Security Engineer Jobs in Cicero, IL

The Senior Security Analyst is the principal advisor in driving upgrades to UL's technical requirements, programs, processes to maintain UL as the highest quality provider for cybersecurity services. Remain up to date on all cybersecurity related topics. Perceived as both the customer's and internal security team's trusted advisor. Conduct advanced penetration tests, hacking to identify issues in embedded products and software. Responsibilities: Provides upgrades to UL and industry technical requirements on security requirements along with other standard bodies by collaborating the Software & Security team. Conducts security tests using automated tools, ad-hoc tools, and manual testing. Conducts penetration testing against different technological domains including, but not limited to, web products, hardware products, wireless products, software, cloud based software, smart device applications. Assesses and calculates risk based on vulnerabilities and exposures discovered during testing. Creates required information security documentation, technical reports, and formal papers on test findings, and complete requests in accordance with requirements. Handles and completes customer projects to the defined requirements in the timeframe required by customers with the highest quality and integrity of work. Meets and exceeds customer expectations with projects and other related tests and activities. Supports security team in building and improving UL's assurance programs and services. Supports the security team in building the lab for security services. Provides sales support and the sale of more complex projects. Qualifications: • University Degree (Equivalent to a Master's degree) in Computer Science or a related discipline plus generally four years' experience in cybersecurity, software development, or ethical hacking. • Experience installing and using various OS distributions and application packages. • Hands-on experience with commercial, open source and free security solutions such as AppScan, Fortify, Maltego. Kali Linux, Nessus, OpenVAS, Qualys, Core Impact Pro, MetaSploit, nmap, nessus, ettercap, static source code analysis tools, fuzzing tools, dynamic binary testing tools • Understanding of security issues on various operating systems, open source web and database platforms • Experience scripting in one (1) or more of the following languages: sh, csh, perl, python, awk, ruby and programming experience in C, C++, Java • Security related certifications a plus: CISSP, CISA, CEH, GIAC • Strong expertise in testing in two or more of the following domains: Embedded software, embedded security, industrial control systems / SCADA, medical devices, telecom and networking equipment. Total Rewards: We understand compensation is an important factor as you consider the next step in your career. The estimated salary range for this position is $100,000 to $130,000 and is based on multiple factors, including job-related knowledge/skills, experience, geographical location, as well as other factors. This position is eligible for annual bonus compensation with a target payout of 10% of the base salary. This position also provides health benefits such as medical, dental and vision; wellness benefits such as mental and financial health; and retirement savings (401K) commensurate with the standard rewards offered in each individual location or country. We also provide full-time employees with paid time off including vacation (15 days), holiday including floating holidays (12 days) and sick time off (72 hours). #LI-SG2 #LI-Hybrid

Aureon Consulting is currently seeking candidates for the role of Cloud Security Architect. In this role, you will be responsible for shaping and evaluating the security strategy and architecture of the organization. You will work closely with both business and technology departments to translate business objectives and risk management requirements into effective security processes and technologies. What we are looking for in a candidate: Minimum of 10 years of overall experience within Information Technology including recent experience as a Security Architect or Security Engineer. Experience in supporting and securing cloud service providers like Amazon Web Services and Microsoft Azure. Previous experience with Defender for Cloud, Defender for Cloud Apps, GuardDuty, CloudTrail, Security Hub, Cloud Workload Protection Platform (CWPP), Cloud Security Posture Management (CSPM), and/or SaaS Security Posture Management (SSPM). Experience with supporting and securing data cloud providers such as Snowflake, Salesforce, Confluent, and Databricks is highly preferred. Experience supporting technologies such as Azure Data Lake Storage (ADLS), Microsoft Fabric, AWS Data Lake, Informatica, Data Build Tool (DBT), and/or BigEye is highly desired. Candidates must be within the local area and able to commute onsite when needed. This position is not open for Visa sponsorship currently or in the future. This position is not open to third party support and all candidates must be able to work on W2.

