Staff Security Engineer - IAM

• Posted 6 hours ago • Updated 6 hours ago

Full Time

On-site

USD $128,500.00 - 214,100.00 per year

CME Group

Fitment

Dice Job Match Score™

🧠 Analyzing your skills...

Job Details

Skills

Trading
High Availability
Training
Issue Resolution
Recovery
Disaster Recovery
Continuous Improvement
Research
Regulatory Compliance
Information Gathering
Documentation
Application Support
LDAP
Active Directory
Computer Hardware
Cloud Computing
Orchestration
Kubernetes
Management
Lifecycle Management
Identity Management
Multi-factor Authentication
SSO
Scripting
Linux
Shell Scripting
Windows PowerShell
Python
Progress Chef
Terraform
Information Security
Technical Support
FOCUS
Analytical Skill
Conflict Resolution
Problem Solving
Critical Thinking
Communication
Articulate
ITIL
Incident Management
Auditing
Collaboration
Computer Science
Information Systems
CISSP
Google Cloud Platform
Google Cloud
Cloud Security
Derivatives
Fraud
Recruiting

Summary

We are building a new, high-impact team dedicated to supporting our new weekend trading capabilities. We are seeking an experienced and highly-capable IAM Staff Engineer whose primary focus will be providing expert, hands-on support, troubleshooting, and recovery for our mission-critical Identity and Access Management (IAM) systems. While project work exists, your core mission is ensuring the stability and high availability of the production environment.

Work Environment & Schedule

Initial training schedule (first 3-6 months): Until the candidate is fully up to speed on our specific technologies and environment, the work schedule will be Monday - Friday business hours, working alongside existing IAM engineers for training and acclimation to our technology and processes.
Target shift schedule: After the initial training period, this role will transition to a compressed work schedule, requiring four (4) eleven-hour shifts per week (10 working hours plus 1 hour for lunch) to cover weekend support.
Office requirement: This position requires a minimum 2-day per week in-office presence. Candidates must be within commutable distance of a CME Group Chicago office.

What You'll Do (Primary Focus: Support & Operations)

You will be the go-to for operational support and advanced issue resolution for our core IAM platforms. Furthermore, you will be supported and backed up by a team of highly skilled engineers located globally who can bring additional knowledge and experience when required.

Support & System Recovery

Provide advanced, hands-on troubleshooting, problem isolation, and rapid system recovery for critical IAM systems and related components.
Lend timely support assistance for major incidents, participating in post-mortem analysis and implementing preventative measures.
Take part in product upgrades depending on the situation and scope of the project, ensuring operational readiness.
Perform in the on-call rotation and disaster recovery tests.
Assist in our continuous improvement efforts to reduce repeated support calls and incidents.
Participate in our continuous improvement efforts to reduce repeated support calls and incidents.

Engineering & Automation

Proactively identify and automate existing manual tasks and processes to improve efficiency and stability.
Research and implement security best practices across all supported platforms.
Assist teams in identifying, safely storing, and retrieving their secrets in line with industry best practice and CME Standards.

Compliance & Documentation

Develop processes, guidelines, and robust documentation for consumption by internal teams.
Aiding information gathering for audits and overseeing documentation efforts.

What You'll Bring (Minimum Requirements)

Technical Knowledge & Experience:

Experience: 5 - 7 years of application support and experience with IAM services, tools, and solutions.
Core systems: Proven, hands-on experience designing, deploying, and supporting large-scale enterprise IAM solutions, specifically including:
- Cloud SSO and CIAM Platforms
- LDAP Directories & Active Directory
- Privileged Access Management platforms
- MFA solutions
- Familiarity with hardware security keys
Cloud acumen: Experience with cloud computing strategies, concepts, and technologies, particularly with Google Cloud Platform (Google Cloud Platform) IAM primitives (e.g., Service Accounts, IAM Roles, Identity Platform).
Containerization / orchestration: Knowledge of container technologies, especially Kubernetes, as they relate to secrets management and identity access.
IAM foundation: Strong familiarity with the following areas is essential, as this is the primary scope of the role:
- Privileged Access Management
- Identity Lifecycle Management
- Access Management (Federation / MFA / SSO)
Scripting / automation: Some development experience in one or more of the following: Linux shell scripting, PowerShell, Python, Chef & Terraform.
Security: Must have a thorough knowledge of information security components, principles, practices, and procedures, particularly regarding IAM security systems and controls.
Technical support: Experience as an individual contributor on support and technical discussions in high-pressure situations.

Professional Skills

Troubleshooting focus: Strong analytical, problem-solving, and expert-level troubleshooting skills with high-level critical thinking.
Communication: Ability to succinctly articulate complex technical issues to both technicians and business sponsors.
Governance: Solid working knowledge of ITIL (problem and incident management) and applicable change and audit controls.
Collaboration: Ability to work both independently and in a team-oriented environment with the ability to establish relationships with external vendors.

Education & Certification

Formal education: A Bachelor's degree in Computer Science, Information Systems or equivalent combination of education and related work experience.
Certification: Certification or equivalent experience in a leading PAM enterprise platform
Desired security certifications: Security certifications are a huge plus and highly desired, especially CISSP, Google Cloud Security Engineer (or Professional Cloud Security Engineer), or equivalent.

#LI-DD1

CME Group is committed to offering a competitive total rewards package for our employees that recognizes their contributions to the business and reflects our long-term investment in their future. The pay range for this role is $128,500-$214,100. Actual salary offered will be dependent on a wide array of factors including but not limited to: relevant experience, skills, education and comparison to internal employees (where relevant). Our compensation program also includes an annual target bonus opportunity for all employees, as well as the opportunity to become an owner in the company through our broad-based equity program. Through our benefits program, we strive to offer flexibility, value and choice. From comprehensive health coverage, to a retirement package that includes both a 401(k) and an active pension plan, to highly competitive education reimbursement provisions, paid time off and a mental health benefit, CME Group offers a holistic benefits package for our team and their dependents.

CME Group: Where Futures are Made

CME Group is the world's leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career by shaping tomorrow. We invest in your success and you own it - all while working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more.

At CME Group, we embrace our employees' unique experiences and skills to ensure that everyone's perspectives are acknowledged and valued. As an equal-opportunity employer, we consider all potential employees without regard to any protected characteristic.

Important Notice: Recruitment fraud is on the rise, with scammers using misleading promises of job offers and interviews to solicit money and personal information from job seekers. CME Group adheres to established procedures designed to maintain trust, confidence and security throughout our recruitment process. Learn more here .

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Dice Id: CHIMERCX
Position Id: 33723
Posted 6 hours ago

Company Info

About CME Group

About CME Group

Building on the heritage of CME, CBOT, NYMEX and COMEX, CME Group serves the risk management needs of customers around the globe. We provide the widest range of benchmark futures and options products available on any exchange, covering all major asset classes, including interest rates, equities, FX, commodities, and alternative investments such as weather and real estate. CME Group's vision is one of ongoing global growth, innovative product development, continually enhanced technology and the highest level of service available on any exchange.

Important Notice about Recruitment Fraud:

Recruitment fraud is on the rise, with scammers using misleading promises of job offers and interviews to solicit money and personal information from job seekers. CME Group adheres to established procedures designed to maintain trust, confidence and security throughout our recruitment process.

Learn more here: https://www.cmegroup.com/careers/files/recruitment-fraud-notice.pdf

Create job alert

Never miss an opportunity! Create an alert based on the job you applied for.