Principal Application Security Engineer
$163.63k - $211.75kCboe Digital
Job Description: Building trusted markets — powered by our people
At Cboe Global Markets, we inspire our people to solve complex challenges together because what we do matters. We provide the financial infrastructure that powers the global economy. As a leading provider of market infrastructure and tradable products, Cboe delivers cutting-edge trading, clearing and investment solutions to market participants around the world.
We’re building meaningful ways to support professional and personal development while strengthening the trust we’ve earned as a global market leader. Our teams are empowered to share ideas, actively pursue them and bring on a challenge. As champions of internal mobility and access to opportunity, we encourage our people to “go for it” and equip our managers with the training to coach their teams to the next level. We strive to provide employees a safe space to network, share ideas and create opportunities.
To support strong partnership and team connection, this role follows a four day in office work model.
Location OverviewCboe HQ is located in the historic Old Post Office district, it’s a landmark that blends classic architecture with modern amenities. The building features expansive spaces with high ceilings and large windows, offering an abundance of natural light and panoramic views of the city skyline and the Chicago River.
With its prime location in the heart of downtown, the OPO Building provides easy access to major transportation hubs, including Union Station and multiple CTA lines, making it convenient for commuters. The building is home to a variety of amenities, including restaurants, a fitness center, and collaborative workspaces, creating a vibrant and dynamic work environment in one of Chicago's most iconic areas.
Role OverviewCboe’s Cybersecurity team is seeking a Principal Application Security Engineer to provide senior technical leadership and end-to-end ownership for embedding pragmatic, scalable security across our hybrid engineering ecosystem. In this role, you will partner closely with application, platform, and infrastructure teams to define secure-by-default architecture patterns, shape strategic security direction, and drive implementation of security controls throughout the software development lifecycle (SDLC) across microservices, APIs, and containerized workloads operating in both public cloud and on-premises Kubernetes environments.
You will operate as a principal-level individual contributor with broad technical influence, accountable for setting direction in complex or ambiguous situations, making high-impact architectural decisions, and driving consistent security outcomes across multiple teams and platforms. This role requires deep hands-on expertise, strong systems thinking, and the ability to influence engineering practices, standards, and priorities at scale while serving as a trusted technical leader for both security and engineering stakeholders.
This position reports to the Senior Manager, Application and Cloud Security.
Your responsibilities will be: Application & API Security- Own secure architecture reviews and threat modeling for new systems and major changes, establishing architectural direction for Kubernetes trust boundaries, secure service-to-service communication, and API authorization models across the environment
- Define, mature, and drive adoption of application and API security standards, including authentication and authorization patterns, input validation requirements, and mitigations for common vulnerability classes such as SSRF, injection, and access control flaws
- Provide principal-level guidance for high-risk code and design changes, resolving complex security tradeoffs and driving remediation approaches that are durable, scalable, and aligned to engineering realities
- Act as a senior technical partner to engineering leadership, influencing roadmaps, architecture decisions, and secure-by-default design patterns across the organization
- Own Kubernetes workload security standards across multi-cluster environments, setting technical direction for RBAC, pod security controls, namespace isolation, network policies, secrets management, and platform guardrails
- Establish and continuously evolve the container image security strategy, including secure base image standards, vulnerability management expectations, SBOM practices, and deployment controls that prevent risky configurations from reaching production
- Drive the design and adoption of DevSecOps guardrails in CI/CD pipelines, ensuring SAST, SCA, secret scanning, container scanning, and IaC scanning are integrated through high-signal workflows that scale across engineering teams with minimal developer friction
- Own the strategy for risk-based software vulnerability management, including triage, exploitability assessment, remediation priorities, service level expectations, and metrics that demonstrate measurable reduction in security risk over time
- Develop and champion secure coding guidance, reusable security patterns, and enablement programs that raise engineering capability and create lasting improvements in how teams design and build software
- Lead security design support during incident response and post-incident follow-through, translating lessons learned into durable architectural, control, and guardrail improvements that prevent recurrence
- Own the secure adoption of AI-enabled development and security capabilities, establishing patterns and guardrails for secure code review, automated assessments, and process improvements throughout the SDLC.
