Senior Network Security Engineer - WAF & Edge Security

Are you ready to make an impact at DTCC?

Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We're committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.

Pay and Benefits:

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

The impact you will have on this role:

As a Senior Security Engineer - Network & WAF, you will serve as the hands-on technical lead and subject-matter expert for Akamai edge security at DTCC. You will own the architecture, deployment, tuning, and ongoing optimization of Akamai WAF solutions protecting DTCC's internet-facing applications.

You will play a critical role in strengthening DTCC's Zero Trust Network Security posture, reducing application-layer risk, improving signal quality, and ensuring secure, scalable delivery of web services in a highly regulated environment.

This role is ideal for a senior-level engineer who thrives in deep technical ownership, complex problem-solving, and cross-functional collaboration.

Your Primary Responsibilities:

• Lead the architecture, deployment, lifecycle management, and advanced tuning of Akamai WAF solutions to protect DTCC web applications.
• Act as the Akamai WAF technical lead and escalation point, owning policy design, staging validation, production rollout, and ongoing optimization.
• Provide expert technical guidance to Network Security Engineers across perimeter security technologies including:
  • Akamai (WAF, CDN)
  • IDS/IPS platforms (e.g., Snort, Cisco Firepower, FireEye)
  • Cisco Stealthwatch (SNA)
  • DLP solutions
  • Zscaler
• Partner closely with Security Architecture and the Cyber Threat Fusion Center to:
  • Identify security gaps
  • Improve existing controls
  • Design, implement, and operate new perimeter security capabilities aligned with Zero Trust principles.
• Develop and maintain security standards, policies, procedures, and technical documentation related to WAF, IDS/IPS, and network perimeter security.
• Contribute to the strategy and technical roadmap for Network Perimeter and Edge Security.
• Analyze security alerts and events, perform root-cause analysis, and recommend effective mitigation and remediation strategies.
• Identify and drive automation opportunities to improve operational efficiency, reduce manual effort, and enhance detection and response capabilities.
• Collaborate with application, infrastructure, and cloud teams to support secure onboarding of new applications and services.

**NOTE: The Responsibilities of this role are not limited to the details above. **

Qualifications:

• Bachelor's degree and/or equivalent experience
• Minimum 8 years of Cybersecurity related experience with a strong focus on network and perimeter security

Talents Needed for Success:

• 8+ years of hands-on cybersecurity engineering experience, with deep expertise in Network Security and Zero Trust architectures.
• Strong, hands-on experience with Akamai, including:
• WAF policy design and tuning
• CDN and edge security concepts
• Managing false positives and rule customization
• Experience with IDS/IPS, DLP, and secure web gateway technologies.
• Solid understanding of cloud and SaaS security controls, including Azure AD and Azure environments.
• Strong knowledge of network protocols and web architectures, including DNS, TCP/IP, HTTP/S, and firewall technologies.
• Experience working with SIEM tools, packet analysis, and security event investigation.
• Proven ability to work independently as a senior technical lead while collaborating effectively with cross-functional stakeholders.
• Strong analytical, critical-thinking, and problem-solving skills.
• Excellent communication skills with the ability to explain complex security concepts clearly.
• Industry certifications such as CISSP or other relevant cybersecurity certifications are preferred.

The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

About Us

With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC's subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC's Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at or connect with us on LinkedIn , X , YouTube , Facebook and Instagram .

DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork. When you join our team, you'll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It's the chance to make a difference at a company that's truly one of a kind.

Learn more about Clearance and Settlement by clicking here .

About the Team

Serves as a dedicated technology resource for advancing DTCC's business opportunities and providing industry thought leadership for leveraging new technology. The goal of this new department is to partner internally with IT, our business and regulatory divisions and externally with clients, regulators, and fintech vendors, to help build new platforms and business models to advance DTCC's mission to support the financial markets.