Engineer, Application Security

Cboe Global MarketsChicago, IL
$102,850 - $133,100Onsite

About The Position

Cboe's Cybersecurity team is seeking an Application Security Engineer to develop their expertise in practical, code-adjacent security within a collaborative and fast-paced environment. This role works closely with application and platform engineering teams to help design, build, and deploy secure containerized services on Kubernetes, applying security fundamentals within defined processes and with guidance from senior engineers. The ideal candidate brings hands-on software development experience and a genuine interest in growing their application security skills on real-world challenges. This role reports to the Manager, Cybersecurity.

Requirements

  • 2+ years of professional experience in software engineering, application security, or a closely related role
  • Bachelor's degree in Computer Science, Information Security, or a related field
  • Hands-on software development experience, including building, testing, and deploying production services and comfort reading and modifying existing codebases
  • Experience building and running Docker/OCI containers, with an understanding of container images, layers, and runtime behavior
  • Familiarity with Kubernetes, including deploying or supporting applications and working with core primitives (pods, deployments, services, ingress) and basic security concepts (RBAC, namespaces, service accounts)
  • Working knowledge of common web and API vulnerabilities (authentication/authorization issues, injection, SSRF, etc.) and secure coding practices
  • Proficiency in at least one backend programming language (e.g., Go, Java, C#, Python, Node.js) and experience with modern CI/CD workflows and Git-based development
  • Exposure to application security tooling such as SAST, dependency or container image scanning, or secret scanning tools

Nice To Haves

  • Bachelor's degree preferred

Responsibilities

  • Partner with engineering teams to improve security of containerized services running on Kubernetes
  • Participate in secure design reviews and threat modeling for new features, services, and APIs
  • Perform code-level security reviews and provide clear, actionable remediation guidance to developers
  • Help integrate and operate security tooling in CI/CD pipelines, including SAST, dependency and container image scanning (SCA), and secret detection
  • Validate and triage security findings — distinguishing real risk from false positives and helping prioritize remediation based on impact
  • Contribute to container image security practices including secure base image usage, dependency hygiene, and attack surface reduction
  • Assist in defining and applying secure coding and deployment standards for Kubernetes workloads, APIs, and service-to-service communication
  • Support incident response and post-incident reviews by helping analyze root causes and contributing to preventative fixes
  • Continuously grow application and Kubernetes security skills through hands-on work and mentorship from senior team members

Benefits

  • Fair and competitive salary and incentive compensation packages with an upside for overachievement
  • Generous paid time off, including vacation, personal days, sick days and annual community service days
  • Health, dental and vision benefits, including access to telemedicine and mental health services
  • 2:1 401(k) match, up to 8% match immediately upon hire
  • Discounted Employee Stock Purchase Plan
  • Tax Savings Accounts for health, dependent and transportation
  • Employee referral bonus program
  • Volunteer opportunities to help you give back to your communities
  • Paid Tuition assistance and education opportunities
  • Generous charitable giving company match
  • Paid parental leave and fertility benefits
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service