As a Sr IAM BA Analyst in Identity Governance and Administration (IGA) and Privileged Access Management (PAM), you will play a crucial role in ensuring the integrity and accuracy of user identity data within our organization. You will collaborate closely with application teams to obtain user extracts, validate them against our identity solution, and identify any discrepancies, ultimately strengthening our identity governance and security practices. Key Responsibilities: • Implements and identifies improvements to Access Control system enhancements (IGA and PAM) • Manages consulting practice with business partners for technology security topics • Maintains relationships with partners to manage effectiveness of the access security life cycle management process • Mitigates risk of conversions to partners • Operates independently; has in-depth knowledge of business unit / function • As subject area expert, provides comprehensive, in-depth consulting and leadership to team and partners at a high technical level • Carries out activities that are large in scope, cross-functional and technically difficult • Role is balanced between high level operational execution and development, and execution of strategic direction of business function activities • Responsible for direct interaction with different functions and/or management Qualifications: • At least 5 years of professional experience with significant experience working as a BA on complicated projects with multiple cross functional teams • Proven experience in identity governance, administration, or data validation. • Familiarity with identity management tools and systems. • Knowledge of data privacy regulations and security best practices. • Experience using Visio and Microsoft Office Suite • Experienced enough to handle process improvement and synergies “big picture” • Comfortable running sql queries and digging into the details of a project. Curiosity is key! • Experienced in Identity Governance and Administration (IGA); Solid understanding of identity lifecycle (Joiner, mover, leaver) and access certification processes is preferred • Experienced in implementing Identity governance processes for centralized and de-centralized applications is preferred • Experienced in creating metrics and dashboard Preferred Qualifications: • College or University degree and/or relevant proven work experience in the area of Information Security is required • Relevant certifications in identity and access management or data governance. • Experience with identity and access management software such as SailPoint, Okta, or Microsoft Identity Manager Additional skills: • Highly motivated, self-directed and possess solid execution skills. • Strong analytical skills with the ability to identify and resolve data discrepancies. • Excellent communication and collaboration skills to work effectively with cross-functional teams. • Demonstrates critical thought and probes beyond the surface of the requested data to get at the valuable (actionable) information. • Able to understand complex concepts quickly. • Detail oriented, but understands broader impacts of requests. • Adjusts quickly to changing priorities as necessary. • Manages multiple tasks and deliverables simultaneously and in an organized and results-oriented manner. • Strives to proactively identify and address areas where business process efficiency and effectiveness improvements would make a positive impact on the top and bottom lines. • Excellent people skills are also necessary since this position interacts with all levels of resources across the entire organization. W2 Contractors are Eligible for Benefits (Medical, Dental, Vision 401k) Pay rate: $50-65/hr W2.

A leading algorithmic trading firm in Chicago is growing their trading technology teams building the most sophisticated trading systems and tools, working closely with top machine learning engineers, traders and a diverse group of technologists to enhance high-frequency trading operations across global markets and multiple asset classes. Your focus will be on maintaining the reliability and efficiency of ultra-low latency trading systems, driving innovation in the algorithmic trading landscape. Key Responsibilities Manage state-of-the-art high-frequency trading systems and applications Oversee real-time market data feeds, ensuring accurate processing to support strategic decision-making Develop Python scripts to automate trading support functions Diagnose production issues with an emphasis on root cause analysis to bolster system stability Coordinate and prioritize software updates for smooth exchange migrations and rapid feature rollout Candidate Requirements Experience in optimizing and maintaining high-performance trading applications Proficiency in Python scripting Strong academic background in a STEM discipline, preferably in computer science Solid knowledge of Linux/Unix systems for server management and deployment Knowledge of the FIX protocol and trading APIs A proactive and dynamic personality with a strong dedication to personal growth and development This is an exciting opportunity to join a forward-thinking high tech driven team at the cutting edge of trading technology. Apply now or email me directly: **************************

