Information Security jobs in United States, Illinois, Chicago

Essential Responsibilities:

• Independently apply security best practices to enhance and optimize systems, ensuring robust protection and efficiency, while beginning to understand and align security solutions with business objectives.
• Partner with peers and internal teams to drive security initiatives, contribute to cross-functional projects, and at times co-lead efforts to strengthen security posture.
• Analyze and resolve security challenges by adapting standard processes and exploring alternative approaches to address complex threats.
• Influence the quality, efficiency, and effectiveness of the team through informed decision-making, with a potential impact on other teams.
• Collaborate with other engineers to gather and incorporate feedback, driving continuous improvements in security processes.

Expected Qualifications:

• 3+ years relevant experience and a Bachelor’s degree OR Any equivalent combination of education and experience.

What do you need to bring:

A minimal of 5 years of experience working in a cybersecurity related position.

Experience working with cloud-native security tools, AWS and GCP Infrastructure design, operation, and deployment, container and host security

Excellent communication and documentation skills.

Knowledge of Kubernetes, terraform, source code management, infrastructure and application security tools such as CSPM, SAST, DAST, API security, DDOS and WAF

Development experience is a plus.

Preferred certifications:

Cloud Security related certifications (AWS, GCP)

Degree in Computer Science or related field.

Travel Percent:

The total compensation for this practice may include an annual performance bonus (or other incentive compensation, as applicable), equity, and medical, dental, vision, and other benefits. For more information, visit .

Our Benefits:

Any general requests for consideration of your skills, please

Job Description:

Advises LOB management on risk issues related to information security and recommends actions in support of the bank’s wider risk management and compliance programs.

The successful candidate will:

• Provide advisory and oversight for changes within CBWT environment where related to security leveraging the regional information security consultants and global operational response teams as needed
• Work in collaboration with the Risk teams supporting them in their activities and helping them continue to develop processes and solutions
• Work with the global BISO organization to ensure that GIS requirements and initiatives are communicated, discussed and tracked in an effective, consistent and timely way
• Establish and maintain a network of stakeholders and partners
• Conduct routine liaison and coordination across the risk partners and technology groups to remediate GIS issues showing red or amber on the vulnerability remediation dashboard
• Coordinate and drive remediation of ad hoc GIS issues and assist partners to reach a resolution in line with GIS baselines and standards

Minimum Years of Experience - 5

Required Qualifications:

• Experience within an information security technology operational, engineering or consulting team with good knowledge of the security controls and processes required within systems and networks
• Strong interpersonal skills to be able to communicate, influence and negotiate with senior stakeholders to obtain or leverage necessary resources

Desired Qualifications:

• Bank Operations experience helpful, but not required
• Experience within a technology and financial organization at a mid-level to senior level with good knowledge of Application Security controls and risks.
• Understanding of the concepts of vulnerability management and associated monitoring solutions and practices
• Experience of formal security risk assessment methodologies
• In depth technical level of understanding of Technology Infrastructure operations, showing a strong understanding of relevant subject matters
• Previous experience working within a financial institution
• Ability to initiate own work priorities and manage a portfolio independently
• Good communicator able to deliver difficult messages and resolve issues with stakeholders
• Show ability to work as part of integral team
• Excellent oral and written briefing skills with the ability to produce and present management progress and status reports

Responsibilities:

• Assists business leaders and technology teams by supporting initiatives requiring Global Information Security (GIS) engagement and facilitating problem resolution for cyber security related issues
• Serves as a common risk control partner in order to identify emerging security risks in the portfolio
• Drives adherence to appropriate risk tolerance levels, operating in accordance with defined information security policies to protect against threats to data confidentiality, integrity, and availability
• Promotes awareness of current and emerging cybersecurity threats and advises on potential information security exposure
• Assesses and mitigates cyber security risks related to application, network, infrastructure, and public cloud
• Interprets the information security requirements outlined in policies, standards, and procedures and reinforces requirements through education and awareness
• Supports teammates who serve as “security ambassadors” in order to help partners drive strategic and innovative risk mitigation priorities and navigate the GIS organization

Skills:

• Controls Management
• Cyber Security
• Data Governance
• Information Systems Management
• Risk Management
• Architecture
• Customer and Client Focus
• Executive Presence
• Threat Analysis
• Vendor Management
• Advisory
• Business Acumen
• Business Intelligence
• Cloud Solutions
• Technology System Assessment

Job Description:

This job requires partnership with business function leaders, operations process owners and subject matter experts (SMEs), to provide an end to-end view of their processes, analyze impacts and data, and contribute to the optimization of the organization through data accuracy and completeness.

