Qualifications
Responsibilities
Benefits
To be considered for this position, applications and resumes are accepted only through our careers site by directly applying to the posted job. We do not accept unsolicited resumes or sales solicitations from staffing agencies. Any OCC employee wishing to submit a referral must do so through their Workday account. Any resume submitted outside of an active job posting will not be considered for employment.
What You'll Do:
The Manager will optimize security operations through advanced alert tuning and reduction initiatives. This role implements automation and AI solutions to streamline threat detection processes, serves as Tier 3 support for incident response investigations, ensures regulatory compliance, and delivers actionable security metrics to leadership.
Primary Duties and Responsibilities:
To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.
Perform duties across several Cyber disciplines, activities may include:
Incident Management and Security Analysis:
Lead cyber security incident responders in response activities including investigation, coordination, review, closure, and reporting.
Oversee technical analysis of security events while coordinating incident response activities with internal and external teams.
Security Monitoring & Analysis:
Tier-3 support of alerts and validating tuning requests.
Alert tuning and reduction.
Lead Automation/AI efforts to optimize security operations effort.
Ensure accurate documentation.
Supervisory Responsibilities:
Lead 4-6 employees and contingent labor professional for the cyber monitoring and analysis function within Cyber Defense.
Manage team effectively in delivery of incident resolution, project tasks, compliance milestones, and systems implementations.
Perform talent management functions, including performance reviews, direct feedback, and other administrative functions as required.
Confer with and advise subordinates on administrative policies and procedures, technical problems, priorities, and methods.
Promote employee development by conducting career-planning sessions with staff and selecting and scheduling employee training classes, conferences, and seminars
Review with management, scheduling and training opportunities that fulfill role requirements for team members.
Qualifications:
The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.
Team Leadership experience, taking initiative; providing and following through on solutions across various skillsets.
Proven team player will be working primarily with other staff members, on both long-term projects and rapid response under tight deadlines.
Experience in SOAR, Splunk, Symantec/Netskope DLP, CrowdStrike. Ability to create/tune alerts/rules independently.
Effective and excellent oral and written communication, analytical, judgment and consultation skills.
Ability to work independently and possess strong project management skills.
Technical Skills:
Demonstrated proficiency in:
Advance usage of Splunk SIEM, Splunk SOAR, CrowdStrike, Symantec/Netskope DLP.
Incident Response playbook development managing incident analysis and remediation.
Security Orchestration and Automated Response tools and concepts.
Some experience:
Scripting and development activities to appropriately leverage Application Programing Interfaces (APIs) to optimize integrations between disparate security monitoring and analysis devices.
Knowledge of Generative and Prompt A.I.
Education and/or Experience:
Minimum five years hands-on security operations experience including interdisciplinary experience with four or more of the following: Cyber Threat Analysis, Digital Computer Forensics, Incident Response, Application Security, Operating Systems Security, Cryptographic Controls, Networking, Programming languages, Incident Response.
Technical experience and comprehensive knowledge of threat actor capabilities, intentions, methodologies, and motives.
Familiarity with computer network exploitation and network attack methodologies while maintaining an understanding of the relationship these activities have with the financial services industry and critical infrastructure.
Industry knowledge of leading-edge security technologies and methods.
Shift work and working in an on-call response capacity is required including availability for 24 x 7 on-call support responsibilities.
Previous people/project management experience is a plus.
Certificates or Licenses:
None required
Benefits
A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:
Visit https://www.theocc.com/careers/thriving-together for more information.
Compensation
Salary Range
$132,500.00 - $218,300.00Incentive Range
8% to 15%This position is eligible for an annual discretionary incentive compensation award, for which the target range is listed above (see Incentive Range). The amount of such award, if any, will be based on various factors, including without limitation, both individual and company performance.
Step 1
When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume.
Step 2
You will receive an email notification to confirm that we've received your application.
Step 3
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.
For more information about , please click here.
About Options Clearing Corporation
Similar Jobs

More Jobs at Options Clearing Corporation
More Information Technology Jobs