Responsibilities Sentinel is seeking a Senior Network Security Solution Analyst to join our deployment team. This individual will be responsible to design and deploy secure network solutions for mid to enterprise-level client environments throughout the Chicagoland area. The ideal candidate will be self-motivated with the ability to perform autonomously and drive a project to successful completion. This is a full-time position based in Downers Grove, IL with travel throughout the Chicagoland area. Qualifications 8+ years of experience working with Cisco, Palo Alto, and/or Fortinet solutions. 3+ years of experience in designing, implementing, and managing wired LAN solutions in enterprise environments is required. Proficiency configuring, deploying, and upgrading Cisco Catalyst series switches, including but not limited to, 2k, 3k, and 9k series is required. Proficiency configuring, deploying, and upgrading Cisco routing platforms, including but not limited to, ISR 4k and Catalyst 8k platforms is required. Working knowledge of dynamic routing protocols, including EIGRP, OSPF, or BGP is required. Experience in designing, implementing, and managing WAN solutions in enterprise environments strongly encouraged. Solid understanding of network protocols, including TCP/IP, DHCP, DNS, and VLANs is required. Strong knowledge of Cisco wireless technologies, including Cisco Aironet access points, wireless LAN controllers, and/or Meraki wireless a plus. Experience working with Cisco, Palo Alto, and/or Fortinet solutions is a plus. Experience deploying and using Cisco Identity Services Engine (ISE) a plus. Cisco ACI and SD WAN experience is a plus Firewall experience, including managing security policies, NAT rules, and NGFW features a plus. Excellent problem-solving and analytical skills with the ability to identify and resolve complex technical issues. Effective communication and collaboration skills with the ability to work in a team environment and with client stakeholders is required. Vendor certifications such as CCNP or CCIE or equivalent are preferred. Exceptional customer relations skills required Bachelor's degree in computer science, information technology, or a related field is preferred. Ability to work both independently and as part of a collaborative team. A valid driver's license and proof of vehicle insurance will be required. The candidate must have a car, as this position requires travel between location and the transportation of equipment. Legally authorized to work in the US without sponsorship. Must demonstrate a “can-do” attitude. We focus on candidates that display our “ACE” factor - Attitude, Compassion, and Enthusiasm to deliver quality solutions with exceptional customer service. Compensation Range: $100,000 - $165,000 annual salary What you get: We offer an energetic work environment with many corporate culture amenities, competitive salary, and rich benefit plan including: Medical, Dental, Vision, 401K, 529, Life Insurance, Income Protection Short and Long-Term Disability, Medical and Child/Elder Care, Flexible Spending Account Plans, Family Planning Benefits, Financial Education, Identity Theft Protection and Assistance, Legal Services, Employee Assistance Program, Two weeks' vacation, additional paid time-off for Personal and Sick, certification and hands-on training, and employee discount for product services and entertainment. Overview MOTIVATED…..make IT happen! Sentinel Technologies, Inc. has been rated a top workplace every year since 2012! About Us: Sentinel delivers solutions that can efficiently address a range of IT needs - from security, to communications, to systems & networks, to software applications, to cloud and managed services; all of which include our staffing solutions for our clients. Since 1982, Sentinel has grown from providing technology maintenance services to our current standing as one of the leading IT services and solutions provider in the US. We have aligned with many of today's global technology leaders including Cisco, Dell, VMware and Microsoft. Sentinel services customers both nationally and internationally with primary support operating centers in Downers Grove (HQ), Chicago, and Springfield, IL; Phoenix, AZ.; Lansing, and Grand Rapids, MI; Milwaukee, WI; and Denver, CO. If you are MOTIVATED… you can make IT happen at Sentinel. Our commitment to our employees is to create a work environment that encourages creativity, an entrepreneurial spirit, fosters growth through certification and hands-on training, and values a team-oriented culture with rewards based on impact! If you share our passion about what technology can do and want to be part of a top workplace environment - we'd like to have you join our team. Learn more at ************************* As part of Sentinel's employment process, candidates will be required to complete a background check. Only those who meet the minimum requirements will be contacted. No phone calls please. Sentinel is proud to be an equal opportunity employer including disability and veterans. In accordance with Title VII and state regulations, all qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, marital status, pregnancy, genetics, disability, military, veteran status or any other basis protected by law. If you are an individual with a disability and need assistance in applying for a position, please contact ************************.

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! Job Description: Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security Assurance Offensive Security group. The program provides services to assess the vulnerability of the bank's applications to malicious hacking activity. This intermediate technical role is responsible for performing application security assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include performing research, understanding the bank's security policies, working with the appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business. Key Responsibilities in order of importance: * Perform assigned analysis of internal and external threats on information systems and predict future threat behavior * Incorporate threat actors' tactics, techniques, and procedures into offensive security testing * Perform assessments of the security, effectiveness, and practicality of multiple technology systems * Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security. * Prepare and present detailed technical information for various media including documents, reports, and notifications * Provide clear and practical advice regarding managed risks * Learn and develop advanced technical and leadership skills, Mentor Junior assessors in technical tradecraft and soft skills Required Skills: * Minimum of 4 years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment * Detailed technical knowledge in at least 3 of the following areas: security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks; single sign-on technologies; exploit automation platforms; RESTful web services * SQL injection/XSS attack without the use of tools * Experience performing manual code reviews for security relevant issues * Experience working with SAST tools to identify vulnerabilities * Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings * Experience performing manual web application assessments i.e., must be able to simulate a * Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies) * Experience with vulnerability assessment tools and penetration testing techniques * Solid programming/debugging skills * Experience of using a variety of tools, included, but not limited to, IBM AppScan, Burp and SQL Map * Threat Analysis * Innovative Thinking * Technology Systems Assessment * Technical Documentation * Advisory Desired: * CISSP, CEH, OSCP, OSWE, GPEN, PenTest+ or similar * Strong programming/scripting skills This job will be open and accepting applications for a minimum of seven days from the date it was posted. Shift: 1st shift (United States of America) Hours Per Week: 40