Key responsibilities include applying knowledge of laws, rules, regulations, and information security concepts (e.g., NIST, COBIT, ISO) to validate indicative data alignment to processes and controls to requirements.
Job expectations include using data analytics, identifying gaps in coverage and data inaccuracies, and support remediation activities.

At least 3 years of related experience required.

Responsibilities:
• Manage the process inventory, reflecting accurate information that supports effective decision making, and ensuring compliance to enterprise policy and standard requirements
• Ensures process information meet enterprise standards, adhere to applicable rules, laws, and regulations, and comply with appropriate treatment of risk
• Identifies information security gaps and remediation strategies
• Process analysis to improve data accuracy and completeness
• Process improvements based on enterprise and Global Technology guidelines, organization maturity, challenges and issue remediation
• Provide end-to-end high-quality view of processes within business functions with proper identification of hand-offs and process connectors
• Support the organization’s short-and-long term strategy
• Supports a strategy of continuous improvement and acts as liaison with Global Technology and Enterprise Process Management teams
• Prepare presentations and process overview utilizing models and complementary data to assist leaders in process re-engineering activities
• Partner with stakeholders to ensure the inventory aligns to GIS policy and standard requirements in support of adherence monitoring

Required Qualifications:
• Prior related experience or business exposure desired and strong delivery mindset
• Analytical and design-oriented mindset
• Data analytics and Problem Solving
• Data driven and Trend Analysis
• Delivery Excellence
• Strong presentation skills
• Excels in working among diverse viewpoints to determine the best path forward
• Excellent verbal and communications skills
• Quality Assurance
• Innovative and Critical thinking skills – ability to assess quantitative and qualitative data to identify key themes that require deeper analysis and assessmentOther Qualifications/Desired Skills:
• Ability to identify opportunities from a process efficiency perspective and continuously challenge current state of GIS processes
• Prior experience in Information Security desirable
• Preferred process improvement and Operational Excellence exposure
• Ability to understand new technologies, intellectually curious
• Commitment to challenging the status quo and promoting positive change
• Experience working in a global environment

Skills:

• Customer and Client Focus

• Interpret Relevant Laws, Rules, and Regulations

• Policies, Procedures, and Guidelines

• Problem Solving

• Quality Assurance

• Business Acumen

• Controls Management

• Innovative Thinking

• Process Management

• Stakeholder Management

• Business Process Analysis

• Data Governance

• Data Privacy and Protection

• Data and Trend Analysis

• Risk Analytics

Job Description:

Job Description:

Role Responsibilities:

• Develop and execute a comprehensive strategy for integrating AI into Cyber Threat Defense operations.
• Build and lead a team of AI engineers, data scientists, and security professionals focused on applying AI to threat detection, response automation, and adversarial simulation.
• Partner with GIS operational and technical teams to identify opportunities for AI-driven enhancements to security controls and architecture.
• Lead the design and deployment of AI-powered tools for threat hunting, anomaly detection, and automated incident response.
• Oversee the development and operationalization of custom ML/LLM models tailored to cybersecurity use cases.
• Guide architectural transformations to support scalable AI integration across the enterprise.
• Serve as a thought leader and subject matter expert on AI in cybersecurity, advising senior leadership and influencing enterprise-wide strategy.
• Ensure responsible and ethical use of AI in security operations, including model governance, bias mitigation, and explainability.
• Collaborate with offensive security teams to develop AI-enhanced red teaming and adversarial emulation capabilities.
• Drive innovation in proactive defense mechanisms using predictive analytics and autonomous threat response.

Required Qualifications

• Proven leadership in building and managing AI-focused cybersecurity teams.
• 7+ years of hands on experience in cybersecurity, specifically in Offensive Security or Threat Defense Operations.
• Hands-on experience building agentic AI systems, LLMs, and custom ML model development.
• Strong understanding of offensive security tactics and how AI can enhance red teaming, attack path mapping, and threat modeling.
• Experience leading large-scale technical projects involving security data pipelines, model deployment, and automation.
• Deep knowledge of cyber threat actor behaviors, attack vectors, and defensive countermeasures.
• Ability to translate complex technical concepts into actionable strategies for senior executives.
• Familiarity with AI governance, model risk management, and regulatory considerations in financial services.
• Demonstrated ability to drive consensus across diverse stakeholders and influence enterprise-wide initiatives.
• Strong communication and presentation skills, especially in executive and cross-functional settings.

