Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Security Engineer

$78.02k - $119.19k

Sargent & Lundy

Description

Sargent & Lundy is a leading consulting engineering firm specializing in the power and energy sectors. Since 1891, we have provided comprehensive engineering, design, and consulting services for both traditional and renewable power generation, grid modernization, nuclear power, and beyond. Our mission is to help clients achieve their energy goals effectively by leveraging advanced technologies and adopting sustainable practices.

Role Overview

We are looking to hire a senior fully technical, hands-on Security Engineer who can take a security requirement and turn it into a working control, then tune it, monitor it, and improve it over time . You will be responsible for operating the technical security controls and platforms that protect Sargent & Lundy, our clients, and our partners . This is not a security governance, policy-writing, or process management role.

You will work side by side with the IT Infrastructure, Cloud Engineering, Application teams, SOC, and GRC. Controls you build will support and enhance our security posture and aligns with ISO 27001, NIST 800-171, and CMMC 2, and protect sensitive data .

Key Responsibilities

Identity and Zero Trust

  • Establish, enforce and operate the full IAM lifecycle in Microsoft Entra: SSO, MFA, conditional access, lifecycle workflows, entitlement management, and privileged access integration.

  • Build and tune Zero Trust controls across identity, device, network, and application layers, including conditional access policies, and continuous verification.

  • Partner to i ntegrate IAM with the rest of the security stack so that XSIAM, CASB, DLP, and EDR/ XDR all see consistent identity signal .

  • Run technical access reviews and tighten entitlement design where you find drift.

Cloud Security: Azure and Oracle Cloud

  • Establish and enforce cloud security controls in Azure and Oracle Cloud Infrastructure: landing zones, network security groups, identity, key management, encryption, logging, and workload protection.

  • Operate CSPM tooling against both clouds, triage findings, and provide secure configurations at the cloud resource level alongside the cloud engineering team.

  • Partner to b uild secure-by-default templates so cloud teams can deploy without round-tripping every change through security.

Palo Alto Security Platform

  • Understand and m anage Prisma Access (SASE) for remote users and sites: tunnels, security policy, SSO integration, and traffic forwarding rules.

  • Understand and partner with SOC to tune Palo Alto XSIAM, including data source onboarding, parser tuning, correlation rules, detection content, and SOAR playbooks that feed Unit 42.

Data Protection and Microsoft Purview DLP

  • Implement Microsoft Purview at a deep technical level: Information Protection, DLP, Insider Risk Management, sensitivity labels, and auto-classification.

  • Author and tune DLP policies across endpoint, Outlook and Exchange, Teams, SharePoint, OneDrive, and Egnyte. Reduce noise without missing real exposure.

  • Handle DLP incident triage, label troubleshooting, and policy iteration based on what production actually shows you.

AI Usage Security

  • Implement technical controls for safe AI usage across the company: data-exposure prevention for generative AI tools, prompt and usage monitoring, and integration with the existing DLP and CASB stack.

  • Evaluate emerging AI risks (prompt injection, model abuse, sensitive-data leakage, shadow AI) and design configurations that mitigate them in our environment.

  • Partner with product and engineering teams shipping AI-enabled features so the controls land at the right layer.

Architecture and Design Reviews

  • Review the security design of new SaaS, IaaS, PaaS, and in-house applications and produce specific, actionable findings.

  • Work with project teams early so controls are designed in, not retrofitted after go-live.

This position offers the flexibility of a hybrid schedule with the expectation of 3 days per week in our downtown Chicago office, and 2 days remote from home.

Qualifications

Required Experience

  • Bachelor's degree in Computer Science , Information Systems, Cybersecurity, or a related field. Equivalent professional experience will be considered.

  • 5+ years of hands-on Security Engineering experience with demonstrated ownership of enterprise security platforms in production. Pure governance, audit, or policy-only backgrounds will not match the work in this role.

  • Deep, hands-on IAM lifecycle experience with Microsoft Entra (SSO, MFA, conditional access, lifecycle workflows) and applied Zero Trust implementation.

  • Hands-on cloud security experience with Microsoft Azure (required) and Oracle Cloud Infrastructure (strongly preferred), including technical configuration of native security services.

  • Hands-on configuration and operation of the Palo Alto security platform: Prisma (Access and Cloud), Cortex XDR, and XSIAM.

  • Implementation-level experience with Microsoft Purview for DLP, including policy authoring, classification, labeling, tuning, and incident handling.

  • Working knowledge of AI risks (data exposure, prompt injection, model misuse, shadow AI) and the controls used to mitigate them in an enterprise setting.

