Lead Cloud Security Engineer - Azure

Being a member of IT Cybersecurity & Platform Strategy team, the Sr. Associate IT Security Engineer - Cloud Security (Azure) will serve as a hands-on technical specialist focused on securing DTCC's Microsoft Azure cloud environment, while maintaining working knowledge of AWS and GCP to support multi-cloud security initiatives.

The Cybersecurity Engineering organization is responsible for delivering best-in-class security capabilities that protect DTCC's enterprise technology platforms and public cloud environments.

This role requires deep, recent experience with Azure-including native security services, Azure Policy, governance, identity, monitoring, and threat protection-and will partner closely with platform, architecture, and incident response teams to design, implement, and operate secure cloud solutions at enterprise scale.

This role directly supports DTCC's ability to secure, govern, and scale its Azure cloud platform safely, enabling business innovation while managing risk in a highly regulated environment. The Sr. Associate IT Security Engineer will play a key role in strengthening DTCC's cloud security posture and operational maturity across Azure and beyond.

Your Primary Responsibilities:

• Serve as a subject matter expert for Azure security, including identity, network, compute, data, monitoring, and governance controls.
• Design, implement, and maintain Azure security baselines, policies, and guardrails using Azure Policy and Policy-as-Code.
• Secure Azure subscriptions and workloads using native services such as Microsoft Defender for Cloud, Azure Monitor, Log Analytics, Sentinel, Key Vault, and Entra ID.
• Evaluate, onboard, and operationalize cloud security tooling, including Wiz, to enhance cloud posture management, risk visibility, and remediation workflows.
• Partner with platform and application teams to ensure secure-by-default architectures and adherence to DTCC security standards.
• Support incident response, threat investigation, and forensic analysis related to Azure cloud events.
• Collaborate across AWS and GCP teams to align multi-cloud security standards, controls, and patterns.
• Develop and maintain security documentation, runbooks, and operational procedures for cloud security services.
• Identify opportunities for security automation to reduce manual effort and improve control effectiveness.
• Stay current on emerging cloud security threats, Azure feature updates, and industry best practices.

• Minimum of 6 years of related experience
• Bachelor's degree preferred and/or equivalent experience

Talents Needed for Success

• 4-5 years of experience in cybersecurity engineering, with strong hands-on Azure experience (active within the last 12 months).
• Expert-level knowledge of Microsoft Azure architecture and security services.
• Strong experience with Azure Policy, governance, RBAC, PIM/PAM, logging, and monitoring.
• Familiarity with cloud security posture management (CSPM) concepts and tools, including Wiz.
• Working knowledge of AWS and Google Cloud Platform (GCP) security services.
• Experience supporting enterprise-scale cloud environments with regulated or high-availability workloads.
• Ability to analyze complex security problems and deliver practical, risk-based solutions.
• Coding or scripting skills with Python, PowerShell, or a combination of other advanced programming languages., + CISSP, CCSP, Security+, or equivalent
• Experience with infrastructure as code, automation, or scripting (e.g., Terraform, PowerShell, Python).
• Familiarity with industry security frameworks and standards (e.g., NIST, CIS, ISO 27001).

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve. The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance., With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC's subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC's Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at www.dtcc.com or connect with us on LinkedIn, X, YouTube, Facebook and Instagram. DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you'll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It's the chance to make a difference at a company that's truly one of a kind.