- Provide principal-level architecture and risk guidance for AI implementations and integrations, shaping secure design decisions, control expectations, and review practices for emerging use cases.
- Drive governance and technical controls to define, monitor, and enforce data boundaries, permissions, and approved usage patterns for AI-related data access.
- 12+ years of experience in application security, product security, or software engineering, including significant experience shaping architecture, setting standards, and driving security outcomes across complex production environments
- Experience directly writing and delivering production software as a software engineer
- Bachelor's degree in Computer Science, Information Security, or related field preferred
- Relevant certifications preferred (e.g., CSSLP, CKS, OSCP, AWS/Azure Security Specialty)
- Proven ability to read, write, and review production-grade code in at least one modern backend language (e.g., C++, Go, Java, C#, Python, Node.js), with the judgment to guide secure engineering decisions in high-impact systems
- Strong working knowledge of Kubernetes security primitives (RBAC, namespaces, service accounts, pod security) and container build practices
- Hands-on experience integrating DevSecOps tooling (SAST, SCA, secret scanning, IaC/container scanning) into CI/CD pipelines
- Experience securing hybrid environments with workloads running in both public cloud (EKS, AKS, GKE) and on-prem Kubernetes platforms
- Exceptional communication, influence, and technical leadership skills, with a demonstrated ability to drive alignment, establish direction, and own outcomes across engineering, platform, and security stakeholders
We value the total wellbeing of our people – including health, financial, personal and social wellness. We believe standard benefits like health insurance and fair pay are given at any organization. Still, you should know what we offer:
- Medical Coverage
- Prescription Drug Coverage
- Additional Medical Benefit
- Dental Coverage
- Vision Coverage
- 401K or Pension Company Match
- Spending Accounts
- Life and AD&D Insurance
- Retirement Savings Plan
- Employee Stock Purchase Plan (ESPP)
- Voluntary & Additional Benefits
- Paid Time Off
We’re reimagining the future of the workplace by focusing on what matters most, our people. Our journey is an inclusive one. We’re investing deeply in leadership programs and career development initiatives that ensure everyone has an equal chance to succeed.
We work with purpose, solving problems with ingenuity, collaboration, and a lot of passion. We’re an engaged and excited team connecting markets across borders and embracing growth in all its forms to achieve incredible outcomes.
Learn more about life at Cboe on LinkedIn and Cboe.com.
Equal Employment OpportunityWe’re proud to be an equal opportunity employer do not discriminate against any employee or applicant for employment based on any legally protected characteristic, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetic information, or veteran status. We are committed to fostering a workplace where all individuals are valued and respected.
#LI-CP1
This position is not eligible for visa sponsorship. Candidates must be legally authorized to work in the United States without the need for employer sponsorship now or in the future. Salary Ranges (applicable for US locations only)At Cboe, we are committed to providing a competitive, transparent, and market‑informed total rewards program. The anticipated base salary range for this role is $163,625-$211,750, with actual compensation determined by job‑related factors such as skills, relevant experience, education, internal alignment, and location.
This role may also be eligible for annual incentive compensation and, where applicable, participation in Cboe's long-term equity programs.
