Lead Cybersecurity Engineer

CI Financial•Chicago, IL

1d•$115,000 - $175,000•Onsite

About The Position

Join a team that values your ambition and empowers your growth At Corient, we help high- and ultra-high-net-worth individuals and families to enjoy a full life, while enabling them to preserve their wealth for future generations, and provide for the people, causes and communities they care about. We focus on exceeding expectations, simplifying lives, and establishing legacies that last for generations. We are always looking for talented and motivated individuals to join our team. If you want to work for a company that values your contributions and supports your growth, we would like to meet you.

Requirements

A four-year college degree and equivalent industry training or certifications (e.g., CEH, CISM, CISSP, GSEC)
Ten+ years of experience in cybersecurity engineering, architecture, or related position; preferably within the financial services industry.
Strong understanding of Microsoft’s enterprise technology platform, including Azure, Active Directory, SQL, Office365, and the Windows server and desktop operating systems.
Familiarity with industry frameworks, such as NIST, CIS-18 and ISO.
Demonstrated experience designing or integrating security controls such as IAM, EDR, DLP, IGA, SOAR, SIEM, CASB, SWG, ZTNA and/or NGFW platforms.
Strong analytical and critical thinking skills and the ability to organize work in a logical, thorough, and succinct manner.
Strong scripting and automation skills (Python, PowerShell, etc.) and infrastructure as code ecosystems (e.g., Terraform, Cloudformation)
Highly self-motivated, results-orientated, and self-directed to handle multiple ongoing tasks.
Flexibility to adapt to changing assignments and ability to effectively prioritize.
Effective written and verbal English communication at all levels.
Demonstrated ability to operate and innovate in a small team with a fast‐paced environment, balancing both strategic and tactical needs.
Must be 18 years of age or older.
Must have unrestricted work authorization to work in the United States.
For U.S. employment opportunities, Corient hires U.S. citizens or permanent residents.
Must be willing to execute Corient’s Employee Agreement or Confidentiality and Non-Disclosure Agreement, which require, among other things, post-employment obligations relating to non-solicitation, confidentiality, and non-disclosure.

Responsibilities

Security Architecture and Engineering Design, engineer, and document scalable security controls across identity, cloud, application, and network domains.
Translate security policies and standards into technical design patterns and reusable control modules.
Collaborate with infrastructure, cloud, and application teams to embed security requirements early in design and implementation lifecycles.
Develop infrastructure-as-code (IaC) templates, secure configuration baselines, and automation pipelines that enforce consistent security across environments.
Engineer secure configurations and access models for cloud services, including Azure, Microsoft 365, and SaaS platforms.
Implement and integrate authentication and authorization mechanisms using MFA, SAML, and OAuth.
Strengthen identity lifecycle integrations and enforce least-privilege and conditional-access principles.
Support the design of data-protection, encryption, and compliance controls within cloud environments.
Engineer secure connectivity and segmentation models across hybrid and cloud environments.
Design network-security architectures, including next-generation firewall policies, zero-trust access patterns, and secure egress filtering.
Collaborate with Network Engineering to implement scalable designs for ZTNA, SD-WAN, or SASE solutions supporting secure remote access.
Integrate network and endpoint controls into automated provisioning and configuration management frameworks.
Develop scripts and automation to codify and deploy security configurations, compliance checks, and control testing.
Integrate security tooling and telemetry into build and deployment processes for continuous assurance.
Streamline security tasks and verification steps through PowerShell, Python, or other automation frameworks.
Contribute to security architecture reviews, technical documentation, and knowledge sharing across teams.
Provide technical mentorship and guidance on security best practices to engineering and IT staff.
Partner with business and technology leaders to align security engineering priorities with organizational goals.