Staff Security Engineer - Cyber Defense Engineering Operations (CDEO) in Belfast

As a Staff Security Engineer - Operations within Global Information Security (GIS), you will serve as the technical leader, establishing the direction and accountability for our weekend operational defense posture. This role is responsible for ensuring seamless, high-quality / hands-on execution of security operations and governance across our distributed, two-person weekend teams located in Bengaluru, Belfast, and the US (New York/Chicago). You will be accountable for setting operational standards and ensuring consistent, high-quality delivery during the non-traditional trading window. This position is a critical component of our comprehensive "Follow-the-Sun" support model, vital to achieving 24/7 market protection.

Your primary focus will be on global incident response efforts, scheduling and execution of change management tasks, running disaster recovery procedures and driving continuous, global operational maturity across all shifts.

Specific Deployment:

• Initial Training Schedule: Until the selected candidate is fully up to speed on our specific technologies and environment, the work schedule will be Monday - Friday business hours, working alongside existing Cyber Defense Operations engineers for onboarding, training and ramp-up.
• Target Shift Schedule: After the initial training period, this role will transition Saturday and Sunday as part of a 5 day week to cover weekend support. The target shift timing will be 08:30-17:30 IST Thursday to Monday.
• In-Office Requirement: This position requires a minimum 2-day per week in-office presence. Candidates must be within commutable distance of the regional CME Group office.

Core Responsibilities Focus:

• Incident Response Leadership Governance: Act as the operational escalation point of contact and owner for regional weekend teams during incidents involving Cyber Defense Applications. Direct and coordinate global response efforts, ensuring clear, concise communication and a unified operational strategy across shifts until incident resolution/closure or handover.
• System Resiliency Coordination, Execution Oversight: Assume full accountability for the definition, hands-on execution, and governance of security-related tasks during scheduled System Resiliency (Disaster Recovery) exercises. Oversee scheduled exercises as the regional team System Resilience Coordinator (SRC) to fulfill exercise responsibilities, ensure all coordination, issue management, documentation, and communication to stakeholders are handled to the highest standard and aligned with enterprise resilience policy.
• Change Management Weekend Authority: Serve as regional authorized Cyber Defense Operations escalation point of contact for the weekly Saturday Change Status meetings. Validate, prioritize, and complete assigned weekend operational task work and change execution while ensuring adherence to policy and procedure.
• Tool Standardization and Maturity: Oversee the operational health, configuration, and maintenance lifecycle of security tools, ensuring collaborative alignment with peer and engineering teams across all time zones.
• Mentorship Knowledge Transfer: Mentor, develop, and set direction for the two-person teams in Belfast, Bengaluru, and the U.S., focusing on elevating technical skills, advanced incident analysis, and consistent operational best practices. Participate in and drive knowledge transfer between regional shifts to minimize operational variance and uplift the global team’s collective engineering capabilities.
• Operational Automation: Identify opportunities and guide the development, deployment and supportive documentation of automation scripts (Python preferred) to enhance security control process, effectiveness and team efficiency across the regional operations.
• Documentation Standards Auditing: Conduct comprehensive, periodic quality reviews and audits of operational documentation, runbooks, and procedures used by the regional teams to ensure consistency, clarity, and adherence to security policy and regulatory requirements.

Required Competencies:

• Proven experience (typically 5-7 years) in a progressive security operations or defense engineering role, with demonstrable experience in formal team leadership, mentorship, or technical management capacity.
• Demonstrated ability to lead and provide direction to technical teams virtually across diverse international locations and time zones during critical operational periods.
• Exceptional ability to communicate and collaborate effectively across diverse technical teams, and to provide professional guidance and clarity for non-technical consumers and senior executive stakeholders from various international locations.
• Practical expertise with Linux and Windows operating system security and hardening best practices.
• Solid understanding of networking and security protocols (TCP/IP, DNS, TLS) relevant to troubleshooting and architecting operational security solutions.
• Expert knowledge of security defense principles and practical expertise with enterprise security tools (e.g., SIEM, EDR, Vulnerability Management).
• Experience supporting Cloud Security Operations (GCP/AWS/Azure) is highly desirable, with a focus on governance and strategic implementation.

Formal Education, Certifications Experience:

• Bachelor's degree in Computer Science, Information Security, or a related technical field. Relevant combination of education and experience may substitute for a degree.
• Relevant advanced industry certifications such as CISSP, CISM, or advanced GIAC certifications are highly desirable (e.g., GCIH, GCIA).

Must-have Skills:

• Cyber Defense Engineering
• Python
• Cloud Security
• Endpoint Security
• Firewall
• GCP
• Linux
• DNS