Job Description:
AboutCboeGlobal Markets
AtCboeGlobal Markets, we inspire our people to solve complex challenges together because what we do matters. We providethe financialinfrastructure that powers the global economy. As a leading provider of market infrastructure and tradable products,Cboedeliverscutting-edgetrading, clearing and investment solutions to market participants around the world.
We'rebuilding meaningful ways to support professional and personal development while strengthening the trustwe'veearned as a global market leader. Our teams are empowered to share ideas, actively pursuethemand bring on a challenge. As champions of internal mobility and access to opportunity, we encourage our people to "go for it" and equip our managers with the training to coach their teams to the next level. We strive to provideemployeesa safe space to network, shareideasand create opportunities.
Soundliketheplace for you? Join us!
Location Overview
CboeHQ is located in the historic Old Post Officedistrict,it's a landmark that blends classic architecture with modern amenities. The building features expansive spaces withhigh ceilingsand large windows, offering an abundance of natural light and panoramic views of thecityskyline and the Chicago River.
With its prime location in the heart of downtown, the OPO Building provides easy access to major transportation hubs, including Union Station and multiple CTA lines, making it convenient for commuters. The building is home to a variety of amenities, including restaurants, a fitness center, and collaborative workspaces, creating a vibrant and dynamic work environment in one of Chicago's most iconic areas.
Role Overview
Cboe'sCybersecurity team is seeking an Application Security Engineer to develop theirexpertisein practical, code-adjacent security within a collaborative and fast-paced environment. This role works closely with application and platform engineering teams to help design, build, and deploy secure containerized services on Kubernetes, applying security fundamentals within defined processes and with guidance from senior engineers. The ideal candidate brings hands-on software development experience and a genuine interest in growing their application security skills on real-world challenges. This role reports to the Manager, Cybersecurity.
Your responsibilities will be:
Secure Development Partnership
- Partner with engineering teams to improve security of containerized services running on Kubernetes
- Participate in secure design reviews and threat modeling for new features, services, and APIs
- Perform code-level security reviews and provide clear, actionable remediation guidance to developers
Security Tooling & CI/CD Integration
- Help integrate andoperatesecurity tooling in CI/CD pipelines, including SAST, dependency and container image scanning (SCA), and secret detection
- Validate and triage security findings — distinguishing real risk from false positives and helping prioritize remediation based on impact
Container & Kubernetes Security
- Contribute to container image security practices including secure base image usage, dependency hygiene, and attack surface reduction
- Assistin defining and applying secure coding and deployment standards for Kubernetes workloads, APIs, and service-to-service communication
Incident Support & Growth
- Support incident response and post-incident reviews by helping analyze root causes and contributing to preventative fixes
- Continuously grow application and Kubernetes security skills through hands-on work and mentorship from senior team members
The ideal candidate has:
- 2+years of professional experience in software engineering, application security, or a closely related role
- Bachelor's degree in Computer Science, Information Security, or a relatedfield
- Hands-on software development experience, including building, testing, and deploying production services and comfort reading andmodifyingexisting codebases
- Experience building and running Docker/OCI containers, with an understanding of container images, layers, and runtime behavior
- Familiarity with Kubernetes, including deploying or supporting applications and working with core primitives (pods, deployments, services, ingress) and basic security concepts (RBAC, namespaces, service accounts)
- Working knowledge of common web and API vulnerabilities (authentication/authorization issues, injection, SSRF, etc.) and secure coding practices
- Proficiencyin at least one backend programming language (e.g., Go, Java, C#, Python, Node.js) and experience with modern CI/CD workflows and Git-based development
- Exposure to application security tooling such as SAST, dependency or container image scanning, or secret scanning tools
- Bachelor's degree preferred
Benefits and Perks
Wevaluethetotalwellbeingofourpeople–includinghealth,financial,personalandsocialwellness.Webelievestandard benefits like health insurance and fair pay area givenat any organization. Still, you shouldknowwe offer:
- Fairandcompetitivesalaryandincentivecompensationpackageswithanupsideforoverachievement
- Generouspaidtimeoff,includingvacation,personaldays,sickdaysandannualcommunityservicedays
- Health,dentalandvisionbenefits,includingaccesstotelemedicineandmentalhealthservices
- 2:1401(k)match,upto8%matchimmediatelyuponhire
- DiscountedEmployeeStockPurchasePlan
- TaxSavingsAccountsforhealth,dependentandtransportation
- Employeereferralbonusprogram
- Volunteeropportunitiestohelpyougivebacktoyourcommunities
Someofourassociates’favoritebenefitsandperksinclude:
- PaidTuitionassistanceandeducationopportunities
- Generouscharitablegivingcompanymatch
- Paidparentalleaveandfertilitybenefits
More AboutCboeGlobal Markets
We'rereimagining the future of the workplace by focusing on what matters most, our people. Our journey is an inclusive one.We'reinvesting deeply in leadership programs and career development initiatives that ensure everyone has an equal chance to succeed.
We work with purpose, solving problems with ingenuity, collaboration, and a lot of passion.We'rean engaged and excited team connecting markets across borders and embracing growth in all its forms to achieve incredible outcomes.
Learn more about life atCboeon LinkedIn and Cboe.com.
Equal Employment Opportunity
We're proud to be an equal opportunity employer and do not discriminate against any employee or applicant for employment based on any legally protected characteristic, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetic information, or veteran status. We are committed to fostering a workplace where all individuals are valued and respected.
#LI-AB
This position is not eligible for visa sponsorship. Candidates must be legally authorized to work in the United States without the need for employer sponsorship now or in the future.
Salary Ranges (applicable for US locations only)
At Cboe, we are committed to providing a competitive, transparent, and market‑informed total rewards program. The anticipated base salary range for this role is $102,850-$133,100, with actual compensation determined by job‑related factors such as skills, relevant experience, education, internal alignment, and location.
This role may also be eligible for annual incentive compensation and, where applicable, participation in Cboe's long-term equity programs.
Additional information about Cboe's total rewards program, including benefits and other compensation components, can be found here: Total Rewards at CBOE.
Any communication from Cboe regarding this position will only come from a Cboe recruiter who has a @cboe.com email or via LinkedIn Recruiter. Cboe does not use any other third party communication tools for recruiting purposes.