Depository Trust & Clearing Corporation
Associate Director Platform Engineering
Depository Trust & Clearing Corporation, Dallas, Texas, United States, 75215
Are you ready to make an impact at DTCC?
Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.
The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance.
Pay and Benefits:
Competitive compensation, including base pay and annual incentive
Comprehensive health and life insurance and well-being benefits, based on location
Pension / Retirement benefits
Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well‑being.
DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).
The Impact you will have in this role: The Platform Engineer, Security Engineering, is an Associate Director role within DTCC’s very hardworking Security Engineering and Zero Trust Network Team. Working alongside our stellar security Engineering and Operations Teams, you will be responsible for the design, development and deployment of security solutions that form the foundation of DTCC’s Global Network security posture. You will be charged with ensuring alignment with industry guidelines, identifying weaknesses and dependencies within our network security solution as part of the network fabric. Additionally, they will lead the initiatives securing our Campus and Datacenter infrastructures, propose solutions, working with Network Engineering and Architecture to devise effective policies, tools, system architectures and highly resilient technology strategies. Also devising comprehensive observability and defense in‑depth strategies.
The ideal candidate demonstrates a strong commitment to developing secure, scalable, and resilient network solutions. This individual is an experienced networking and systems communications professional with comprehensive knowledge of modern application stacks and architectures, exceptional technical and collaborative abilities, and a proven track record of delivering robust enterprise security technologies within large organizations or service provider environments.
Your Primary Responsibilities:
Design, deploy, and manage network security solutions using Palo Alto Firewalls, Guardicore Centra microsegmentation, and Zscaler Zero‑Trust across campus, datacenter, and cloud environments.
Develop and enforce Guardicore microsegmentation policies: analyze network traffic flows, identify critical assets, create and optimize segmentation rules to protect applications and workloads.
Administer Palo Alto firewalls, including rule base management, VPN setup, NAT, upgrades, troubleshooting, and routine maintenance.
Configure Zscaler ZIA, ZPA, and ZDX, including PAC file management and SSL interception.
Work with IT, architecture, and business teams to design secure network architectures, integrate security controls, and ensure seamless delivery of solutions.
Monitor for anomalous activity, conduct packet captures and traffic analysis, and respond to incidents using advanced troubleshooting and microsegmentation insights.
Produce technical documentation, policies, runbooks, and visual diagrams for all deployed security solutions.
Train and mentor IT and security teams on microsegmentation, firewall administration, and Zero Trust principles.
Stay up-to-date with emerging security trends and technologies; recommend ongoing improvements to DTCC’s security posture.
Serve as a key escalation point for critical network security issues, production service outages, and advanced problem solving with vendors.
Secure multiple cloud platforms (GCP, Azure, private cloud) by designing VPCs, subnets, security groups, and access controls, and integrating robust engineering approaches.
Participate in cross-functional meetings and project teams, collaborating with stakeholders to deliver resilient security solutions.
Handle configuration changes, software updates, compliance requirements, and proactively identify risks and opportunities for better security.
Qualifications:
Minimum of 8 years of related experience
Bachelor's degree preferred or equivalent experience
Talents Needed for Success:
Minimum 7 years’ experience in network security engineering or network administration roles.
Palo Alto certifications preferred.
CISSP certifications are a plus.
Certifications preferred: PCNSA (Palo Alto Networks Certified Network Security Administrator), CISSP, and cloud certifications (Azure, AWS, GCP) is a plus.
Deep expertise in Palo Alto Firewall administration, configuration, troubleshooting, and policy management.
Proven hands‑on experience with Guardicore Centra microsegmentation and Zscaler Zero‑Trust platforms, including ZIA, ZPA, and ZDX.
Good knowledge in cloud security for Azure, AWS, and GCP; experience designing and securing VPCs, subnets, and controls.
Familiarity with monitoring and observability tools such as Netscout, NetBrain, and SolarWinds.
Understanding and/or working knowledge of VBlock, Nutanix, CaaS, IaaS, network as a service, storage solutions, and mainframe environments.
Scripting skills (Python, PowerShell) and deep knowledge of network protocols (TCP/IP, HTTP, SSL, etc.) are a plus.
Experience influencing senior leadership, business and technical collaborators, and peer groups, while driving enterprise‑scale portfolios or programs in large organizations.
Prior financial services experience is highly preferred; alternatively, must have prior experience working in a regulated environment, managing or partnering with industry regulators, and leading and maintaining a very strong control environment.
Familiarity with regulatory and industry security frameworks; prior experience in financial services or regulated environments is highly desirable.
