Cyber Security Program Management Director

Are you ready to make an impact at DTCC?

Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well‑being.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

DTCC is seeking a Director, Cyber Security Business Management to provide strategic, operational, and financial oversight across the enterprise cyber security portfolio. This role is responsible for driving long‑term cyber security strategy, ensuring effective governance, and optimizing investment and resource allocation to support DTCC’s evolving security posture.

Reporting to the Executive Director of Cyber Security Business Management, the Director will develop, manage, and enhance the governance processes that guide cyber security priorities, risks, and outcomes. This includes leading integrated strategy development, ensuring alignment across cyber security programs, and increasing transparency, accountability, and performance management within the cyber security portfolio.

The Director will oversee cross‑functional initiatives that span multi‑year strategy planning, portfolio and financial management, risk assessment and evaluation, metrics and reporting, cyber security training governance, and the evaluation of risk treatment decisions. This role ensures that DTCC’s cyber security investments, controls, and capabilities are prioritized, measured, and executed effectively.

This role requires strong collaboration with the leadership team, technology leaders, and internal stakeholders to ensure that cyber security programs deliver measurable value, mitigate identified risks, and support DTCC’s long‑term security strategy.

• Lead the development and maintenance of DTCC’s multi‑year cyber security strategy, ensuring alignment with enterprise technology strategy, risk appetite, and regulatory expectations.
• Partner with cyber domain leaders to translate strategic objectives into actionable roadmaps, investment plans, and performance targets.
• Partner with key stakeholders to identify emerging risks, industry trends, and technology shifts to inform strategic prioritization and long‑term planning.
• Drive strategic planning forums, annual strategy refresh cycles, and executive‑level alignment sessions.

• Oversee the end‑to‑end cyber security portfolio, ensuring investments are prioritized based on strategic value, risk reduction, and financial efficiency.
• Manage budget planning, forecasting, and cost optimization for the cyber portfolio, including capital and operating expenditures.
• Provide financial governance across cyber programs, including benefits realization, variance analysis, and ROI evaluation.
• Establish and maintain portfolio governance structures, including steering committees, decision frameworks, and accountability mechanisms.

• Develop and manage prioritization frameworks to ensure cyber initiatives align with business needs, risk mitigation priorities, and resource constraints.
• Coordinate risk assessment processes to evaluate program and control effectiveness across the cyber portfolio.

• Prepare materials for DTCC's senior leadership, boards, and regulatory stakeholders.
• Lead the development of consistent, data‑driven…