  • Comfort working across on-prem and cloud environments and across Windows, macOS, and Linux endpoints.

  • Familiarity with compliance frameworks (ISO 27001, NIST 800-171, CMMC Level 2, SOC 2) and the ability to translate a control requirement into a working configuration.

  • Certifications: CompTIA Security+ or (ISC)² SSCP or PCCSE (Palo Alto Networks Certified Cloud Security Engineer) an equivalent foundational technical certification.

Preferred Experience

  • Microsoft Azure Security certification (AZ-500 or equivalent).

  • Microsoft Purview Information Protection and DLP certification or equivalent.

  • Oracle Cloud Infrastructure security credentials.

  • Microsoft Cybersecurity Architect (SC-100),

  • CISSP or CCSP .

Soft Skills

  • Strong written and verbal communication . You can walk an engineer through a config in one conversation and a business stakeholder through the impact in the next.

  • Bias for action. You would rather build a working control and iterate than spend weeks producing a perfect document.

  • Comfort with ambiguity. You can take a vague security ask and break it into a concrete configuration plan.

  • Collaboration across teams. You will work daily with SOC, IT Infrastructure, Cloud, App Dev, and GRC, and the role only works if those partnerships do.

  • Operational discipline. You document what you build, version your configurations, and leave the next engineer better than you found it.

We do not sponsor employees for work authorization in the U.S. for this position.

Award-Winning Benefits

At Sargent & Lundy, we care about the health and well-being of our employees. Our commitment extends beyond the workplace, offering comprehensive healthcare plans and generous paid time off to support our team members in every aspect of their lives. We understand the importance of work-life balance, which is why we are proud to provide competitive, award-winning benefits. Our dedication to employee satisfaction has earned us the prestigious Top Workplaces Culture Excellence Award for compensation and benefits in 2022, 2023, and 2024.

Health & Wellness Financial Benefits Work-Life Balance

  • Health Plans: Medical, Dental, Vision

  • Life & Accident Insurance

  • Disability Coverage

  • Employee Assistance Program (EAP)

  • Back-Up Daycare

  • FSA & HSA

  • 401(k)

  • Pre-Tax Commuter Account

  • Merit Scholarship Program

  • Employee Discount Program

  • Corporate Charitable Giving Program

  • Tuition Assistance

  • First Professional Licensure Bonus

  • Employee Referral Bonus

  • Paid Annual Personal/Sick Time (PST)

  • Paid Vacation

  • Paid Holidays

  • Paid Parental Leave

  • Paid Bereavement Leave

  • Flexible Work Arrangements

Compensation Range

$78,016 - $119,191

Transparency Statement

Sargent & Lundy discloses compensation ranges that comply with all local and state regulations. The total compensation package for eligible positions will include a base salary or an hourly rate and a comprehensive benefits package, reflecting our commitment to rewarding performance and supporting the overall well-being of our employees. Individuals may also be eligible to participate in our yearly discretionary bonus.

Equal Opportunity

Sargent & Lundy is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability status, protected veteran status, or any protected status as defined by applicable law.

Software Powered by ICIMS

CityChicago

StateIL

CountryUnited States

Area of InterestInformation Technology

TypeFull Time - Regular

Job ID2026-24559

Business GroupCEO Group

DepartmentInformation Security

Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the Security Engineer in Chicago, IL vacancy
  • $104k - $156k

     ...Posting Type Remote/Hybrid Job Overview The Advanced Security Engineer is a technically deep, hands-on practitioner who forms the operational backbone of the enterprise security function. Operating within a layered defense-in-depth program, this engineer owns... 
    Suggested
    Remote work

    Relativity

    Chicago, IL
    5 days ago
  • $41.64 - $64.54 per hour

     ...offered is determined by a candidate's expertise and years of experience, among other factors.**Position Highlights:*** Position: Security Engineer III* Hourly Pay Range: $41.64 - $64.54. The hourly pay rate offered is determined by a candidate’s expertise and years of... 
    Suggested
    Hourly pay
    Full time
    For contractors
    Remote work
    Monday to Friday
    Flexible hours

    Edward-Elmhurst Health

    Skokie, IL
    4 days ago
  •  ...Job Title Project Overview: Northern Trust is looking for an experienced resource to support Global Physical Security Systems, a suite of applications that control secure access (eg building badging, security cameras, etc.) to Northern Trust facilities globally.... 
    Suggested
    For contractors
    Remote work

    Software Technology Inc

    Chicago, IL
    2 days ago
  • $100k - $160k

     ...OAuth, and conditional access. -Design and maintain enterprise security platforms that enforce security policies across endpoints,...  ...email compromise. -Collaborate with infrastructure and cloud engineering teams to implement security controls across hybrid environments... 
    Suggested
    Permanent employment
    Temporary work
    Work at office
    Flexible hours

    CI Financial Careers

    Chicago, IL
    1 day ago
  •  ...such as: Kerberos, NTLM, TCP, UDP, IPv4, IPv6, SAML, LDAP and Secure LDAP • Expert level knowledge of Windows server operating systems...  ...Security Basic Qualification : Additional Skills : Azure Engineer,Security Engineer Background Check : No Drug Screen... 
    Suggested

    Kaav Inc.

