings and Vulnerability data feeds
• Threat Hunting team members will work in close collaboration with Security Operations, Incident Response and Red Team members.
• The candidate is required to possess hands-on, expert-level technical proficiency and technical certifications specific to a critical skill.
• Bachelors’ Degree or in-lieu of degree equivalent education, training and work-related experience
• 7+ years of experience in IT Security or IT Risk Management
• 3+ years as Team Lead or Manager
• 5+ years of combined experience with Threat Hunting
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
About DTCC
DTCC safeguards the financial markets and helps them run efficiently, in times of prosperity and crisis. We are uniquely positioned at the center of global trading activity, processing over 100 million financial transactions every day, pioneering industry-wide, post-trade solutions and maintaining multiple data and operating centers worldwide. From where we stand, we can anticipate the industry’s needs and we’re working to continually improve the world’s most resilient, secure and efficient market infrastructure. Our employees are driven to deliver innovative technologies that improve efficiency, lower cost and bring stability and certainty to the post-trade lifecycle.
Our work environment favors openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you’ll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It’s the chance to make a difference at a company that’s truly one of a kind.
Our Risk Management teams work to protect the safety and soundness of our systems and are responsible for identifying, managing, measuring and mitigating a spectrum of key risk types including credit, market, liquidity, systemic, operational and technology in all existing and new products, activities, processes and systems.
The Technology Risk Management department is responsible for setting strategic direction in the areas of IT Risk and Information Security. They are accountable for maintaining DTCC's corporate security policies and control standards and acting as an operational arm for monitoring threat intelligence.
Location/Region: Tampa, FL (33646)