Senior Associate, Regulatory Compliance
Who We Are
The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com.
What We Offer
A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:
A hybrid work environment, up to 3 days per week of remote work
Tuition Reimbursement to support your continued education
Student Loan Repayment Assistance
Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely
Generous PTO and Parental leave
Competitive health benefits including medical, dental and vision
What You'll Do
The Senior Associate (IT/Security) will support the continued development and implementation of the Systems Incident Assessment and Reporting program which includes: management and handling of systems incidents, event classification and impact assessment, corrective action, regulatory reporting, and notification to regulators and other external parties, as well as process documentation (policy, procedure, job aids), control development, and risk identification and mitigation. The Senior Associate will also be responsible for providing assistance and guidance in the assessment and classification of system criticality for Business Applications. In addition, the role will include the recommendation and management of enhancements on the performance, integrity, and compliance of the systems incident assessment and reporting processes, as well as contribution to the development, maintenance, and continuous improvement of process related policies, procedures, and controls for IT/Security functions.
This role is highly focused on review of the organization’s compliance with applicable regulatory, legal rules, and requirements (i.e., SEC, CFTC, Federal Reserve, etc.) as they relate to systems incident reporting for SCI entities and other IT/Security groups.
Primary Duties and Responsibilities:
To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.
- Act as an advisor to stakeholders for systems incident analysis related to systems disruptions, compliance issues, and intrusions that impact clearing and settlement processes.
- Facilitate the response, handling, and reporting of systems incidents in partnership with Legal, Information Technology, Business Operations, etc. to provide adequate and timely notice to the SEC, CFTC, and or other regulators
- After hours or weekend work may be required in to support stakeholders in response to systems incidents.
- Participate in the design and implementation, as well as execution and management of new workflows for the tracking and monitoring of systems incidents to ensure regulatory timelines are met.
- Identify and recommend opportunities for process improvements regarding systems incident assessment, management, and escalation processes
- Monitor daily systems incident reporting and participate in systems incident recap meetings on a weekly basis, or as needed.
- Develop, implement, and monitor metrics and KPI’s to identify, analyze, and articulate trends resulting from systems incidents.
- Develop and participate in the facilitation of regular or ad-hoc training to the organization
- Provide routine and ad-hoc reporting
- Provide assistance and guidance in the assessment and classification of system criticality for Business Applications.
- Support other departmental activities and initiatives, as required, including assessment of compliance risks, supporting regulatory reporting and compliance reporting, etc.
- Contribute to the development, maintenance, and continuous improvement of IT and Security processes, remediation of IT and Security related findings or observations and updates to related policies, procedures, and controls
- Interpret policies, laws, and regulations and assists the organization in determining applicability and implementation strategy
The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.
- 2-3 years of experience in Compliance, Risk Management, Audit, Systems Incident Analysis, Problem Management, Information Security or related field required
- Excellent organizational, written and oral communication skills.
- Comprehensive analytical, conceptual, and problem-solving skills.
- Demonstrated ability to gather, analyze, and evaluate facts and prepare and present concise oral and written reports.
- Ability to work independently and as a member of a team, collaborating with internal business clients from different departments and at various levels of seniority.
- Proficiency with MS Office software, GRC tools and web-based reporting tools.
Recommended, but not required:
- Familiarity with the use of risk and control frameworks, and process improvement frameworks, including for Cloud environments (e.g. COBIT, NIST CSF, NIST 800-53, COSO, ITIL, ISO 27001, ISO 9001, CMMI)
- Familiarity with Systems Development Life Cycle (SDLC) agile process and Secure Software Development Lifecycle
- [Required] Proficiency with MS Office software | [Preferred] Experience using an integrated risk management system (such as RSA Archer), Document Managemenent tools, and reporting tools
Education and/or Experience:
- Bachelor’s degree or equivalent required
Certificates or Licenses:
When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume.
You will receive an email notification to confirm that we've received your application.
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.
OCC is an Equal Opportunity Employer
- Chicago - 125 S Franklin
- Full Time Regular
- Posted: Jun. 02, 2022
How to Apply
Step 1 - When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume.
Step 2 - You will receive an email notification to confirm that we've received your application.
Step 3 - If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.
OCC is an Equal Opportunity Employer
Numerous studies have shown that people from groups that are traditionally under-represented in financial services apply to jobs only if they believe they meet 100% of the requirements. We want to break down this mindset to further diversify our workforce.
We encourage you to review our open positions and apply if you think your experience may be a match, even if you do not meet all of the qualifications. Your perspective may be an element we need to continue building innovative solutions to support the markets and market participants we serve.
OCC is a globally recognized entity that clears a multitude of diverse and sophisticated products. We want to reflect this in the diversity of our workforce.