The Application Penetration Tester is responsible for performing manual application security assessments (application pentests) and communicating any findings to the Development and QA teams. Additionally, the engineer will provide application design support and security best practice guidance, in the form of consultations, to various development teams and business stakeholders. You will be working with a team of highly skilled Application Security Engineers that are responsible with the application security and security testing of CME Group's applications and services. This is a great environment to get exposure to a wide array of technologies and progress your application security career, while providing value to CME and helping to ensure that our applications are designed and coded in a secure fashion. Requirements 4+ years' experience performing blackbox and/or whitebox application penetration testing (Web, APIs, Mobile, Thick clients). Advanced skills with application security testing tools such as: Burpsuite, OWASP ZAP, SQLMap, IDA Pro, Kali, etc. Knowledge on how to perform manual application source code security reviews for various languages such as: Java, .Net (C#, VB#), C++. Experience with UNIX or Linux. Experience with scripting languages such as: Python, bash, Powershell, etc. Have a passion for application security, willingness to continue growing your skills in this domain, and be able to share your passion and learnings with teammates. Self-motivated and a self-starter. If you have a question, be pro-active in finding the answer and communicate your learnings with teammates. Excellent oral and written communications skills. Nice to have: Experience working in a DevSecOps and Continuous Integration/Continuous Delivery (CI/CD) environment. Experience with Cloud (GCP) or Containers (Docker, Kubernetes). Experience with micro-service architectures. OSCP/OSWE, GWAPT, eWAPTx or other relevant security certifications. Principal Accountabilities Perform manual whitebox/blackbox application penetration testing at key points in the Software Development Life Cycle for in-house or 3rd party developed software. Produce detailed documentation (reports) and present the findings discovered during your security assessments to our stakeholders (Management, Development). Provide application security consulting services at critical points in the SDLC. Have an interest in continuing your education and staying current within the application security domain. Education A Bachelor's or Master's degree in Computer Science, Information Systems or other related discipline is required; or equivalent combination of education and relevant proven work experience. #LI-Hybrid #LI-DS #dice CME Group is committed to offering a competitive total rewards package for our employees that recognizes their contributions to the business and reflects our long-term investment in their future. The salary range for this role is $91,400-$152,300. Actual salary offered will be dependent on a wide array of factors including but not limited to: relevant experience, skills, education and comparison to internal employees (where relevant). Our compensation program also includes an annual target bonus opportunity for all employees, as well as the opportunity to become an owner in the company through our broad-based equity program. Through our Benefits program, we strive to offer flexibility, value and choice. From comprehensive health coverage, to a retirement package that includes both a 401(k) and an active Pension Plan, to highly competitive education reimbursement provisions, paid time off and a mental health benefit, CME Group offers a holistic Benefits package for our team and their dependents. CME Group : Where Futures are Made CME Group is the world's leading and most diverse derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career by shaping tomorrow. We invest in your success and you own it - all while working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more. At CME Group, we embrace our employees' diverse experiences, cultures and skills, and work to ensure that everyone's perspectives are acknowledged and valued. As an equal opportunity employer, we recognize the importance of a diverse and inclusive workplace and consider all potential employees without regard to any protected characteristic. Important Notice: Recruitment fraud is on the rise, with scammers using misleading promises of job offers and interviews to solicit money and personal information from job seekers. CME Group adheres to established procedures designed to maintain trust, confidence and security throughout our recruitment process. Learn more here.

Contract assignment, 3/2025-5/2025 Remote to Chicago, Chicago area- candidate must have own equipment Pay rate $60.00 Top skills needed will be Microsoft Authentication knowledge and Active Directory knowledge. Data Entry resource responsible for providing technical expertise in developing and supporting all activities, processes, and tools for protecting technology-based information. Assist in the provisioning of security structures to support the data security needs of access controls requested. Microsoft MFA Authentication Microsoft Active Directory CA Top Secret. This will be a data entry position Skills Required: Hands-on experience in identity management operations. Conscientious and detail oriented. Excellent verbal communication skills.

Job Title: SAP Security Architect Duration for Contract: 5 Months + - ECC 6.0 Security design / architecture is the base requirement for the role. - 7+ years of experience in application or SAP ECC, BI, HR, portal and CRM security architecture, design and administration. Summary: Provide solutions architecture oversight for new development projects specific to SAP according to timelines and budget, while following accepted programming, testing and change control standards, and accepted business intelligence technology best practices. Job Responsibilities: • Define and document the structure, connections and relationships of business processes, organizational work groups, SAP data models, SAP applications, user interfaces, applications interfaces, SAP infrastructure and network topology. • Provide standards, guidelines and statements of direction for IT system architectures, establishing a framework that constrains the design of systems for the purpose of integration of systems and accessibility of data supporting various business processes and functions. • Define, design and develop the SAP enterprise systems information architecture to enable cross functional operational reporting and performance optimization. • Identify strategic opportunities and drive cross-business and cross-functional change. Skills: • Knowledge of ITIL and SDLC. • Experience in business system application design, development and installation. • Experience in planning/architecture development and support. • Experience designing and implementing advanced SAP application architectures. Education/Experience: • Bachelor's degree in Computer Science or a related field. • Master's degree in Business or Management Information Systems preferred. • 8-10 years of SAP functional systems experience. • SAP Certification preferred. Additional Information All your information will be kept confidential according to EEO guidelines.

