Incident Response Associate (6am to 3pm Shift)

motional well-being.

• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

The impact you will have in this role:

As a member of the Cyber Monitoring & Incident Response Team at DTCC, you directly contribute to the security and stability of the global financial system. The mission of the CMIRT is to protect the organization from external cyber threats and to respond to and manage cyber incidents. Through multiple teams located in different geographic locations, the team performs round-the-clock monitoring and leads cyber incident response, digital forensics, and eDiscovery functions. As a critical component of the risk organization, the team's performance and initiatives are scrutinized directly by the Executive Committee, Board of Directors, and numerous industry regulators. As a result of our critical mission, our team must maintain the highest standards of performance and ethical behavior.

Your Primary Responsibilities:

Reporting to the Cyber Monitoring & Incident Response Team Regional Manager and working with technical leads and other associates, you are responsible for detecting, investigating, and responding to cyber security events in the organization as well as handling technical projects. You are a member of the Cyber Monitor Incident Response Team (CMIRT) and as a result may be tasked with responding to cyber incidents outside of normal work hours.

Expectations for the CMIRT Associate:

• Monitor, Detect, Analyze, and respond to cyber security events.

• Perform eDiscovery and other technical tasks.

• Independently lead investigations and technical tasks.

• Train and mentor junior staff members.

• Participate and contribute to training, exercises, and process improvement programs.

• Occasionally travel to conferences, training, and other DTCC offices (up to 10%).

• Participate in on-call rotation and occasional after-hours work.

Principles that apply to every member of the CMIRT:

• Have Integrity -Tell the truth, protect the secrets that we are trusted with, and honor your commitments.

• Be Present - Commit to the team by showing up on time and being prepared.

• Communicate - Communicate regularly and be proactive.

• Take Ownership - Regardless of title or position, own the outcome of the mission.

• Always Be Learning - Cyber security is not static, and neither is the CMIRT.

• Make Honest Mistakes - Mistakes will be made. Own them and learn from them.

****NOTE: The Primary Responsibilities of this role are not limited to the details above. ****

Qualifications:

• At least two (2) years previous experience as a SOC analyst or similar role.

• Bachelor's degree preferred or equivalent experience.

• Must be amenable to work 6am to 3pm shift

Talents Needed for Success:

• Have at least two (2) years previous experience as a SOC analyst or similar role.

• Knowledge on Incident response process, security log analysis.

• Have hands-on experience with modern security tools SIEM, EDR, IDS, NBA. Knowledge in Cloud security and DFIR best practices.

• Skill on at-least one scripting language is advantageous.

• Demonstrate the ability to produce written reports including detailed analysis and recommendations.

• Demonstrate the ability to convey complex technical concepts to both technical and non-technical audiences.

• Beginner to intermediate level of Malware analysis skills in both sandbox and manual methods.

• Demonstrate the ability to take high-level requirements and with some guidance produce and execute an action plan to accomplish tasks.

• Demonstrate the ability to prioritize and manage multiple tasks with some guidance.

• Demonstrate a strong desire to achieve and contribute to a high-performing team.

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

About Us

With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC's subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC's Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at https://www.dtcc.com or connect with us on LinkedIn , X , YouTube , Facebook and Instagram .

DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you'll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It's the chance to make a difference at a company that's truly one of a kind.

Learn more about Clearance and Settlement by clicking here .

About the Team

The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance.