Cyber Security Engineer II/III - Purple Team

Join the Global Information Security (GIS) department at CME Group as an Offensive Security Engineer. You will be an integral part of our Offensive Security organization, directly contributing to improving CME Group’s security posture.

CME Group is the world's leading and most diverse derivatives marketplace, operating major exchanges (CME, CBOT, NYMEX, COMEX) for trading futures and options. It enables global market participants to manage risk, speculate, and trade assets including interest rates, equities, foreign exchange, energy, agricultural products, and cryptocurrencies via the CME Globex platform.

You will play a significant support role in the execution of Purple and Red Team exercises, against complex hybrid environments, proactively testing and strengthening our internal and internet facing systems.

This is a perfect opportunity for a sharp, action-oriented engineer to become a key part of a team of highly skilled cybersecurity professionals who execute a pivotal role in protecting and defending national critical infrastructure.

What You'll Get

• Elevate your expertise in a supportive environment fostering continuous learning, rapid career progression, and an inclusive, global team culture.
• Gain broad exposure to CME Group's diverse products, asset classes, and cross-functional teams, expanding your impact across critical financial infrastructure.
• Receive a competitive salary and comprehensive benefits package
  
  

What You Will Do

As a key member of our offensive security team, you will:

• Provide DevSecOps support to build and maintain robust Red and Purple Team infrastructure (cloud and on-prem), continuously automating processes for efficiency and scale.
• Provide hands-on execution of Purple Team exercises, directly partnering with cyber defense to improve detection and response capabilities.
• Provide a supporting role in the execution of high-impact Red Team exercises against our complex hybrid cloud environments, driven by real-world threat intelligence and the MITRE ATT&CK Framework.
• Provide a supporting role in the execution of ad-hoc offensive security tests utilizing industry-leading and internally developed tooling to uncover advanced security gaps.
• Assist cyber defense teams during incident investigations providing hands-on-keyboard support and providing insights on attacker tradecraft and mindset.
• Continue building knowledge and advancing your skillset in Red & Purple teaming tradecraft by constantly researching, learning and sharing knowledge of the latest offensive security TTPs (Tactics, Techniques, and Procedures) across the security organization.
• Contribute to the authoring of comprehensive post-exercise reports, including detailed technical findings, compromise narratives, and strategic risk-rated recommendations for remediation.
• Champion security awareness and technical knowledge-sharing by collaborating with information security, technology, and business stakeholders.
• Actively support the Offensive Security Team’s expertise by contributing to presentations and speaking opportunities at internal conferences.
  
  

What You’ll Bring

We're looking for an engineer with a robust offensive mindset with proven building experience in complex enterprise environments.

• 3+ years of DevSecOp experience using tooling such as Terraform, Ansible, Docker and custom created tooling to build and maintain both on-prem and cloud based infrastructure.
• Skilled in system administration for Linux and Windows, including hardening concepts and techniques.
• Skilled in Python and at least one other scripting language (Bash, PowerShell, Ruby, etc.), with a focus on automation.
• Experience with at least one cloud environment (AWS, GCP, Azure).
• Experienced in git for source code version control.
• Working knowledge of MITRE ATT&CK framework tactics, techniques and procedures.
• Working knowledge of how Purple Team exercises can help to improve security detection capabilities.
• Understanding of measuring and rating vulnerabilities based on principal characteristics of a vulnerability, via frameworks such as, but not limited to ‘Common Vulnerability Scoring System’ (CVSS).
• A proven self-starter who can adhere to a project brief and drive deliverables forward with minimal supervision.
  
  

Nice to have

• DevSecOp experience to support creation/deployment of Red & Purple team attack infrastructure - including but not limited to redirectors, C2 servers and payload testing
• Experience of software build and deployment using CI/CD pipelines
• Understanding of Purple Team concepts, tools, and automation strategies.
• Hands-on experience of penetration testing and/or Red Teaming.
• Experience of Purple Team project delivery to include creation and execution of Purple Team test plans in collaboration with Blue (defense) teams.
• Experience of using Purple Team automation tools, such as, but not limited to, Atomic Red Team.
• Any relevant offensive security certifications, such as, but not limited to OSCP, CRTO, or SANS related.
• Experience of building and/or customizing payloads for use in offensive security exercises (Red and/or Purple).
• Creating or contributing to open source tooling (e.g. Github, Bitbucket etc).
• Any experience of using and securing MacOS.
• Experience of working in an agile driven work environment.
  
  

CME Group: Where Futures are Made

CME Group is the world’s leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career by shaping tomorrow. We invest in your success and you own it – all while working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And we’re looking for more.

At CME Group, we embrace our employees' unique experiences and skills to ensure that everyone’s perspectives are acknowledged and valued. As an equal-opportunity employer, we consider all potential employees without regard to any protected characteristic.

Important Notice: Recruitment fraud is on the rise, with scammers using misleading promises of job offers and interviews to solicit money and personal information from job seekers. CME Group adheres to established procedures designed to maintain trust, confidence and security throughout our recruitment process. Learn more here.