Job DetailsJob SummaryServe as a senior technical expert to assist in the design and administration of Information Technology (IT) security architecture and privacy services across the network. Monitor and utilize information security technologies for the identification of suspicious and malicious activities and inadequate security practices as they relate to IT security architecture. Oversee analysis and monitor of security violations, alerts and malware detection reports prepared by a third-party vendor. Serve as the senior liaison regarding all security vulnerabilities reported. Graduation from an accredited college or university with a Bachelor's Degree is required. Four (4) years as an analyst in Information Technology (IT) Networking or Security or directly related experience is required or An equivalent combination of education and/or experience is required. Valid driver's license is required. This position is considered a safety-sensitive position. Candidates who are selected to fill safety-sensitive positions must pass a required drug test as part of the pre-employment background check process.Candidates who are contacted will be required to produce original required documents (e.g., current driver s license, diploma, school transcript, certifications, etc.) listed on the Notice of Job Opportunity within five (5) days of being extended an offer, in writing, by the Bureau Chief of BHR (or designee). Candidates will be notified of how to submit required documents.*Degrees awarded outside of the United States with the exception of those awarded in one of the United States territories and Canada, must be credentialed by the World Education Services (WES), Educational Credential Evaluators (ECE) or a National Association of Credential Evaluation (NACES) member organization.KNOWLEDGE, SKILLS, ABILITIES AND OTHER CHARACTERISTICS Knowledge of IT security theory, technologies, policies/best practices, and enterprise architectures and knowledge of network architecture, operations and protocols. Ability to work 24/7 including holidays and weekends. Knowledge of secure network/systems configuration management as well as an understanding of networking concepts and devices. Knowledge of application development methodologies and regulatory regulations. Knowledge of active directory environments, virtual and mobile technologies, Information Security functions, and complex enterprise architecture security lockdowns. Excellent oral and written communication skills including the ability to document requirements, designs, communication plans, project plans, project status reports and other relevant project-related issues. Ability to independently guide staff in area of specialization to drive business success. Ability to provide in-depth insight, advice and expertise to other professionals, management, and external contacts in an assigned functional area. Ability to operate as a senior team member and communicate advanced specialized knowledge to team members, leaders, and external stakeholders. Knowledge of complex principles and practices for a specialized area of focus. Physical Requirements:Sedentary Work involves exerting up to 10 pounds of force occasionally or a negligible amount of force frequently to lift, carry, push, pull, or otherwise move objects. Sedentary work involves sitting most of the time but may involve walking or standing for brief periods of time.The duties listed are not set forth for purposes of limiting the assignment of work. They are not to be construed as a complete list of the many duties normally to be performed under a job title or those to be performed temporarily outside an employee s normal line of work. Benefits Package Medical, Dental, and Vision Coverage Basic Term Life Insurance Pension Plan and Deferred Compensation Program Employee Assistance Program Paid Holidays, Vacation, and Sick Time You May Qualify for the Public Service Loan Forgiveness Program (PSLF)

Mindlance is a national recruiting company which partners with many of the leading employers across the country. Feel free to check us out at ************************* Job Title: Cyber Security Analyst Duration: 12 Months Location: Oakbrook Terrace, IL Job Description: Responsible for planning, designing, and implementing a process for cyber security monitoring, incident detection, and incident response. 1-3 yrs of experience and a Bachelor's degree in IT systems or a related discipline. Position Requirements: - Configuration and administration of logging aggregation and security event monitoring tools (like Industrial Defender, Splunk, etc.) - Configuration and maintenance of performance monitoring tools (like Solarwinds, Uptime, CA Spectrum, etc.) o Understands and can configure tools and endpoint systems to use SNMP for monitoring - General IT Support (application patching, client updates, remote access and administration tools) - General Networking knowledge (IP Networking, OSI Stack, etc.) Additional Information Thanks & Regards' ___________________________________________________________________________ Vikram Bhalla | Team Recruitment | Mindlance, Inc. | W: ************ All your information will be kept confidential according to EEO guidelines.

At the United Center, we believe that people's stories are enhanced by sports, entertainment, and community. Our purpose is to enhance everyone's stories through iconic experiences while at the United Center. In the role as Security Analyst I you will help our team bring the next round of stories to life on the United Center campus. The Information Security Analyst will play a key role in monitoring, analyzing, and responding to security incidents and threats targeting our environment. The ideal candidate will be a self-starter, have a strong analytical mindset, attention to detail, and a passion for identifying and mitigating cybersecurity risks. This is a hybrid position. General Responsibilities (including but not limited to): Responsible for validating security alerts and ensuring appropriate action is taken to mitigate threats Investigate security incidents, and vulnerabilities to ensure appropriate action is taken to mitigate threats Technical owner for internal security tools and primary contact for external partners Maintain security incident response plans, procedures, and documentation Modify or establish internal controls, process and procedures related to IT Security Collaborate with cross-functional teams to implement security controls and measures to prevent and mitigate security threats Provide cybersecurity recommendations on new technologies and/or how to address new risk Manage assigned projects and tasks, ensuring timely completion and communication Stay current on the latest cybersecurity threats, trends, and vulnerabilities to proactively address potential risks Participate in third party security assessments Other duties may be assigned Requirements: At least 2 years of professional experience in cybersecurity Strong understanding of cybersecurity principles, practices, frameworks, and technologies Experience with security incident detection, analysis, and response using security tools Knowledge of common cybersecurity threats, attack vectors, and mitigation strategies Excellent analytical and problem-solving skills with the ability to prioritize and manage multiple tasks in a dynamic environment Effective communication skills with the ability to effectively communicate technical information to non-technical stakeholders Education: Bachelor's degree in computer science, Information Security, or related field. Or combination of associate degree and appropriate experience. Specific Job Knowledge, Skill, and Ability: Language Skills - Ability to read, analyze and interpret the most complex documents. Math Skills - Ability to add, subtract, multiply and divide in all units of measure, using whole numbers, percentages and draw and interpret bar graphs. Reasoning Ability - Ability to apply principles of logical or scientific thinking to a wide range of intellectual and practical problems. Ability to deal with nonverbal symbolism. The pay range for this role is $65,000-85,000 annually. Actual compensation packages are based on several factors that are unique to each candidate, including but not limited to skill set, depth of experience, certifications, and specific work location. The total compensation package for this position may also include annual performance bonus, 401K retirement plan with company match, paid time off and commuter benefits. Additional perks include access to our state-of-the-art gym with free fitness classes, catered meals, fun events and free parking.

