🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Cookies & analytics consent
We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.
Read how we use data in our Privacy Policy and Terms of Service.
🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
DTCC Candidate Experience Site • Coppell, Texas, United States
Role & seniority: Application Security Assurance specialist (Technology Risk Management) | 4+ years experience; Bachelor’s preferred or equivalent
Stack/tools: Manual application penetration testing (web apps & APIs); Burp Suite; OWASP ZAP; Secure SDLC; secure coding practices; risk assessments and vulnerability remediation
Perform Ethical Application Penetration Testing (EAPT) on web apps and APIs; detail vulnerabilities and remediation with developers
Conduct security assessments, risk analysis, vulnerability testing, and security reviews; coordinate security initiatives across DTCC teams
Maintain secure coding guidelines, monitor risk, support testing across a large portfolio (~300 apps/year), and liaise with AppSec teams and developers
Must-have skills: 4+ years in app security; hands-on web/api pentesting; proficiency with Burp Suite and ZAP; knowledge of secure coding, SDLC, and regulatory requirements; excellent written/verbal communication; collaboration across teams
Nice-to-haves: Security certifications (e.g., Penetration Testing Professional, Licensed Penetration Tester, Practical Web Pentest Associate); exposure to threat intelligence and emerging AppSec trends
Location & work type: Hybrid/flexible model (3 days onsite, 2 remote; onsite days Tue–Wed plus a third day per team/employee); US locations; full-time role with DTCC benefits
Notes: Role focuses on Application Security within DTCC’s TRM and AppSec programs
Are you ready to make an impact at DTCC?
Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.
The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential, building infrastructure capabilities to meet client needs and implementing data standards and governance.
With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC’s subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC’s Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at www.dtcc.com or connect with us on LinkedIn, X, YouTube, Facebook and Instagram. DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you’ll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It’s the chance to make a difference at a company that’s truly one of a kind. Learn more about Clearance and Settlement by clicking here.
Serves as a dedicated technology resource for advancing DTCC’s business opportunities and providing industry thought leadership for leveraging new technology. The goal of this new department is to partner internally with IT, our business and regulatory divisions and externally with clients, regulators, and fintech vendors, to help build new platforms and business models to advance DTCC’s mission to support the financial markets.