Desired Qualifications

• Experience with enterprise cloud AI development platforms such as Azure AI Foundry, AWS Bedrock, or GCP Vertex
• Experience with AI-enhanced SOAR (Security Orchestration, Automation, and Response) platforms.
• Experience with modern data platforms, cloud-native architectures
• Familiarity with adversarial machine learning and AI security risks.
• Background in data engineering, feature engineering, and model lifecycle management.
• Prior work in regulated industries with a focus on compliance and risk mitigation.

This job will be open and accepting applications for a minimum of seven days from the date it was posted.

Job Description:

Job Description:

We are seeking a highly skilled and experienced Senior Security Automation Engineer to lead the design, implementation, and optimization of security automation workflows using the Tines platform. This role requires deep technical expertise in security orchestration, cloud architecture, and API integrations, as well as experience working closely with Security Operations Centers (SOC), Incident Response (IR) teams, and cross-functional stakeholders. The ideal candidate will bring a strong security engineering background, hands-on experience with modern automation platforms, and a strategic mindset to drive scalable and secure automation initiatives.

Key Responsibilities
• Architect, implement, and maintain advanced automation workflows using Tines.
• Collaborate with SOC and IR teams to identify high-impact use cases for automation.
• Integrate Tines with enterprise systems including EDR, SIEM, threat intelligence platforms, and cloud services.
• Lead secure integration of Tines with SSO, credential vaults, and external repositories.
• Design and configure secure connectivity solutions (e.g., Cloudflare tunnels, VPNs) for hybrid environments.
• Develop and maintain orchestration stories across platforms such as:
• CrowdStrike, Tanium, Splunk, Anvilogic, ThreatQ, AWS, and Azure.
• Write, test, and debug Python-based automation logic.
• Analyze Tines logs and metrics to optimize performance and reliability.
• Create and maintain technical documentation, runbooks, and architectural diagrams.
• Engage with stakeholders across security, infrastructure, and application teams to gather requirements and align automation efforts with business goals.
• Ensure all automation workflows adhere to enterprise security policies and change management processes.

Minimum Years of Experience 8

Required Qualifications
• 8+ years of experience in cybersecurity, with at least 3+ years in a security automation or engineering role.
• Proven experience working with SOC and/or Incident Response teams to operationalize automation.
• Hands-on experience with Tines or similar SOAR platforms (e.g., Splunk SOAR, Palo Alto XSOAR).
• Strong programming skills in Python; experience with Git and CI/CD pipelines.
• Deep understanding of REST APIs, webhooks, and secure API integrations.
• Experience with cloud platforms (AWS, Azure, or GCP), including automation and security architecture.
• Familiarity with AI/ML integrations (e.g., AWS Bedrock, OpenAI APIs) is a plus.
• Experience configuring secure tunnels (e.g., Cloudflare, SSH, VPN) for hybrid environments.
• Strong knowledge of security frameworks and best practices (e.g., NIST, MITRE ATT&CK).
• Excellent communication skills and ability to translate technical concepts for non-technical stakeholders.
• Experience with Agile/Scrum methodologies and tools like Jira and Confluence.

Desired Qualifications
• CISSP, GIAC, or equivalent security certification.
• Tines certifications (both entry-level and advanced preferred).
• AWS Certified Security – Specialty or equivalent cloud security certification.

Skills:

• Automation

• Influence

• Result Orientation

• Stakeholder Management

• Technical Strategy Development

• Application Development

• Architecture

• Business Acumen

• Risk Management

• Solution Design

• Agile Practices

• Analytical Thinking

• Collaboration

• Data Management

• Solution Delivery Process

Essential Responsibilities:

• Independently apply security best practices to enhance and optimize systems, ensuring robust protection and efficiency, while beginning to understand and align security solutions with business objectives.
• Partner with peers and internal teams to drive security initiatives, contribute to cross-functional projects, and at times co-lead efforts to strengthen security posture.
• Analyze and resolve security challenges by adapting standard processes and exploring alternative approaches to address complex threats.
• Influence the quality, efficiency, and effectiveness of the team through informed decision-making, with a potential impact on other teams.
• Collaborate with other engineers to gather and incorporate feedback, driving continuous improvements in security processes.

Expected Qualifications:

• 3+ years relevant experience and a Bachelor’s degree OR Any equivalent combination of education and experience.

• Cloud Security knowledge and best practices in GCP, AWS environments.
• Cloud security posture management understanding to provide remediation advisory.
• Cloud security evidence collection and forensics.
• Experience withinfrastructure-as-codetools like CloudFormation, Terraform, etc.
• Excellent communication and documentation skills
• Hands-on experience with Docker containers in Kubernetes environments
• Collaborative mindset to work along cross-functional teams.

