Security Engineer
Optiver · Chicago, IL · 1 wk ago
On-siteInformation TechnologyFull-time
What you'll do
- Monitor daily security operations, identify threats, investigate alerts, and respond to incidents across cloud and on-prem environments.
- Maintain and tune security tools across AWS, Microsoft 365, endpoints, and network infrastructure.
- Strengthen Microsoft 365 and Entra ID security through Conditional Access, MFA, PIM, Defender for Endpoint/Identity/O365, and tenant configuration hardening.
- Implement and support data protection capabilities, including Microsoft Purview, sensitivity labels, DLP, and insider risk policies.
- Build and maintain security automation using Python and PowerShell, with a strong focus on reducing manual processes and improving detection and response.
- Integrate systems using APIs (Graph API, REST, etc) to enhance security workflows.
- Work with AI and our AI engineering teams to ensure the security of the environment.
- Perform vulnerability assessments, review system configurations, and develop practical mitigation strategies.
- Conduct security reviews of systems, cloud workloads, and new technologies.
- Ensure and assure our security controls are effective and working as intended.
- Lead or contribute to incident response activities including investigation, containment, communication, and remediation.
- Analyze logs, IOCs, and behavior patterns using SIEM tools and threat intelligence.
- Work closely with engineering, technology, and business teams to embed security best practices.
- Provide guidance on secure architecture, access controls, and identity management.
- Support user education and uplift security behaviors across the business.
What you'll get
- The opportunity to work alongside best-in-class professionals from over 40 different countries
- A highly competitive compensation package including performance-based bonus structure
- 401(k) match up to 50%
- Comprehensive health, mental, dental, vision, disability, and life coverage
- 25 paid vacation days alongside market holidays
- Extensive office perks, including breakfast, lunch and snacks, regular social events, clubs, sporting leagues and more
Who you are
- You are a hands-on security engineer with strong technical fundamentals and a passion for building secure, scalable systems.
- You likely bring experience in several of the following areas:
- Securing and supporting cloud environments, particularly AWS, including services such as IAM, GuardDuty, CloudTrail, Security Hub, AWS Config, and KMS.
- Working with Microsoft security technologies including Entra ID, Conditional Access, Multi-Factor Authentication (MFA), Privileged Identity Management (PIM), Microsoft Defender, and Secure Score.
- Using security tools such as EDR, SIEM, vulnerability management, SOAR, CASB, or related technologies.
- Investigating security events, responding to incidents, and managing security risks across cloud and on-premises environments.
- Managing identity and access controls, including RBAC, PAM, SSO, and federation technologies such as SAML, OAuth, and OIDC.
- Supporting and securing Windows and Linux environments.
- Applying networking fundamentals including TCP/IP, DNS, VPNs, proxies, and firewalls to secure enterprise systems.
- Building automation and tooling using Python and/or PowerShell.
- Integrating systems through APIs and working with version control systems such as Git.
- Implementing or supporting data protection technologies such as Microsoft Purview, data loss prevention (DLP), classification, and information protection solutions.
- You approach security challenges with an engineering mindset and prefer pragmatic, effective solutions to unnecessary complexity.
- You look for opportunities to automate repetitive work through scripting, tooling, and emerging technologies, including AI-enabled security workflows.
- You have hands-on experience in security engineering, security operations, or DevSecOps, with a track record of monitoring, incident response, and risk reduction.
- You stay curious about evolving threats, cloud technologies, detection techniques, and emerging security trends.
- You communicate effectively across technical and non-technical teams and can clearly articulate security concepts to a variety of audiences.
- You are comfortable collaborating with engineers, infrastructure teams, and business stakeholders, and constructively challenge assumptions when needed.
- You take ownership of problems from investigation through resolution and enjoy working in a fast-paced, highly collaborative environment.