Lead InfoSec Engineer

Position Summary

The Lead InfoSec Engineer is responsible for implementing and maintaining technologies to protect the Firm’s systems. This role provides technical leadership on strategic security initiatives while supporting network security, architecture, and best practices across the organization.

Essential Functions

• Ensure secure architecture for authentication and authorization (internal and B2B)

• Implement firm security architecture supporting cloud transitions (Azure, M365, Teams, O365)

• Manage and communicate security risks effectively

• Develop and maintain security documentation

• Collaborate across IT and business departments to meet security objectives

• Ensure adherence to change control processes and communicate updates

• Stay current on emerging security threats and solutions

Data Loss Prevention (DLP)

• Analyze DLP system data to ensure policy compliance

• Manage DLP systems and processes

• Define DLP policies and incident response workflows

• Develop DLP effectiveness metrics

Security Operations

• Assist with creation and enforcement of Information Security policies

• Manage security-related projects and tasks

• Detect and respond to security incidents

• Coordinate incident response planning and execution

• Identify causes of incidents and recommend mitigation strategies

• Control access to firm systems and configurations

Monitoring, Compliance & Risk

• Implement monitoring and alerting based on business needs

• Conduct and support risk assessments (vendors, systems, projects)

• Support development and approval of IT security policies

• Ensure independent security reviews are completed and gaps addressed

• Monitor physical data security (e.g., backup storage)

Collaboration & Training

• Educate employees on security best practices

• Partner with IT teams to enforce security standards

• Maintain internal security awareness resources

Education

• Bachelor’s degree in a related field OR equivalent experience

• CISSP or CEH certification preferred

Experience

• 5+ years in Information Security

Technical Skills

• Strong knowledge of CISSP / CEH principles

• Knowledge of ISO 27002 (preferred)

• Networking and security standards expertise

• Authentication methods experience

• Firewall and network security knowledge (preferred)

• Disaster Recovery knowledge (preferred)

• Cloud security experience (Azure, M365, O365)

• DLP incident handling and reporting

• Microsoft Office proficiency

Preferred Tools/Platforms:

• Microsoft Defender for Endpoint

• Thales

• CrowdStrike Falcon

• SIEM tools

• CyberArk

• Rapid7

• Palo Alto

Additional:

• Experience securing AI-driven systems and using AI tools

Performance Traits

• Strong communication and interpersonal skills

• Ability to work in a collaborative, high-demand environment

• Effective under pressure with shifting priorities

• Self-starter with strong initiative

• Customer-focused mindset

• High attention to detail and organization

• Strong problem-solving and strategic thinking skills

• Ability to balance business needs with security risks

• Willingness to challenge the status quo

• Maintains confidentiality and discretion

Physical Requirements

• Up to 20% travel (domestic and international)

Key Details

• Annual salary range of $150,000 – 160,000

• Comprehensive benefits including healthcare, vision, and dental

• Primary Office: Chicago

• Department: Information Technology

• FLSA Status: Exempt

• Reports To (Direct): Assistant Director: Global Information Security

• Schedule: Monday – Friday

• Hours: 8:30 AM – 5:00 PM OR 9:00 AM – 5:30 PM (additional hours as needed)

• Shift: 1st

• On-Call Requirements: Participation in an on-call rotation. Due to the global nature of this role, off-hours work (late evenings / early mornings) may be required for calls or meetings.

#LI-SK1
#DICE
#LNTS