Cybersecurity Incident Response Associate

Incident Response Associate

Are you ready to make an impact at DTCC? 

Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We're committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.

Pay and Benefits: 

• Competitive compensation, including base pay and annual incentive. 
• Comprehensive health and life insurance and well-being benefits, based on location. 
• Pension / Retirement benefits 
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being. 
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee). 

The impact you will have in this role: 

As a member of the Cyber Monitoring & Incident Response Team at DTCC, you directly contribute to the security and stability of the global financial system. The mission of the CMIRT is to protect the organization from external cyber threats and to respond to and manage cyber incidents. Through multiple teams located in different geographic locations, the team performs round-the-clock monitoring and leads cyber incident response, digital forensics, and eDiscovery functions. As a critical component of the risk organization, the team’s performance and initiatives are scrutinized directly by the Executive Committee, Board of Directors, and numerous industry regulators. As a result of our critical mission, our team must maintain the highest standards of performance and ethical behavior. 

Principles that apply to every member of the CMIRT: 

• Have Integrity - Tell the truth, protect the secrets that we are trusted with, and honor your commitments. 
• Be Present – Commit to the team by showing up on time and being prepared.  
• Communicate – Communicate regularly and be proactive. 
• Take Ownership – Regardless of title or position, own the outcome of the mission. 
• Always Be Learning – Cyber security is not static, and neither is the CMIRT.  
• Make Honest Mistakes – Mistakes will be made. Own them and learn from them. 

Your Primary Responsibilities: 

Reporting to the CMIRT Regional Manager and working with technical leads and other associates, you are responsible for detecting, investigating, and responding to cyber security events in the organization as well as handling technical projects. You are a member of the Cyber Monitor Incident Response Team (CMIRT) and as a result may be tasked with responding to cyber incidents outside of normal work hours.

Expectations for the Senior Associate – Quality Assurance and Quality Control (QA/QC) Program: 

• Execute quality assurance reviews of cyber security incidents, alerts, investigations, and response activities. 
• Validate adherence to approved job aids, playbooks, governance standards, and documentation requirements. 
• Perform targeted QA/QC deep dive reviews based on risk, severity, trends, or leadership direction. 
• Identify recurring gaps, quality issues, and systemic weaknesses, document findings clearly.
• Track QA/QC findings, corrective actions, and remediation status through to closure.
• Prepare QA/QC reports and metrics for leadership, audit, and operational review. 
• Partner with Cyber Offensive, Defensive, Threat Hunt teams to drive continuous improvement.
• Provide constructive feedback and guidance to analysts to improve investigation quality. 
• Support audit, regulatory, and internal assurance requests by providing QA/QC evidence and summaries. 
• Participate in training, exercises, and process improvement initiatives. 

NOTE: The Primary Responsibilities of this role are not limited to the details above. 

Qualifications: 

• At least 2-3 years of experience in Cyber Security Operations, Incident Response, or a related security role.
• Bachelor’s degree in information security, Computer Science, or equivalent professional experience.

Talents Needed for Success: 

• Strong knowledge of incident response processes, investigation workflows, and security operations.
• Hands-on experience with security tools such as SIEM, EDR, email security, and case management platforms. 
• Strong understanding of quality assurance and concepts within technology and cyber security operations. 
• Ability to analyze investigations and produce clear, concise written reports with actionable recommendations. 
• Demonstrated ability to communicate complex technical findings to both technical and non technical stakeholders.
• Strong attention to detail and ability to identify gaps, inconsistencies, and risk themes.
• Ability to manage multiple QA/QC reviews and priorities with minimal guidance. 
• Strong sense of ownership and commitment to improving operational quality and maturity.
• Ability to work collaboratively in a fast paced, high performing cyber security environment.

Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. 

DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork.  When you join our team, you’ll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It’s the chance to make a difference at a company that’s truly one of a kind.

Learn more about Clearance and Settlement by clicking here.

Experience Level