AYR Global IT Solutions is a national staffing firm focused on cloud, cyber security, web application services, ERP, and BI implementations by providing proven and experienced consultants to our clients. Our competitive, transparent pricing model and industry experience make us a top choice of Global System Integrators and enterprise customers with federal and commercial projects supported nationwide. Job Role: Data and System Security Engineer Location: Lincolnshire, IL Duration: 6+ Months Qualifications Job Description: Data and System Security engineer Experience with data encryption management solutions, such as Vormteric and CloudLink Experience with PKI management solutions, such as ADCS and External providers Investigative and analytical problem solving skills Customer service/support experience Additional Skills:PKI Knowledge of encryption management technologies, such as Vormetric, CloudLink. Additional Information If anyone might be intersted please send resumes to kmarsh@ayrglobal (dot) com or you can reach me direct at **************

Rheinmetall 4iG Digital Services (R4) is a joint venture between Rheinmetall, a globally leading supplier of defense and automotive products, and 4iG, Hungary's leading IT systems integrator. R4 has been founded end of 2022 with its headquarters in Budapest and the initial mission to provide project- and operations-related IT services to Rheinmetall's local subsidiaries in Hungary and worldwide. Based on business requirements and opportunities, R4 plans to progressively expand the scope of its services for internal and external customers alike. In a nutshell, R4 is like a start-up with guaranteed success. Equipped with a hands-on mentality, it significantly benefits from the support and tremendous growth of both Rheinmetall and 4iG. The designated business and solid setup offer outstanding development potentials for R4 itself but consequently also for all employees, because there will be lots of interesting jobs in an international and dynamic work environment. In order to achieve our common goals, we count on you * Technical support in the implementation of the IT security policies * Coordination of the technical activities related to the implementation and operation of the ISMS * Implementation, operation and development of Information Security Management System (ISMS) based on ISO 27001 What you will need for successful work * Successfully completed studies in the field of computer science, IT security or comparable qualification * Experience in coordinating activities to achieve the required compliance level * Several years of professional experience in the field of security management or operational management of IT infrastructure under increased security requirements * Administrative experience in one of the core areas network, server, operating systems or applications * Good negotiation skills * Organizational skills and strategic thinking as well as team-oriented and structured way of working * Good proficiency in English and Hungarian (business level), both written and spoken What we offer * Take over an important and challenging role with high visibility * Become part of the unique growth stories of Rheinmetall and 4iG, which offer outstanding development and career opportunities * Gain insight into the defense and automotive industry * Make use of the broad network with over 30.000 great colleagues at Rheinmetall and 4iG worldwide * Benefit from various professional trainings and events * Enjoy our international and flexible work environment with an official office in Budapest but up to 100% mobile work What we are happy about * Successfully completed studies in the field of computer science, IT security or comparable qualification * Experience in coordinating activities to achieve the required compliance level * Several years of professional experience in the field of security management or operational management of IT infrastructure under increased security requirements * Administrative experience in one of the core areas network, server, operating systems or applications * Good negotiation skills * Organizational skills and strategic thinking as well as team-oriented and structured way of working * Good proficiency in English and Hungarian (business level), both written and spoken