    Chicago, IL
    1 day ago
  •  ...Security Engineer Location: Chicago, IL or New York, NY (Hybrid) Overview Our client is seeking a Security Engineer to oversee the protection of cloud infrastructure, corporate systems, and production environments within a regulated financial technology... 

    Artius Solutions

    Chicago, IL
    1 day ago
  •  ...eager to be part of an innovative company that’s on a journey to transform the world’s infrastructure. We are seeking a Senior Security Engineer working directly with Endeavour’s IT team and focusing on troubleshooting technical issues, providing solutions, enhancing... 
    Full time
    Part time
    Local area
    Immediate start
    Remote work
    Flexible hours

    GrabJobs

    Chicago, IL
    1 day ago
  • $160k - $205k

     ...make an impact. Join us! Senior Full Stack Pentester – Cyber Security Assurance Division Are you passionate about cybersecurity and...  ...projects, share your knowledge and experience by mentoring junior engineers, and assist with monitoring and response functions, so those... 
    Work at office
    Remote work
    Shift work
    Day shift

    Koitecc Solutions

    Chicago, IL
    3 days ago
  •  ...Security Operations - Senior Security Engineer Reporting to the Team Lead, Security Operations Engineering, the Security Operations – Senior Security Engineer will be part of a team of highly specialized engineers dedicated to solving complex, security specific challenges... 
    Visa sponsorship

    UncommonX

    Chicago, IL
    2 days ago
  • $117k - $158k

     ...Senior Network Security Engineer Wintrust provides community and commercial banking, specialty finance and wealth management services through its 16 bank charters and nine non-bank businesses. Wintrust delivers the sophisticated solutions of a large bank while staying... 
    Temporary work
    Flexible hours

    Wintrust Financial

    Chicago, IL
    1 day ago
  •  ...Senior Security Engineer Chicago Overview The Senior Security Engineer works in Optiv's 24x7x365 Security Operations Center as a member of the Managed Security Services team. The Senior Security Engineer uses technical knowledge on a number of security technologies... 

    Democorp

    Chicago, IL
    2 days ago
  • $145k

     ...Chicago. Today, Akuna is proud to operate from additional offices in Sydney, Shanghai, London, and Singapore. What you’ll do as a Security Engineer II at Akuna: Akuna is seeking a driven Security Engineer II to safeguard our systems, data, and assets against a threat... 
    Full time
    Work at office

    Akuna Capital

    Chicago, IL
    3 days ago
  •  ...Security Sales Engineer The Security Sales Engineer supports the Enterprise Sales team in achieving revenue targets by delivering high-quality pre-sales technical support and presentations. This role focuses on clearly articulating solution value to prospective customers... 
    Work experience placement
    Remote work

    US HealthCare Careers

    Chicago, IL
    5 days ago
  • A leading technology firm is seeking a Remote Sr. Microsoft Security Consultant for a contract position lasting 6-8 months. This role requires strong technical expertise in integrating Microsoft Security tools, deep knowledge of Microsoft security technologies like Entra... 
    Remote job
    Contract work

    Wavestrong

    Chicago, IL
    3 days ago
  • SAGE Integration is looking for a Senior Systems Engineer in Chicago to develop solutions and support our sales & operations teams. The ideal candidate will have over 10 years in security technologies, excellent problem-solving skills, and knowledge of AutoCAD and IP surveillance... 

