Security Engineer
$78.02k - $119.19kSargent & Lundy
Description
Sargent & Lundy is a leading consulting engineering firm specializing in the power and energy sectors. Since 1891, we have provided comprehensive engineering, design, and consulting services for both traditional and renewable power generation, grid modernization, nuclear power, and beyond. Our mission is to help clients achieve their energy goals effectively by leveraging advanced technologies and adopting sustainable practices.
Role Overview
We are looking to hire a senior fully technical, hands-on Security Engineer who can take a security requirement and turn it into a working control, then tune it, monitor it, and improve it over time . You will be responsible for operating the technical security controls and platforms that protect Sargent & Lundy, our clients, and our partners . This is not a security governance, policy-writing, or process management role.
You will work side by side with the IT Infrastructure, Cloud Engineering, Application teams, SOC, and GRC. Controls you build will support and enhance our security posture and aligns with ISO 27001, NIST 800-171, and CMMC 2, and protect sensitive data .
Key Responsibilities
Identity and Zero Trust
Establish, enforce and operate the full IAM lifecycle in Microsoft Entra: SSO, MFA, conditional access, lifecycle workflows, entitlement management, and privileged access integration.
Build and tune Zero Trust controls across identity, device, network, and application layers, including conditional access policies, and continuous verification.
Partner to i ntegrate IAM with the rest of the security stack so that XSIAM, CASB, DLP, and EDR/ XDR all see consistent identity signal .
Run technical access reviews and tighten entitlement design where you find drift.
Cloud Security: Azure and Oracle Cloud
Establish and enforce cloud security controls in Azure and Oracle Cloud Infrastructure: landing zones, network security groups, identity, key management, encryption, logging, and workload protection.
Operate CSPM tooling against both clouds, triage findings, and provide secure configurations at the cloud resource level alongside the cloud engineering team.
Partner to b uild secure-by-default templates so cloud teams can deploy without round-tripping every change through security.
Palo Alto Security Platform
Understand and m anage Prisma Access (SASE) for remote users and sites: tunnels, security policy, SSO integration, and traffic forwarding rules.
Understand and partner with SOC to tune Palo Alto XSIAM, including data source onboarding, parser tuning, correlation rules, detection content, and SOAR playbooks that feed Unit 42.
Data Protection and Microsoft Purview DLP
Implement Microsoft Purview at a deep technical level: Information Protection, DLP, Insider Risk Management, sensitivity labels, and auto-classification.
Author and tune DLP policies across endpoint, Outlook and Exchange, Teams, SharePoint, OneDrive, and Egnyte. Reduce noise without missing real exposure.
Handle DLP incident triage, label troubleshooting, and policy iteration based on what production actually shows you.
AI Usage Security
Implement technical controls for safe AI usage across the company: data-exposure prevention for generative AI tools, prompt and usage monitoring, and integration with the existing DLP and CASB stack.
Evaluate emerging AI risks (prompt injection, model abuse, sensitive-data leakage, shadow AI) and design configurations that mitigate them in our environment.
Partner with product and engineering teams shipping AI-enabled features so the controls land at the right layer.
Architecture and Design Reviews
Review the security design of new SaaS, IaaS, PaaS, and in-house applications and produce specific, actionable findings.
Work with project teams early so controls are designed in, not retrofitted after go-live.
This position offers the flexibility of a hybrid schedule with the expectation of 3 days per week in our downtown Chicago office, and 2 days remote from home.
Qualifications
Required Experience
Bachelor's degree in Computer Science , Information Systems, Cybersecurity, or a related field. Equivalent professional experience will be considered.
5+ years of hands-on Security Engineering experience with demonstrated ownership of enterprise security platforms in production. Pure governance, audit, or policy-only backgrounds will not match the work in this role.
Deep, hands-on IAM lifecycle experience with Microsoft Entra (SSO, MFA, conditional access, lifecycle workflows) and applied Zero Trust implementation.
Hands-on cloud security experience with Microsoft Azure (required) and Oracle Cloud Infrastructure (strongly preferred), including technical configuration of native security services.