Title: Security Operations Center (SOC) - Information Security Analyst Company: Award-Winning, $50B Publicly Traded Company Type: Full-Time Location: Hybrid - Chicagoland Area (Onsite 3-4 Days/Week) Travel: None Job Overview Join an award-winning, publicly traded company and be part of a fast-paced, cutting-edge security team! This newly developed SOC Analyst role offers an exciting and dynamic environment where no two days are the same. You'll have the opportunity to work with leading security tools like Splunk, CrowdStrike, Digital Shadows, and Proofpoint, while collaborating with a skilled and supportive security engineering team. You'll be part of a tight-knit, communicative team that values collaboration, knowledge-sharing, and professional growth. If you thrive in fast-paced security operations and enjoy hands-on problem-solving, this is an excellent opportunity to make an impact. Key Responsibilities: Manage the Phish Alert mailbox. Perform QA on tickets for a service provider. Handle tier 2 escalated inquiries. Support security operations through log aggregation and analysis. Leadership & Team Culture The leadership team is known for holistically supporting its team members, ensuring that growth, learning, and well-being remain top priorities. They provide ongoing career development opportunities, mentorship, and hands-on training to help employees expand their expertise and advance their careers. Beyond technical growth, leadership fosters a culture of inclusivity and collaboration, ensuring that every team member is heard, valued, and supported. Open communication, continuous learning, and a strong sense of community define the workplace, empowering individuals to contribute, innovate, and succeed. Requirements 3+ years of experience in cybersecurity or a related field. Proficiency with at least some of the following tools: CrowdStrike, Proofpoint, Digital Shadows, or Splunk Experience working in a Security Operations Center (SOC) environment is a plus, but not required. Compensation & Benefits Base Salary: $70,000 - $90,000 (dependent on qualifications, skills, and experience). Bonus Eligible. Comprehensive Benefits Package Includes: Medical, Dental, Vision, and Life Insurance Traditional and Roth 401(k) with company match Employee Stock Purchase Plan (ESPP) And much more! Apply Today!

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! Job Description: Manual Ethical Hacking is part of the Application Development Security Framework Program within Bank of America's Cyber Security Assurance Offensive Security group. The program provides services to assess the security resilience of the bank's applications to malicious hacking activity. This senior technical role is responsible performing and leading ethical hacking assessments of the bank's technologies, applications, and cyber security controls while adapting testing methods to evolving and emerging threats. Key responsibilities include leading and performing research, understanding the bank's security policies, working with appropriate partners to complete assessments and simulations, identifying misconfigurations and vulnerabilities, and reporting on associated risk. These individuals partner closely with security partners, CIO clients and multiples lines of business. These individuals are expected to perform application security-oriented dynamic and static assessments across a multitude of technologies including web UI, web APIs, mobile and cloud, including associated source code. Key Responsibilities in order of importance: * Perform assigned analysis of internal and external threats on information systems and predict future threat behavior. * Incorporate threat actors' tactics, techniques, and procedures into offensive security testing to identify high-value vulnerabilities/chained attacks. * Developing Proof-of-concepts for exploitation. * Perform assessments of the security, effectiveness, and practicality of multiple technology systems. * Leverage innovative thinking to help solve problems or introduce new ideas to processes or products applicable to offensive security. * Prepare and present detailed technical information for various media including documents, reports, and notifications. * Provide clear and practical advice regarding managing risks. * Learn and develop advanced technical and leadership skills, mentor Junior and Intermediate assessors in technical tradecraft and soft skills. * Respond to security incidents and provide technical assistance to leadership across the Information Security organization. Required Skills: * Minimum of 5+ years of professional pentesting, application security or ethical hacking experience, preferably in a large, complex, enterprise environment * Detailed technical knowledge in at least 5 of the following areas: * security engineering * application architecture * authentication and security protocols * application session management * applied cryptography * common communication protocols * mobile frameworks * single sign-on technologies * exploit automation platforms * Web APIs * Cloud environments * LLM security * Able to manually identify and reproduce findings, discuss remediation concepts, develop PoCs for vulnerabilities, use scripting/coding techniques, proficiently execute common penetration testing tools, triage, and support incidents, and produce high value findings * Experience performing manual web application assessments i.e., must be able to simulate a OWASP Top 10 vulnerabilities without the use of tools * Experience performing manual code reviews for security relevant issues * Experience working with DAST and SAST tools to identify vulnerabilities * Knowledge of network and Web related protocols/technologies (e.g., UNIX/LINUX, TCP/IP, Cookies) * Experience with vulnerability assessment tools and penetration testing techniques. * Solid programming/debugging skills, development frameworks, CVE and CWE research/reproduction * Threat Analysis, threat modelling and SBOM analysis * Innovative thinking, threat actor simulation * Technology Systems Assessment * Technical Documentation * Advisory Desired: * CEH, OSCP/OSCE/OSWE/GXPN/GPEN/GWAPT/GMOB/All Practitioner Certs [Port Swigger BSP Academy]/Cloud Cert(s)/ eWPT; eWPTX; eMAPT [INE Pentester Academy] * Strong programming/scripting skills This job will be open and accepting applications for a minimum of seven days from the date it was posted. Shift: 1st shift (United States of America) Hours Per Week: 40

