The Depository Trust & Clearing Corporation (DTCC) · 3 months ago
Application Penetration Tester
1333 Crestside Drive, Coppell, TX, 75019, US
Full-time
Hybrid
Mid Level
4+ years expThe Depository Trust & Clearing Corporation (DTCC) is at the forefront of innovation in the financial markets, committed to helping employees grow and succeed. The Application Penetration Tester will perform ethical application penetration testing, conduct security assessments, and collaborate with teams to enhance application security and risk management across DTCC’s businesses.
FinanceFinancial ExchangesFinancial ServicesInformation Technology
Responsibilities
Perform Ethical Application Penetration Testing (EAPT) on web applications and APIs in alignment with DTCC processes and control standards
Provide assistance to developers by detailing reported vulnerabilities and recommending remediation steps
Ensure excellent coordination across various teams within DTCC to support security initiatives
Conduct application security assessments, risk analysis, vulnerability testing, and security reviews across DTCC’s businesses
Monitor and mitigate risk, escalating issues as required
Contribute to and maintain secure coding best practices and related guidelines
Perform industry research on emerging application security technologies and trends to improve detection and reporting of security risks
Mitigate risk by following established procedures, monitoring controls, spotting key errors, and demonstrating strong ethical behavior
Collaborate with developers and AppSec teams to ensure adherence to Secure System Development Lifecycle (SDLC)
Contribute to testing efforts across a large portfolio (~300 applications annually) as part of the AppSec Defensive team
Qualification
Required
Minimum of 4 years of related experience
Hands-on experience in manual application penetration testing for web apps and APIs
Strong proficiency with penetration testing tools (Burp Suite, OWASP ZAP, etc.)
Knowledge of secure coding practices, dynamic analysis, and vulnerability identification
Ability to communicate technical findings and remediation steps clearly to developers
Understanding of Secure SDLC and regulatory compliance requirements
Research-oriented mindset to adopt emerging security trends
Strong collaboration and communication skills
Preferred
Bachelor's degree preferred or equivalent experience
At least one certification would be preferred - Penetration testing professional
At least one certification would be preferred - Licensed Penetration Tester
At least one certification would be preferred - Practical Web Pentest Associate
Benefits
Competitive compensation, including base pay and annual incentive
Comprehensive health and life insurance and well-being benefits, based on location
Pension / Retirement benefits
Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).
Company
The Depository Trust & Clearing Corporation (DTCC)
With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry.
5001-10000 employees
H1B Sponsorship
The Depository Trust & Clearing Corporation (DTCC) has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (119)
2024 (59)
2023 (74)
2022 (84)
2021 (36)
2020 (77)
Funding
Current Stage
Late StageLeadership Team
Frank La Salla
President, CEO and Director of DTCC
E
Edward Cortes
Executive Director
Recent News
2026-01-09
Company data provided by crunchbase