    SAGE Integration

    Chicago, IL
    4 days ago
  •  ...technology. This is a hybrid role (3 days in office / 2 days remote). About your team: We seek a motivated Incident Responder to join our Security Operations team. You will assist in monitoring, detecting, analyzing, and responding to security events and incidents. This role... 
    Work at office
    Remote work

    Interactive Brokers

    Chicago, IL
    4 days ago
  •  ...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on...  ...that matter at a national scale. The Junior Security Engineer supports 24x7 enterprise cybersecurity operations by monitoring... 
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement
    Remote work

    Maximus

    Chicago, IL
    4 days ago
  • A cybersecurity company is seeking a Solutions Engineer to enhance engagement with clients and drive revenue through specialized knowledge of offensive security solutions. The role involves understanding competitive landscapes, assisting with customer success, and representing... 
    Remote job
    Flexible hours

    Sprocket Security

    Chicago, IL
    3 days ago
  • $95.86k - $208.27k

     ...hacking certifications not required but preferred; GIAC Web Application Penetration Tester (GWAPT), Council for Registered Ethical Security Testers (CREST), Offensive Security Web Expert (OSWE), Offensive Security Web Assessor (OSWA) Ability to travel as required... 
    Full time
    H1b
    Local area

    KPMG

    Chicago, IL
    19 days ago
  •  ...Description & Requirements Maximus is a trusted federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on sustaining, operating, and improving essential government systems and services, with... 
    Minimum wage
    Full time
    Contract work
    Temporary work
    Work experience placement
    Remote work

    Maximus

    Chicago, IL
    3 days ago
  • $145k - $192.5k

     ...Job Description Bank of America’s Global Information Security (GIS) team is looking for a Cyber Threat Defense AI Security Senior Engineer to lead the integration of advanced AI technologies into our cyber defense ecosystem. The individual will own innovation across preventative... 
    Shift work
    Day shift

    Koitecc Solutions

    Chicago, IL
    5 days ago
  • $150k - $180k

     ...relooking for a SeniorDevSecOpsEngineer to join our Infrastructure & Security team. In this role,you’llown the intersection of platform...  ...do this by embedding security practices directly into our engineering lifecycle, rather than treating it as an afterthought. You’llwork... 
    Temporary work
    Summer work
    Remote work
    Visa sponsorship
    Work visa
    Shift work

    Benchmark Analytics

    Chicago, IL
    2 days ago
  • $122.4k - $228k

     ...Street Job Family Group: Technology We are seeking an enthusiastic and passionate professional for a Senior Cloud, AI & Data Security Engineer role who wants to design and implement security solutions for systems and services across AWS, Azure, and AI/ML platforms . We... 
    Local area

    Dormont Manufacturing Company

    Chicago, IL
    4 days ago
  • $95k - $120k

     ...platform. You will be part of a team that is responsible for the security of these mission critical systems that are used everyday by...  ...world. Job Description We are seeking a Cloud Security Engineer / DevSecOps to join our team in protecting organizational cloud... 
    Work at office
    Relocation
    1 day per week

    Motorola Solutions

    Chicago, IL
    4 days ago
  • $50 - $70 per hour

    We are seeking a Senior Network Security Engineer with deep expertise in Cisco Identity Services Engine (ISE) and identity-driven network segmentation to support and enhance a modern enterprise security architecture. This role will focus on designing, implementing, and... 
    Hourly pay
    Full time
    Live in
    Remote work

    KonnectIT

    Chicago, IL
    2 days ago
  • $98.4k - $160k

     ...you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Job Description: The Network Security Engineer is responsible for supporting multiple security engineering efforts to deliver enterprise security capabilities. Key... 
    Full time
    Work at office
    Flexible hours
    Shift work
    Day shift

    Bank of America

    Chicago, IL
    3 days ago
  • A technology support firm is seeking an experienced IT Security Specialist focused on Microsoft Azure and 365. This remote role involves implementing security controls, monitoring incidents, and contributing to cybersecurity strategy. Candidates should have a minimum of... 
    Contract work
    Remote work

    Support Tech Ltd

    Chicago, IL
    3 days ago
  • $105k

     ...discounts Whole Life Insurance / Critical Illness Insurance / Legal Assistance / Military Leave We are seeking an experienced Network Security Engineer with deep expertise in firewalls. This role will focus heavily on the deployment, management, tuning, and day-to-day... 
    Permanent employment
    Full time
    Temporary work
    Local area
    Flexible hours

    Woodward, Inc.

    Niles, IL
    3 days ago
  • $215.4k - $278.7k

    A leading cybersecurity company is seeking a Systems Engineer to provide technical sales support. The role involves delivering product demonstrations, overcoming technical objections, and building relationships with customers. A successful candidate will have at least... 

    Fortinet

    Chicago, IL
    2 days ago
  • $129.35k - $188.08k

     ...Echo is seeking a Principal Cloud Security Engineer to build secure-by-default AWS platform patterns across a growing multi-account environment. This is a senior hands-on engineering role for someone who approaches security as a software and platform problem: building... 
    Remote work
    Shift work

    Echo Global Logistics

    Chicago, IL
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Security Engineer. Be the first to apply!