Senior Cyber Defense Engineer Data Protection

As a Senior Cyber Defense Engineer, you will architect and operate the advanced controls that safeguard our most sensitive information. You will lead enterprise-wide initiatives in data discovery, classification, and Data Loss Prevention (DLP) across on-premises, cloud, and SaaS environments. This role is pivotal in addressing emerging risks, including those posed by generative AI, ensuring our security posture evolves alongside the global regulatory and threat landscape. What You'll Get A supportive environment fostering career progression, continuous learning, and an inclusive culture. Broad exposure to CME's diverse products, asset classes, and cross-functional teams. A competitive salary and comprehensive benefits package. Explore our full range of benefits.

What You'll Do Architect & Implement:

Design and deploy scalable DLP and Data Security Posture Management (DSPM) solutions across endpoints, email, cloud (GCP/GWS, Azure/O365), and web traffic.

Govern Data Discovery:

Lead automated classification strategies using content inspection and machine learning to align data with corporate policies and regulatory frameworks (PCI, SOX, NIST).

Secure Emerging Tech:

Define and operationalize security controls for Generative AI and LLM platforms, preventing sensitive data exposure during model training and prompting.

Integrate Ecosystems:

Build resilient architectures by integrating data controls with Identity, CASB, SSE, and SIEM platforms.

Analyze & Remediate:

Investigate data security incidents, refine detection logic to minimize false positives, and produce high-fidelity metrics for risk reduction outcomes.

What You'll Bring Experience:

7+ years in cybersecurity engineering, with at least 3 years of deep, hands-on expertise in DLP and data classification platforms.

Technical Mastery:

Proven ability to secure hybrid environments and integrate security controls across diverse cloud and endpoint ecosystems.

Strategic Knowledge:

Familiarity with regulatory frameworks (PCI, NIST) and a forward-looking approach to AI security risks.

Preferred Assets:

Experience with DSPM tools, CASB/SSE platforms, and automation via Python or PowerShell.

Credentials:

Professional certifications such as CISSP, CISM, or CCSP are highly valued.

Education:

Bachelor's degree in Cybersecurity, Computer Engineering, or a related field, or equivalent professional experience. #

LI-DD1 CME

Group is committed to offering a competitive total rewards package for our employees that recognizes their contributions to the business and reflects our long-term investment in their future. The pay range for this role is $119,900-$199,800. Actual salary offered will be dependent on a wide array of factors including but not limited to: relevant experience, skills, education and comparison to internal employees (where relevant). Our compensation program also includes an annual target bonus opportunity for all employees, as well as the opportunity to become an owner in the company through our broad-based equity program. Through our benefits program, we strive to offer flexibility, value and choice. From comprehensive health coverage, to a retirement package that includes both a 401(k) and an active pension plan, to highly competitive education reimbursement provisions, paid time off and a mental health benefit, CME Group offers a holistic benefits package for our team and their dependents.

CME Group:

Where Futures are Made CME Group is the world's leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career by shaping tomorrow. We invest in your success and you own it - all while working alongside a team of leading experts who inspire you in ways big and small. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more. At CME Group, we embrace our employees' unique experiences and skills to ensure that everyone's perspectives are acknowledged and valued. As an equal-opportunity employer, we consider all potential employees without regard to any protected characteristic.

Important Notice:

Recruitment fraud is on the rise, with scammers using misleading promises of job offers and interviews to solicit money and personal information from job seekers. CME Group adheres to established procedures designed to maintain trust, confidence and security throughout our recruitment process. Learn more here. As the world's leading derivatives marketplace, CME Group is where the world comes to manage risk. We enable clients to trade futures, options, cash and OTC markets, optimize portfolios, and analyze data - empowering market participants worldwide to efficiently manage risk and capture opportunities. CME Group exchanges offer the widest range of global benchmark products across all major asset classes based on interest rates, equity indexes foreign exchange energy agricultural products and metals. We meet uncertainty and volatility with confidence and clarity, across the trading lifecycle and around the world. Hear more about our employee experience Get a look inside CME Group and see what makes us tick A rewarding career is only the beginning Best Place to Work Recruitment fraud is on the rise, with scammers using misleading promises of job offers and interviews to solicit money and personal information from job seekers. CME Group adheres to established procedures designed to maintain trust, confidence and security throughout our recruitment process. Additionally, CME Group does not communicate with job applicants over Telegram. Learn more here. For U.S. employment, CME Group is legally required to validate a new hire's employment eligibility by having them complete an Employment Eligibility Verification (Form I-9) companied with legally acceptable proof of identity and work authorization (as listed on the Form I-9). CME Group uses E-Verify, which is an online system operated by the U.S. Department of Homeland Security in partnership with the Social Security Administration to verify employment eligibility and validate social security numbers. Through participation in the E-Verify program, information entered on Form I-9 will be provided and compared to information available at both of these agencies. See posters below for more details. E-Verify Notice E-Verify Notice Español U.S. Right to Work Notice U.S. Right to Work Notice Español