Hands-on configuration and operation of the Palo Alto security platform: Prisma (Access and Cloud), Cortex XDR, and XSIAM.
Implementation-level experience with Microsoft Purview for DLP, including policy authoring, classification, labeling, tuning, and incident handling.
Working knowledge of AI risks (data exposure, prompt injection, model misuse, shadow AI) and the controls used to mitigate them in an enterprise setting.
Comfort working across on-prem and cloud environments and across Windows, macOS, and Linux endpoints.
Familiarity with compliance frameworks (ISO 27001, NIST 800-171, CMMC Level 2, SOC 2) and the ability to translate a control requirement into a working configuration.
Certifications: CompTIA Security+ or (ISC)² SSCP or PCCSE (Palo Alto Networks Certified Cloud Security Engineer) an equivalent foundational technical certification.
Preferred Experience
Microsoft Azure Security certification (AZ-500 or equivalent).
Microsoft Purview Information Protection and DLP certification or equivalent.
Oracle Cloud Infrastructure security credentials.
Microsoft Cybersecurity Architect (SC-100),
CISSP or CCSP .
Soft Skills
Strong written and verbal communication . You can walk an engineer through a config in one conversation and a business stakeholder through the impact in the next.
Bias for action. You would rather build a working control and iterate than spend weeks producing a perfect document.
Comfort with ambiguity. You can take a vague security ask and break it into a concrete configuration plan.
Collaboration across teams. You will work daily with SOC, IT Infrastructure, Cloud, App Dev, and GRC, and the role only works if those partnerships do.
Operational discipline. You document what you build, version your configurations, and leave the next engineer better than you found it.
We do not sponsor employees for work authorization in the U.S. for this position.
Award-Winning Benefits
At Sargent & Lundy, we care about the health and well-being of our employees. Our commitment extends beyond the workplace, offering comprehensive healthcare plans and generous paid time off to support our team members in every aspect of their lives. We understand the importance of work-life balance, which is why we are proud to provide competitive, award-winning benefits. Our dedication to employee satisfaction has earned us the prestigious Top Workplaces Culture Excellence Award for compensation and benefits in 2022, 2023, and 2024.
Health & Wellness Financial Benefits Work-Life Balance
Health Plans: Medical, Dental, Vision
Life & Accident Insurance
Disability Coverage
Employee Assistance Program (EAP)
Back-Up Daycare
FSA & HSA
401(k)
Pre-Tax Commuter Account
Merit Scholarship Program
Employee Discount Program
Corporate Charitable Giving Program
Tuition Assistance
First Professional Licensure Bonus
Employee Referral Bonus
Paid Annual Personal/Sick Time (PST)
Paid Vacation
Paid Holidays
Paid Parental Leave
Paid Bereavement Leave
Flexible Work Arrangements
Compensation Range
$78,016 - $119,191
Transparency Statement
Sargent & Lundy discloses compensation ranges that comply with all local and state regulations. The total compensation package for eligible positions will include a base salary or an hourly rate and a comprehensive benefits package, reflecting our commitment to rewarding performance and supporting the overall well-being of our employees. Individuals may also be eligible to participate in our yearly discretionary bonus.
Awards & Recognition
Equal Opportunity
Sargent & Lundy is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, national origin, disability status, protected veteran status, or any protected status as defined by applicable law.
