Are you ready to make an impact at DTCC?

Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.

The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance.

Pay and Benefits:

Competitive compensation, including base pay and annual incentive
Comprehensive health and life insurance and well-being benefits, based on location
Pension / Retirement benefits
Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

The Impact you will have in this role:

Being a member of CISO team and as a Security Architect for the Cybersecurity Architecture Team, you will be an ambassador for the shift in the technology culture at DTCC to a Security-First culture, interacting with stakeholders to create, collaborate, and influence changes in control standards, creating design architecture documentation and evaluating PoC (Proof of Concept) of candidate designs prior to deployment, and furthering the maturity of DTCC’s security tooling. This role will work closely with application development and engineering teams across the organization to integrate security into the product lifecycle from design through deployment. The Security Architect is a subject matter expert in defining security requirements, performing security assessments, and providing remediation guidance and advice. The Security Architect should expect to be pulled in at short notice to evaluate a new system, review a proposed application change, or supply guidance on application security/coding best practices.

Your Primary Responsibilities:

Embed security architecture into Azure-native and hybrid cloud solutions from design through deployment.
Define and publish reusable security patterns across Microsoft ecosystems (Azure, Power Platform, Copilot Studio).
Partner with platform and engineering teams to ensure secure adoption of AI, low-code, and data governance capabilities.
Mentor engineering teams on security architecture, secure coding, and cloud-native control implementations.
Drive consistency through governed, scalable security patterns that reduce the need for per-integration reviews.

**NOTE: The Primary Responsibilities of this role are not limited to the details above. **

Qualifications:

5+ years of cybersecurity work experience
Strong background in cloud security architecture, with emphasis on Microsoft Azure.
Experience working with enterprise engineering teams in agile and DevSecOps environments.
Bachelor’s degree preferred (or equivalent experience).

Talents Needed for Success:

Cloud & Platform Security

Deep experience with Microsoft Azure security architecture (IAM, networking dependencies, PaaS security, RBAC, Conditional Access).
Experience implementing security controls across hybrid and multi-cloud environments.

Microsoft Ecosystem Expertise

Microsoft Purview (data governance, data classification, DLP, insider risk concepts).
Power Platform security model:
- Environment strategy, tenant isolation, connector governance
- Data loss prevention (DLP) policies
Copilot Studio / AI platform security considerations:
- Secure plugin/integration design
- Prompt and data protection considerations
- Identity-aware access control patterns

Application & API Security

Strong understanding of authentication, authorization (OAuth2/OIDC), and token-based access models.
Secure API and integration patterns, including RESTful services and event-driven architectures.
Knowledge of OWASP Top 10, SAMM, and application security testing approaches (SAST, DAST, SCA).

DevSecOps & Engineering Practices

Experience integrating security into CI/CD pipelines and cloud-native development workflows.
Familiarity with infrastructure-as-code security and policy-as-code enforcement.

Architecture & Governance

Experience creating reusable security patterns and reference architectures.
Ability to define enforceable standards that align with governance bodies (e.g., Architecture Review Boards).
Strong ability to translate risk into actionable engineering guidance.

Core Competencies

Strong analytical and problem-solving skills.
Ability to communicate complex technical concepts to both technical and non-technical stakeholders.
Excellent written, presentation, and collaboration skills.

The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC’s subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC’s Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at www.dtcc.com or connect with us on LinkedIn, X, YouTube, Facebook and Instagram.

DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you’ll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It’s the chance to make a difference at a company that’s truly one of a kind.

Learn more about Clearance and Settlement by clicking here.

Principal Azure Security Architect

Job Description