• Cloud native security tools management.
• Manage CSPM solution. Preferably Wiz.
• Understanding on vulnerability management on cloud environments (such as CSPM findings, configuration findings, etc.).
• Industry cybersecurity standards (such as PCI, ISO 27000 Family, NIST, CIS, SOC 2, etc.)
• Basic DFIR processes in cloud environments.
• Collaborative mindset.
• Agile methodology knowledge and understanding.

• Onboarding Cloud accounts (such as Azure, AWS & GCP) – this includes access grant, enabling policies, configuring baselines, configuring agents (if applicable), verifying health status
• Administer CSPM solution – this includes managing user roles, audit logs, manage API access
• Discover cloud assets – this includes gaining visibility and manage cloud assets
• Manage Security policies and Benchmarks – this includes configuring CSPs specific security policies, industry specific compliance policies (such as PCI), benchmarks standards (such as CIS, NIST, etc.)
• Respond to alerts – this includes monitor, investigate and triage incidents based on actionable alerts
• Manage OS hardening – this includes administer operating system baseline and hardening
• Integration with 3rd party systems – this includes manage changes, requests on integration with other systems (such as ITSM and CI/CD Tools)
• Remediation guidance – this includes providing recommendations to the stakeholders to fix the potential threats, applying configurations on the systems to maintain IT security regulatory compliance and standards
• Manage reports – this includes providing reports to the business and relevant stakeholders

Travel Percent:

The total compensation for this practice may include an annual performance bonus (or other incentive compensation, as applicable), equity, and medical, dental, vision, and other benefits. For more information, visit .

Our Benefits:

Any general requests for consideration of your skills, please

Job Description:

Job Description:

Role Responsibilities:

• Partner with GIS operational and technical teams to identify opportunities for AI-driven enhancements to security controls and architecture.
• Drive the technical implementation of the design and deployment of AI-powered tools for threat hunting, anomaly detection, and automated incident response.
• Oversee the development and operationalization of custom ML/LLM models tailored to cybersecurity use cases.
• Guide architectural transformations to support scalable AI integration across the enterprise.
• Act as a technical expert on AI-driven cybersecurity initiatives, mentoring junior engineers and analysts.
• Prototype and evaluate emerging AI technologies for applicability in cyber threat detection and response.
• Serve as a thought leader and subject matter expert on AI in cybersecurity, advising senior leadership and influencing enterprise-wide strategy.
• Ensure responsible and ethical use of AI in security operations, including model governance, bias mitigation, and explainability.
• Collaborate with offensive security teams to develop AI-enhanced red teaming and adversarial emulation capabilities.
• Drive innovation in proactive defense mechanisms using predictive analytics and autonomous threat response.

Required Qualifications

• 7+ years of hands on experience in cybersecurity, preferably Offensive Security or Cyber Threat Operations
• Hands-on experience building agentic AI systems, LLMs, and custom ML model development.
• Experience with enterprise cloud AI development platforms such as Azure AI Foundry, AWS Bedrock, or GCP Vertex
• Strong understanding of offensive security tactics and how AI can enhance red teaming, attack path mapping, and threat modeling.
• Experience leading large-scale technical projects involving security data pipelines, model deployment, and automation.
• Deep knowledge of cyber threat actor behaviors, attack vectors, and defensive countermeasures.
• Ability to translate complex technical concepts into actionable strategies for senior executives.
• Familiarity with AI governance, model risk management, and regulatory considerations in financial services.
• Experience with modern data platforms, cloud-native architectures, and MLOps frameworks.
• Demonstrated ability to drive consensus across diverse stakeholders and influence enterprise-wide initiatives.
• Strong communication and presentation skills, especially in executive and cross-functional settings.

Desired Qualifications

• Experience with AI-enhanced SOAR (Security Orchestration, Automation, and Response) platforms.
• Familiarity with adversarial machine learning and AI security risks.
• Background in data engineering, feature engineering, and model lifecycle management.
• Experience with open-source AI frameworks (e.g., PyTorch, TensorFlow, LangChain).
• Prior work in regulated industries with a focus on compliance and risk mitigation.

Skills:

• Artificial Intelligence
• Critical Thinking
• Threat Analysis
• Cyber Security
• Data Privacy and Protection
• Data and Trend Analysis
• Stakeholder Management

This job will be open and accepting applications for a minimum of seven days from the date it was posted.