Software Powered by ICIMS
CityChicago
StateIL
CountryUnited States
Area of InterestInformation Technology
TypeFull Time - Regular
Job ID2026-24559
Business GroupCEO Group
DepartmentInformation Security
$104k - $156k
...Posting Type Remote/Hybrid Job Overview The Advanced Security Engineer is a technically deep, hands-on practitioner who forms the operational backbone of the enterprise security function. Operating within a layered defense-in-depth program, this engineer owns...SuggestedRemote work$46.64 - $72.29 per hour
...Security Engineer II Hourly Pay Range: $46.64 - $72.29 - The hourly pay rate offered is determined by a candidate's expertise and years of experience, among other factors. Position Highlights: Location: 4901 Searle Parkway, Skokie IL (flexible) Full Time...SuggestedHourly payFull timeFor contractorsRemote workMonday to FridayFlexible hours$100k - $160k
...OAuth, and conditional access. -Design and maintain enterprise security platforms that enforce security policies across endpoints,... ...email compromise. -Collaborate with infrastructure and cloud engineering teams to implement security controls across hybrid environments...SuggestedPermanent employmentTemporary workWork at officeFlexible hours$97.86k - $142.29k
...We are seeking a Security Engineer with 4+ years of security operations experience to serve as a hands-on technical contributor within our 24/7 Security Operations Center (SOC). In this role you will be a core executor of our detection, investigation, and response capability...SuggestedWork at office- ...Job Title Project Overview: Northern Trust is looking for an experienced resource to support Global Physical Security Systems, a suite of applications that control secure access (eg building badging, security cameras, etc.) to Northern Trust facilities globally....SuggestedFor contractorsRemote work
- ...Security Engineer Location: Chicago, IL or New York, NY (Hybrid) Overview Our client is seeking a Security Engineer to oversee the protection of cloud infrastructure, corporate systems, and production environments within a regulated financial technology...
- ..., DHCP and WINS, including hosts and lmhosts files • Expert level knowledge of protocols such as: Kerberos, NTLM, TCP, UDP, IPv4, IPv6, SAML, LDAP and Secure LDAP • Expert level knowledge of Windows server operating systems • Knowledge of Semperis ADFR and DSP...
- Automation Opportunities The individual will be responsible for identifying opportunities for the automation of tasks, processes, or entire solutions and acting on them, as well as identifying any opportunities for improvement in the environment. Active Directory...
- ...Chicago. United Airlines. USC only $77/hr c2c • Top 3 skill sets required for this role: Experience with security concepts and engineering security vulnerability mitigation solutions in both Windows end user compute and mobile environments. Broad infrastructure...
- Dormont Manufacturing Co is seeking an IT Security Engineer II to enhance cybersecurity measures and manage security incidents. Candidates should have a Bachelor’s Degree and relevant certifications along with a strong background in Cybersecurity. The role involves designing...
$141k - $169.25k
Staff Security Engineer, PEG Security Engineering (Information Security, Architecture and Engineering) Job ID: 105759 Work Areas: Technology & Engineering Employment Type: Permanent Full-Time Location(s): Boston, Chicago Description & Requirements WHAT YOU'LL DO Platform...Permanent employmentFull timeWork at officeLocal area1 day per week$117k - $158k
...Senior Network Security Engineer Wintrust provides community and commercial banking, specialty finance and wealth management services through its 16 bank charters and nine non-bank businesses. Wintrust delivers the sophisticated solutions of a large bank while staying...Temporary workFlexible hours- ...Network Security Engineer: Onsite in the Chicago area C2H or Direct hire With or without Cisco Switches exp. • 8-12 years of exp. • Provide direction for the secure operation of the enterprise, focusing on security components, risk management and controls...
- ...Security Operations - Senior Security Engineer Reporting to the Team Lead, Security Operations Engineering, the Security Operations – Senior Security Engineer will be part of a team of highly specialized engineers dedicated to solving complex, security specific challenges...Visa sponsorship
$80k - $92k
...with occasional travel to USA, and in Canada. Role Description: We are looking for a highly qualified Senior Network Security Engineer to join our Network & Security Business Unit. The professional will be responsible for the design, implementation, maintenance...Local areaRemote work$140k - $165k
...rapidly growing organization with helping people as its number one goal, we want to hear from you. The Role As a Senior Security Engineer, you'll harden the security posture of our AWS environment and our software development pipeline. Cloud Security and...Full time- ...POA&M tracking activities, supporting remediation efforts and preparation of recurring cybersecurity scorecard data. - Monitor security tools and alerts, performing initial triage and escalating issues in accordance with defined processes. - Maintain and update incident...Minimum wageContract workTemporary workWork experience placementRemote work
- ...Senior Offensive Security Engineer - Pentester Denver, Colorado;Seattle, Washington; Jacksonville, Florida; Charlotte, North Carolina; Jersey City, New Jersey; Boston, Massachusetts; Washington, District of Columbia; Chicago, Illinois To proceed with your application...Work at officeRemote workShift workDay shift
- ...Senior Security Engineer Chicago Overview The Senior Security Engineer works in Optiv's 24x7x365 Security Operations Center as a member of the Managed Security Services team. The Senior Security Engineer uses technical knowledge on a number of security technologies...
