Lead Platform Engineer

offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

The impact you will have in this role:

Being a member of the Mainframe Security Engineering team you will be part of the Mainframe Platform Engineering area, which provides engineering support for mainframe software and hardware, and for mainframe storage, network, performance, CICS, MQ and security functions.

The Mainframe Security Engineering team manages the RACF (security) databases and their settings and interrelationships, manages cryptography hardware, settings and keys, provides automation for security administration (via utilities and developed code), manages mainframe-resident certificates, works with vendors and DTCC support teams to track and remediate security software defects, provides strategic security administration to advance mainframe security objectives, performs tactical security administration for infrastructure-related objects, attributes and permissions, works with Technology Risk Management and area management to prioritize security objectives, provides security assistance and education to mainframe support areas, supports data and processing interactions with non-mainframe security infrastructure, drives changes in support of new security policies, and tests established controls to ensure security rules are properly functioning.

Your Primary Responsibilities:

• Understand and implement RACF administration in a highly granular SYSPLEX environment across multiple RACF databases

• Perform analysis, design, documentation, testing, implementation and on-going support for the infrastructure mainframe security environment.

• Plan and implement assignments by due dates, without detailed supervision.

• Maintain high quality and consistency for security settings, rules and procedures.

• Provide recommendations for the security settings of mainframe software products and features.

• Provide guidance and follow-through for continuous improvement to mainframe security.

• Learn to configure z/Secure, develop reporting, and enhance automation using REXX, SQL, SAS, and CARLa.

• Participate in team on-call coverage rotation, which includes tactical security administration and provide support on weekends

• Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; advances appropriately

• Participant in disaster recovery tests on weekends

• Participate in audits and penetration testing.

**NOTE: The Primary Responsibilities of this role are not limited to the details above. **

Qualifications:

• Minimum of 8 years of related experience

• Bachelor's degree preferred or equivalent experience.

• CISSP certification is not required but a plus

Talents Needed for Success:

• Familiarity with RACF on z/OS a plus with willingness to learn these technologies, including both administration and technical support (answering questions, resolving incidents, debugging problems, etc.)

• Knowledge of one or more of: RACF certificate management, Integrated Cryptographic Service Facility, RACF Remote Sharing Facility, RACF security for CICS, RACF security for IAM (Identity & Access Management products), RACF security for MQ, RACF security for WebSphere Application Server, RACF security for IP networks, RACF security for Unix System Services, zSecure.

• Ability to program or learn to program in one or more of: Ansible, CARLa, REXX, SAS, SQL

• Ability to work persistently and thoroughly with unfamiliar and complex subject material.

• Expertise with MS Excel is a plus

The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.