Principal Security Engineer

Principal Information Security Engineer

Senior member of Cboe’s Security Engineering team, responsible for defining and driving the enterprise‑wide security architecture, strategy, and long‑term technical direction across a broad portfolio of security technologies.

• Serve as recognized technical authority across IT, Security, and Leadership, translating complex technical risk into clear business and regulatory context for executives, security leaders, and stakeholders.
• Design, implement, and govern comprehensive security solutions across multiple platforms utilizing a variety of security tools, programming languages, and services, operating with near‑complete autonomy.
• Design automation and engineering patterns that enhance the efficiency, scalability, and durability of security operations enterprise‑wide.
• Define how diverse technologies are normalized and integrated end‑to‑end to streamline analysis and response capabilities across environments.
• Mentor senior and junior engineers, document standards and engineering patterns governing complex security products and services.
• Identify systemic risk across the organization’s security posture and design enterprise‑wide mitigations and remediation strategies.
• Introduce new methodologies, reference architectures, and operating models to resolve systemic security challenges and advance the security program.
• Lead enterprise technology evaluations and adoption decisions, assessing the relevance and long‑term impact of emerging technologies on the security posture.
• Define, own, and enforce engineering standards, continuously assessing the effectiveness of security controls and driving improvements across the enterprise.
• Shape and drive the security engineering strategy and roadmap, influencing senior engineers and leaders across organizations.
• Partner with and influence cross‑functional teams to embed security into the development lifecycle and operational processes.
• Lead security assessments and audits, ensuring compliance with internal policies and external regulations.
• Lead the technical response for the highest‑severity incidents, directing containment, investigation, and recovery efforts.
• Stay at the forefront of industry trends, security standards, and best practices, ensuring Cboe’s systems remain resilient against evolving threats.

• Proven principal‑level experience (minimum 10 years) in information security, with authoritative depth across multiple security domains and a strong focus on architecture, engineering, and operations.
• Experience and knowledge of current security technologies (Databahn, Google Secops, Bindplane, ProofPoint, Microsoft Security).
• Proficiency in scripting and automation for security operations.
• Experience with Linux/Unix and Windows administration, including Active Directory (AD) and EntraID.
• Proficiency with the Microsoft Security Stack (Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Purview DLP, Intune).

• Bachelor’s Degree in Cybersecurity or Computer Science.
• System Administration experience in Linux and Windows.
• Proven ability to script and automate tasks.
• Specific experience with Google Secops SIEM, the Microsoft Security Stack, or ProofPoint Email Security Services.
• CISSP, CASP or other related security certifications.

• Competitive salary and incentive compensation.
• Generous paid time off, including vacation, personal days, sick days and annual community service days.
• Flexible, hybrid work environment with a four‑day in‑office model.
• Health, dental and vision benefits, including telemedicine and mental health services.
• 401(k) match up to 8% immediately upon hire.
• Employee Stock Purchase Plan, tax‑savings accounts, and employee referral bonus program.
• Paid tuition assistance and education opportunities.
• Paid parental leave and fertility benefits.
• On‑site gyms and discounts to other fitness centers.
• Complimentary lunch, snacks and coffee in any Cboe office.
• Volunteer opportunities and generous charitable giving match.

We’re proud to be an equal‑opportunity employer and do not discriminate against any employee or applicant for employment based on any legally protected characteristic, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetic information, or Veteran status. We are committed to fostering a workplace where all individuals are valued and respected.