Excellent analytical, troubleshooting, and documentation skills, inclusive of written and visual diagrams.
The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
#J-18808-Ljbffr
The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance.
Pay and Benefits:
Competitive compensation, including base pay and annual incentive
Comprehensive health and life insurance and well-being benefits, based on location
Pension / Retirement benefits
Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well‑being.
DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).
The Impact you will have in this role: The Platform Engineer, Security Engineering, is an Associate Director role within DTCC’s very hardworking Security Engineering and Zero Trust Network Team. Working alongside our stellar security Engineering and Operations Teams, you will be responsible for the design, development and deployment of security solutions that form the foundation of DTCC’s Global Network security posture. You will be charged with ensuring alignment with industry guidelines, identifying weaknesses and dependencies within our network security solution as part of the network fabric. Additionally, they will lead the initiatives securing our Campus and Datacenter infrastructures, propose solutions, working with Network Engineering and Architecture to devise effective policies, tools, system architectures and highly resilient technology strategies. Also devising comprehensive observability and defense in‑depth strategies.
The ideal candidate demonstrates a strong commitment to developing secure, scalable, and resilient network solutions. This individual is an experienced networking and systems communications professional with comprehensive knowledge of modern application stacks and architectures, exceptional technical and collaborative abilities, and a proven track record of delivering robust enterprise security technologies within large organizations or service provider environments.
Your Primary Responsibilities:
Design, deploy, and manage network security solutions using Palo Alto Firewalls, Guardicore Centra microsegmentation, and Zscaler Zero‑Trust across campus, datacenter, and cloud environments.
Develop and enforce Guardicore microsegmentation policies: analyze network traffic flows, identify critical assets, create and optimize segmentation rules to protect applications and workloads.
Administer Palo Alto firewalls, including rule base management, VPN setup, NAT, upgrades, troubleshooting, and routine maintenance.
Configure Zscaler ZIA, ZPA, and ZDX, including PAC file management and SSL interception.
Work with IT, architecture, and business teams to design secure network architectures, integrate security controls, and ensure seamless delivery of solutions.
Monitor for anomalous activity, conduct packet captures and traffic analysis, and respond to incidents using advanced troubleshooting and microsegmentation insights.
Produce technical documentation, policies, runbooks, and visual diagrams for all deployed security solutions.
Train and mentor IT and security teams on microsegmentation, firewall administration, and Zero Trust principles.
Stay up-to-date with emerging security trends and technologies; recommend ongoing improvements to DTCC’s security posture.
Serve as a key escalation point for critical network security issues, production service outages, and advanced problem solving with vendors.
Secure multiple cloud platforms (GCP, Azure, private cloud) by designing VPCs, subnets, security groups, and access controls, and integrating robust engineering approaches.
Participate in cross-functional meetings and project teams, collaborating with stakeholders to deliver resilient security solutions.
Handle configuration changes, software updates, compliance requirements, and proactively identify risks and opportunities for better security.
Qualifications:
Minimum of 8 years of related experience
Bachelor's degree preferred or equivalent experience
Talents Needed for Success:
Minimum 7 years’ experience in network security engineering or network administration roles.
Palo Alto certifications preferred.
CISSP certifications are a plus.
Certifications preferred: PCNSA (Palo Alto Networks Certified Network Security Administrator), CISSP, and cloud certifications (Azure, AWS, GCP) is a plus.
Deep expertise in Palo Alto Firewall administration, configuration, troubleshooting, and policy management.
Proven hands‑on experience with Guardicore Centra microsegmentation and Zscaler Zero‑Trust platforms, including ZIA, ZPA, and ZDX.
Good knowledge in cloud security for Azure, AWS, and GCP; experience designing and securing VPCs, subnets, and controls.
Familiarity with monitoring and observability tools such as Netscout, NetBrain, and SolarWinds.
Understanding and/or working knowledge of VBlock, Nutanix, CaaS, IaaS, network as a service, storage solutions, and mainframe environments.
Scripting skills (Python, PowerShell) and deep knowledge of network protocols (TCP/IP, HTTP, SSL, etc.) are a plus.
Experience influencing senior leadership, business and technical collaborators, and peer groups, while driving enterprise‑scale portfolios or programs in large organizations.
Prior financial services experience is highly preferred; alternatively, must have prior experience working in a regulated environment, managing or partnering with industry regulators, and leading and maintaining a very strong control environment.
Familiarity with regulatory and industry security frameworks; prior experience in financial services or regulated environments is highly desirable.
Excellent analytical, troubleshooting, and documentation skills, inclusive of written and visual diagrams.
The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
#J-18808-Ljbffr