Additional information about Cboe's total rewards program, including benefits and other compensation components, can be found here: [Total Rewards at CBOE](
Any communication from Cboe regarding this position will only come from a Cboe recruiter who has a @cboe.com email or via LinkedIn Recruiter. Cboe does not use any other third party communication tools for recruiting purposes.- ...providing critical information about the right treatments for the right patients, at the right time. Tempus is seeking a Senior Application Security Engineer with deep expertise in penetration testing to lead efforts in identifying and remediating vulnerabilities across web,...Suggested
$127k - $167k
...Overview: Senior Application Engineer Salary: $127,000-$167,000 What You'll Do We are seeking a Senior Application Engineer I... ...and cross-functional stakeholders to ensure applications are secure, scalable, and fully leveraged to meet complex organizational...Suggested$100k - $150k
...Senior Applications Engineer RFA Engineering is an engineering service provider dedicated to delivering our clients with timely engineering support and expertise. We are currently supporting one of our clients in the industrial equipment and hydraulics space in their...SuggestedHome officeFlexible hours- ..., EUV or electronics - TRUMPF is building technological worlds for future generations. Are you ready for new challenges? Applications Engineer will perform essential functions for the Sales, Applications areas in the form of product demonstrations, time studies, and...SuggestedWork experience placementWorldwide
$100k - $125k
...government and nonprofit organizations and individuals. Applications Engineer The Applications Engineer is a highly skilled technical... ...complex project work with minimal supervision, ensuring stable, secure, and scalable application solutions aligned with business...SuggestedTemporary workWork at officeRemote work- ...areas including but not limited to: gaining working knowledge of application equipment/developing expertise in setting up sample or... ...Experience: ~ Bachelor's degree in Chemical or Mechanical Engineering required. ~1-5 years' experience in the field. Pay...
$180k
...Job Type Full-time Description We are seeking an Application Engineer who provides advanced technical expertise to support customers, sales teams, and internal departments. This role handles complex applications, develops engineered solutions, and leads...Full timeWork at office- ...Description: The role is an IT Support Analyst responsible for L2 production support for Fund Accounting and US Transfer Agency applications. The position requires strong mainframe skills (JCL, COBOL, DB2, VSAM) and the ability to troubleshoot issues across multiple...Night shift3 days per week
- ...Applications Support Engineer Location - Chicago, IL Duration - 12+ Rate - DOE U.S. Citizens and those authorized to work in the U.S. are encouraged... ...integration, webservices, backend infrastructure, cloud security, and build / release engineering Support build, manage...Weekend work
$130k - $165k
...Application Support Engineer As an Application Support Engineer on the Unified Platform Support team, you'll be part of a tight knit and expanding team of support analysts at a top tier proprietary trading firm. You will be working hand in glove with developers providing...Temporary workWork at officeRemote workFlexible hours3 days per week- ...Application Support Engineer The Application Support Engineer manages desktop and web-based application software solutions typically purchased from third party vendors. They will work directly with the business owners from various administrative departments and provide...Work at office
- / / / Application Engineer - Arizona# Application Engineer - Arizona**Job Title**: Application Engineer - Arizona**Department**: 2320 - Application Engineers**Location**: Arizona---## About MethodsMethods Machine Tools supplies high-quality, high-precision machine tools...Remote workNight shift
- A government services provider is seeking an experienced IT professional to provide legal support services in the eDiscovery space. The ideal candidate will have substantial programming experience, specifically in database management systems, and must be a United States...
$47.85 - $57.85 per hour
...mutually agreeable solutions to close workflow gaps. Involves design, building, testing, and implementation of Epic integration application systems. Works with clinicians to create or adapt written protocols. Resource should able to troubleshoot the issues and provide...Hourly payWork experience placementLive inWork at officeLocal areaFlexible hours- SGS Société Générale de Surveillance SA in Chicago is looking for a skilled professional to support trading floor applications. This role involves troubleshooting issues, software releases, and developing applications to enhance operational efficiency. A strong background...
- ...equal opportunity employer. All qualified applicants will receive consideration for... ...Rand is seeking an experienced Application Engineer responsible for the technical application... ...customer success Play a critical role in securing strategic, multi-year platform wins that...
- ...Global Markets firm based in Chicago, is seeking a technical Application Support Engineer to join its Front Office Business Support & Monitoring IT... ...with Equity Finance/Delta One instruments (TRS, repos, securities lending). Ability to engage credibly with traders and...
