Director IT Embedded Risk
The Depository Trust & Clearing Corporation (DTCC) · Jersey City, NJ · 2 wk ago
Information TechnologyFull-time
The Role
At DTCC, we are dedicated to fostering a thriving internal community and creating a workplace that reflects the diverse world we serve. We are committed to helping our employees grow and succeed.
Responsibilities
- Serve as the embedded risk advisor to IT Infrastructure leadership, providing credible challenge and practical guidance on strategic priorities, control decisions, and risk acceptance.
- Oversee risk and control activities across enterprise infrastructure domains, including networks, servers, storage, endpoints, data centers, and hybrid cloud platforms.
- Influence and strengthen infrastructure risk practices related to vulnerability management, incident response, access controls, data protection, and operational resilience.
- Partner across engineering, security, operations, and business teams to support the secure, stable, and high-performing delivery of critical technology services.
- Lead the development, enhancement, and monitoring of infrastructure controls, standards, procedures, and remediation plans in support of regulatory, audit, and policy requirements.
- Partner with Capability Owners to complete RCSA activities for IT Infrastructure, ensuring risks, controls, and remediation priorities are appropriately identified, assessed, documented, and escalated.
- Own and report key risk and control metrics, including KRIs and KCIs, to support transparency, decision-making, and accountability.
- Represent IT Infrastructure in governance forums, management committees, audits, and regulatory interactions as a senior point of contact for embedded risk matters.
- Provide strategic people leadership by setting direction for the team, building organizational capability, developing talent, and driving a culture of accountability, collaboration, and high performance.
- Support modernization, automation, and continuous improvement initiatives while helping ensure service quality and operational efficiency.
Qualifications
- Minimum of 10 years of related experience
- Bachelor's degree preferred and/or equivalent experience
- Talents Needed For Success: 10+ years of experience in infrastructure risk, infrastructure engineering, cybersecurity, or a related discipline.
- Strong understanding of enterprise infrastructure domains, including networks, servers, storage, endpoints, data centers, and hybrid cloud environments.
- Experience designing, assessing, or overseeing infrastructure controls and driving remediation in audit or regulatory-driven environments.
- Knowledge of core cybersecurity practices, including vulnerability management, incident response, access management, and data protection.
- Ability to define, interpret, and communicate KPIs, KRIs, and KCIs to technical, business, and governance stakeholders.
Benefits
- Competitive compensation, including base pay and annual incentive
- Comprehensive health and life insurance and well-being benefits, based on location
- Pension / Retirement benefits
- Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
- A flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).