Lead Associate Principal, Security Engineering

To be considered for this position, applications and resumes are accepted only through our careers site by directly applying to the posted job. We do not accept unsolicited resumes or sales solicitations from staffing agencies. Any OCC employee wishing to submit a referral must do so through their Workday account. Any resume submitted outside of an active job posting will not be considered for employment.

What You'll Do:

Join our dynamic Security Engineering team as a Lead Associate Principal Cloud Security Engineer and make a significant impact on our organization's cybersecurity posture. In this role, you'll be responsible for driving critical security related projects, managing day-to-day cloud security engineering tasks, cloud-based initiatives, and DevOps development for security related endeavors. You will help manage privileged access systems that protect our most critical assets, implement AI-based security capabilities, and help shape our security architecture. This position offers excellent growth opportunities as you'll work with best-in-class technologies while collaborating with cross-functional teams to solve complex security challenges. If you're passionate about cybersecurity and seeking a role where your expertise directly strengthens organizational resilience, this is an ideal next step for your career.

Primary Duties and Responsibilities:

To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.

• Maintain Hybrid Infrastructure Integrity Ensure the operational integrity of cloud and on-premises infrastructure throughout its lifecycle, including patching, version control, and system upgrades. Establish and enforce security as code principles throughout the environment in alignment with OCC/Security Standards.

• Manage ongoing critical cloud service rollouts and automation Lead end-to-end deployment of mission-critical cloud services while developing and maintaining automation pipelines that streamline provisioning, configuration, and compliance enforcement across cloud environments.

• Assist in the deployment of new technologies and infrastructure aligned with security strategy Partner with architecture and engineering teams to evaluate, pilot, and deploy emerging cloud technologies, ensuring all implementations adhere to established security frameworks, organizational risk tolerance, and long-term strategic vision.

• Support, grow, and advance current processes and tools Continuously assess existing security processes and toolsets, driving improvements that mature the organization's cloud security posture through automation, documentation, and operational efficiency. Develop and implement system improvements that expand automated integrations and accelerate detection and remediation of functional and technical issues.

• Demonstrate in-depth knowledge of security controls and standards across cloud security, architecture, and security testing Apply expertise in industry frameworks (CIS, NIST CSF, CSA CCM) to design, implement, and validate security controls spanning cloud architecture, identity and access management, data protection, and security testing including vulnerability assessments and penetration testing.

• Manage multiple complex projects simultaneously under strict deadlines Prioritize and execute across a dynamic portfolio of concurrent security initiatives, consistently delivering high-quality outcomes on time while maintaining rigorous attention to detail and adherence to organizational standards.

• Serve as primary point of contact across cross-functional teams Act as the central liaison between security, engineering, operations, and business stakeholders throughout the full project lifecycle. Ensure alignment, clear communication, and accountability at every stage.

Supervisory Responsibilities:

• None

Qualifications:

The requirements listed are representative of the knowledge, skill, and/or ability required.  Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.

• Seven Years’ Experience with Security Engineering activities and testing.

• Five years’ of experience with DevOps processes

• Five years’ experience with AWS architecture and services.

• Advanced knowledge in identity and authentication architectures across cert-based, OAuth2/OIDC, IAM, AD, k8s, and Kerberos implementations

• Advanced knowledge and experience designing secure CI/CD and IaC ecosystems with Terraform, Ansible, and Jenkins at enterprise scale.

• Effective oral and written communication, analytical, judgment and collaboration skills.

• Ability to effectively communicate in both formal and informal review settings with all levels of management.

• Ability to work with local and remote IT staff/management, vendors and consultants.

• Ability to work independently and possess strong organizational skills.

Technical Skills:

• Proficiency providing operational and engineering support for one or more of the following: CyberArk, HashiCorp Vault, Active Directory Certificate Services (ADCS), HSMs, and Public Key Infrastructure (PKI).

• Expertise in DevOps and DevSecOps practices and tooling. Hands-on expertise across CI/CD pipeline development and automation tools such as Jenkins, GitHub Actions, or GitLab CI, leveraging infrastructure-as-code frameworks (Terraform, Ansible) and scripting languages (Python, Groovy, Bash, GoLang) to embed security controls throughout the software development lifecycle.

• Expert level knowledge of privileged access management methodologies and techniques for on-prem and Cloud implementation.

Education and/or Experience:

• Experience in one or more of the following disciplines: security operations, development, engineering, or architecture

• Experience supporting privileged access management and access controls programs.

• Professional or personal experience using AI coding agents such as OpenAI Codex, Claude Code, or Gemini CLI.

Certificates or Licenses:

• None

About Us

The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com.

Benefits

A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:

• A hybrid work environment, up to 2 days per week of remote work
• Tuition Reimbursement to support your continued education
• Student Loan Repayment Assistance
• Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely
• Generous PTO and Parental leave
• 401k Employer Match
• Competitive health benefits including medical, dental and vision

Visit https://www.theocc.com/careers/thriving-together for more information.

Compensation

• The salary range listed for any given position is exclusive of fringe benefits and potential bonuses. If hired at OCC, your final base salary compensation will be determined by factors such as skills, experience and/or education.
• In addition, we believe in the importance of pay equity and consider internal equity of our current team members as part of any final offer.
• We typically do not hire at the maximum of the range in order to allow for future and continued salary growth. We also offer a substantial benefits package as noted on www.theocc.com/careers
• All employees may be eligible for a discretionary bonus. Discretionary bonuses are based on various factors, including, but not limited to, company and individual performance and are not guaranteed.

Salary Range

Incentive Range

This position is eligible for an annual discretionary incentive compensation award, for which the target range is listed above (see Incentive Range). The amount of such award, if any, will be based on various factors, including without limitation, both individual and company performance.

Step 1
When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume.  

Step 2
You will receive an email notification to confirm that we've received your application.

Step 3
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location. 

For more information about OCC, please click here.

OCC is an Equal Opportunity Employer