- ...a crucial role within the Global Banking Technology & Operations Department in Chicago. This role focuses on supporting trading applications, troubleshooting issues, and delivering software releases in a fast-paced financial environment. An ideal candidate has extensive...
$145.2k - $236.7k
...Lead Associate Principal Cloud Security Engineer Join our dynamic Security Engineering team as a Lead Associate Principal Cloud Security Engineer and make a significant impact on our organization's cybersecurity posture. In this role, you'll be responsible for driving...PrincipalLocal areaRemote work2 days per week$160k - $200k
...RFA Engineering ( ) is an engineering service provider dedicated to delivering our clients with timely engineering support and expertise... ...both engineering and sales functions to support customer applications and deliver technical solutions. Applications Engineering Manager...Remote workHome officeFlexible hours$79k - $85k
...CNC Tooling Sales and Application Engineer Location: Chicago, IL, US, 60701 On-site or Remote: Onsite REQ ID: 47699 About Kennametal With over 80 years as an industrial technology leader, Kennametal Inc. delivers productivity to customers through materials science, tooling...Contract workLive inRemote workWork from homeHome officeNight shift$110k - $146k
...Application Sales Engineer II The Application Sales Engineer (ASE) is responsible for selling value-added technology-based gas applications... ...apart because we put what matters first, and you matter. Principal Responsibilities: To create, grow, and maintain sales...Contract workTemporary work$129.35k - $188.08k
...Echo is seeking a Principal Cloud Security Engineer to build secure-by-default AWS platform patterns across a growing multi-account environment.... ...is equally comfortable with cloud infrastructure, modern application architectures, and developer workflows, and can work credibly...PrincipalRemote workShift work- ...industries. Based in Chicago, IL, this is a high-visibility role for a technical expert who wants to transition between the high-stakes world of pre-sales consultation and the technical precision of post-sales project engineering. You will be the primary technical authority...
$79k - $85k
...CNC Tooling Sales and Application Engineer Location - Chicago, IL or Southern WI Kennametal is seeking talented machinists and programmers looking to transition their career off the floor day to day into a professional sales role. If you are currently working as...Contract workLive inWork from homeHome officeNight shift$70k - $110k
Medium is looking for a skilled Application Support Engineer to support trading environments at Nadex, a regulated derivatives trading exchange. You will ensure the performance and stability of production and demo trading systems, with a hands-on, proactive approach in...Remote job$122.4k - $228k
...Application Deadline: 07/30/2026 Address: 320 S Canal Street Job Family Group: Technology We are seeking an enthusiastic... ...and passionate professional for a Senior Cloud, AI & Data Security Engineer role who wants to design and implement security solutions...PrincipalContract workPart timeLocal area- A machine tool supplier is seeking an experienced Application Engineer to support CNC machine operations, focusing on programming, setup, and customer training. The ideal candidate has at least 10 years of CNC experience and strong technical skills. This position involves...Remote job
$140k - $160k
...new positions to the technology community. We seek talented, passionate, and committed engineers, technologists, and business leaders to join us. Job Summary: The Sr. Field Application Engineer (FAE) will be part of a growing, dynamic, highly-focused team responsible...Full timeWorldwide$53.94k - $80.76k
Join KEYENCE as a Field Application Engineer Training Classes Begins January or July 2027Multiple U.S. Locations | Entry-Level | Full-Time Are you ready to launch your career with one of the world’s most innovative companies? KEYENCE is looking for driven, adaptable...Full timeWork at officeRemote workNight shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Principal Application Security Engineer. Be the first to apply!
- principal cloud engineer Chicago, IL
- principal developer Chicago, IL
- hotel chief engineer Chicago, IL
- director data engineering Chicago, IL
- senior principal engineer Chicago, IL
- data center chief engineer Chicago, IL
- principal data engineer Chicago, IL
- principal network engineer Chicago, IL
- senior chief engineer Chicago, IL
- general engineer Chicago, IL