$112k - $130k
...Senior Security EngineerRemote - United StatesJR013945 At Ensono, our Purpose is to be a relentless ally, disrupting the status quo... ...CURIOSITY, PASSION Role Summary The Senior Information Security Engineer is responsible for designing, implementing, and maintaining...Full timeTemporary workRemote workWork from homeFlexible hours$175k - $215k
...Waymo Network Security Engineer Waymo is an autonomous driving technology company with the mission to be the world's most trusted driver. Since its start as the Google Self-Driving Car Project in 2009, Waymo has focused on building the Waymo Driver—The World's Most...Full timeRemote work$160k - $205k
...make an impact. Join us! Senior Full Stack Pentester – Cyber Security Assurance Division Are you passionate about cybersecurity and... ...projects, share your knowledge and experience by mentoring junior engineers, and assist with monitoring and response functions, so those...Work at officeRemote workShift workDay shift$131k - $169k
...Senior Security Engineer Seeking a development & cloud focused Senior Security Engineer to join our expanding security team. The ideal candidate will have passion for AppSec, Cloud and AI. They will be a skilled communicator and relationship builder capable of promoting...Work at officeWork from homeFlexible hoursDay shift- ...Senior Security Engineer Foley & Lardner LLP is a great place to work because of what we do and how we do it. Here, your unique perspectives, experiences, and abilities will be embraced and developed, so you can excel. Being a part of Foley means having the opportunities...Weekend workAfternoon shift
$110k - $170k
...Position: Information Systems Security Engineer Location: Warrenton, VA Remote Status: Hybrid Job Id: 13805-STRIDE # of Openings: 1 Overview BCubed Engineering, an Auria company, is looking to hire an Information Systems Security Engineer for a hybrid role at one of the...Work at officeRemote work$174k - $239k
...Secure Every Identity, from AI to Human Identity is the key to unlocking the potential of AI. Okta secures AI by building the trusted... ...are too, let's talk. We are looking for a Staff Software Engineer that will join the Auth0 Security Engineering organization. You...Permanent employmentLocal areaWorldwideFlexible hours$210k - $260k
...journey toward becoming the world's top retail-focused trading platform in the world. What you'll do: We're looking for a Staff Security Engineer, Application Security to help scale and mature our security program. You'll own key security domains and initiatives end-to-...Full timeWork at officeRemote workWorldwideMonday to FridayFlexible hours$108.25k - $130k
SaaS Senior Engineer, Information Security, Architecture and Engineering - Technology Solutions Group Job ID: 105237 Work Areas: Technology & Engineering Employment Type: Permanent Full-Time Location(s): Boston, Chicago Description & Requirements Who you'll work with You...Permanent employmentFull timeWork experience placementWork at office1 day per week- ...humble and looking to make a lasting impact in healthcare, we'd like to meet you. ABOUT THE ROLE As the Security Operations Engineer at Hopscotch, you will lead and manage core security and compliance controls for the business using modern methods and...Live inWork at office
- ...Security Operations Engineer The Security Operations Engineer role provides daily incident response in addition to providing 24x7 support and operational availability of the security infrastructure. Responsibilities include the monitoring and investigation of security...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Security Engineer. Be the first to apply!
- information technology security engineer Chicago, IL
- principal security engineer Chicago, IL
- security engineering manager Chicago, IL
- endpoint security engineer Chicago, IL
- security engineer Chicago, IL
- sr information security engineer Chicago, IL
- senior application security engineer Chicago, IL
- aws cloud security engineer Chicago, IL
- IT security engineer Chicago, IL
- security software engineer Chicago, IL