The Application Penetration Tester is responsible for performing manual application security assessments (application pentests) and communicating any findings to the Development and QA teams. Additionally, the engineer will provide application design support and security best practice guidance, in the form of consultations, to various development teams and business stakeholders. You will be working with a team of highly skilled Application Security Engineers that are responsible with the application security and security testing of CME Group's applications and services. This is a great environment to get exposure to a wide array of technologies and progress your application security career, while providing value to CME and helping to ensure that our applications are designed and coded in a secure fashion. Requirements * 4+ years' experience performing blackbox and/or whitebox application penetration testing (Web, APIs, Mobile, Thick clients). * Advanced skills with application security testing tools such as: Burpsuite, OWASP ZAP, SQLMap, IDA Pro, Kali, etc. * Knowledge on how to perform manual application source code security reviews for various languages such as: Java, .Net (C#, VB#), C++. * Experience with UNIX or Linux. * Experience with scripting languages such as: Python, bash, Powershell, etc. * Have a passion for application security, willingness to continue growing your skills in this domain, and be able to share your passion and learnings with teammates. * Self-motivated and a self-starter. If you have a question, be pro-active in finding the answer and communicate your learnings with teammates. * Excellent oral and written communications skills. Nice to have: * Experience working in a DevSecOps and Continuous Integration/Continuous Delivery (CI/CD) environment. * Experience with Cloud (GCP) or Containers (Docker, Kubernetes). * Experience with micro-service architectures. * OSCP/OSWE, GWAPT, eWAPTx or other relevant security certifications. Principal Accountabilities * Perform manual whitebox/blackbox application penetration testing at key points in the Software Development Life Cycle for in-house or 3rd party developed software. * Produce detailed documentation (reports) and present the findings discovered during your security assessments to our stakeholders (Management, Development). * Provide application security consulting services at critical points in the SDLC. * Have an interest in continuing your education and staying current within the application security domain. Education * A Bachelor's or Master's degree in Computer Science, Information Systems or other related discipline is required; or equivalent combination of education and relevant proven work experience. #LI-Hybrid #LI-DS #dice CME Group is committed to offering a competitive total rewards package for our employees that recognizes their contributions to the business and reflects our long-term investment in their future. The salary range for this role is $91,400-$152,300. Actual salary offered will be dependent on a wide array of factors including but not limited to: relevant experience, skills, education and comparison to internal employees (where relevant). Our compensation program also includes an annual target bonus opportunity for all employees, as well as the opportunity to become an owner in the company through our broad-based equity program. Through our Benefits program, we strive to offer flexibility, value and choice. From comprehensive health coverage, to a retirement package that includes both a 401(k) and an active Pension Plan, to highly competitive education reimbursement provisions, paid time off and a mental health benefit, CME Group offers a holistic Benefits package for our team and their dependents. CME Group : Where Futures are Made CME Group is the world's leading and most diverse derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career by shaping tomorrow. We invest in your success and you own it - all while working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more. At CME Group, we embrace our employees' diverse experiences, cultures and skills, and work to ensure that everyone's perspectives are acknowledged and valued. As an equal opportunity employer, we recognize the importance of a diverse and inclusive workplace and consider all potential employees without regard to any protected characteristic. Important Notice: Recruitment fraud is on the rise, with scammers using misleading promises of job offers and interviews to solicit money and personal information from job seekers. CME Group adheres to established procedures designed to maintain trust, confidence and security throughout our recruitment process. Learn more here.

Job Description Job Title: SAP Security Architect Duration for Contract: 5 Months + - ECC 6.0 Security design / architecture is the base requirement for the role. - 7+ years of experience in application or SAP ECC, BI, HR, portal and CRM security architecture, design and administration. Summary: Provide solutions architecture oversight for new development projects specific to SAP according to timelines and budget, while following accepted programming, testing and change control standards, and accepted business intelligence technology best practices. Job Responsibilities: • Define and document the structure, connections and relationships of business processes, organizational work groups, SAP data models, SAP applications, user interfaces, applications interfaces, SAP infrastructure and network topology. • Provide standards, guidelines and statements of direction for IT system architectures, establishing a framework that constrains the design of systems for the purpose of integration of systems and accessibility of data supporting various business processes and functions. • Define, design and develop the SAP enterprise systems information architecture to enable cross functional operational reporting and performance optimization. • Identify strategic opportunities and drive cross-business and cross-functional change. Skills: • Knowledge of ITIL and SDLC. • Experience in business system application design, development and installation. • Experience in planning/architecture development and support. • Experience designing and implementing advanced SAP application architectures. Education/Experience: • Bachelor's degree in Computer Science or a related field. • Master's degree in Business or Management Information Systems preferred. • 8-10 years of SAP functional systems experience. • SAP Certification preferred. Additional InformationAll your information will be kept confidential according to EEO guidelines.

AYR Global IT Solutions is a national staffing firm focused on cloud, cyber security, web application services, ERP, and BI implementations by providing proven and experienced consultants to our clients. Our competitive, transparent pricing model and industry experience make us a top choice of Global System Integrators and enterprise customers with federal and commercial projects supported nationwide. Job Role: Data and System Security Engineer Location: Lincolnshire, IL Duration: 6+ Months Qualifications Job Description: Data and System Security engineer Experience with data encryption management solutions, such as Vormteric and CloudLink Experience with PKI management solutions, such as ADCS and External providers Investigative and analytical problem solving skills Customer service/support experience Additional Skills:PKI Knowledge of encryption management technologies, such as Vormetric, CloudLink. Additional Information If anyone might be intersted please send resumes to kmarsh@ayrglobal (dot) com or you can reach me direct at **************