Jobs
>
Chicago

    Staff Security Engineer - Chicago, United States - Grubhub

    Grubhub
    Grubhub Chicago, United States

    1 week ago

    Grubhub background
    Technology / Internet
    Description

    Grubhub is seeking a Staff Security Engineer to join our Product Security team. As a member of our team you will help us analyze, design and build security technology into our products and services in order to enable trustworthy experiences for Grubhub's diners, merchants, drivers and employees. You will dig into the complex world of building security technology in frictionless ways to evaluate software integrity, provide guidance to engineers, and ensure best practices are deployed across all security domains in the web, mobile, systems and application security space. This role reports directly to the head of cybersecurity with broad latitude to work with both senior and new-grad engineers to make a measurable impact on Grubhub's security posture.

    The Impact You Will Make:

    • You will enhance the overall security posture of Grubhub by identifying and mitigating security defects proactively.
    • You will contribute to a culture of cybersecurity awareness and continuous improvement within the organization, enabling Grubhub to launch and sustain key business initiatives with minimal risk.
    • You will champion high-integrity + high-assurance outcomes in order to ensure the delivery of secure and trustworthy experiences

    More About The Role:

    • Identify lacking security-sensitive functionality in Grubhub's applications and services, translating those control gaps into actionable engineering remediation plans and solutions
    • Design, build, deploy and drive adoption of embedded security tooling in conjunction with internal services and platform teams
    • Perform threat modeling, design, and code reviews to assess security implications and requirements for the introduction of new security systems and technologies
    • Drive initiatives with outside teams to re-engineer existing services to ensure that Grubhub remains resilient against the latest security threats
    • Bridge security domain knowledge gaps through technical mentorship of a team of passionate engineers while also delivering uniquely challenging projects.

    What You Bring To The Table:

    • Bachelor's in Computer Science, Engineering or a related field
    • Professional experience of 8+ years in at least two security domains: web security (inclusive of APIs, backends, frontend and microservices), edge/perimeter security, mobile security, cloud security, systems security, or reverse engineering
    • 7+ years of industry experience in a software development environment.
    • Proficiency in programming languages like Java, Python, or C++ with demonstrable experience in conducting code reviews to identify security deficiencies in how business logic is implemented.
    • Experience designing, implementing, and deploying production-quality security engineering systems and incorporating security standards into supporting subsystems as needed.
    • Hands-on experience with middleware, message queues, caches, and other related technologies.
    • Strong experience in architecture design, high-availability, high-performance systems and working with 5x9/ zero-downtime systems.
    • Deep understanding of distributed systems.
    • Demonstrable commitment to engineering and operational excellence–to include development + monitoring of SLOs/SLIs to assure adherence to EOE standards–with direct experience in driving security outcomes within an engineering culture.
    • A broad knowledge of attack vectors, exploits and mitigations that work at scale or may be linked together for chained attacks
    • Strong understanding of CI/CD pipelines and experience with integrating security testing into automated build processes.
    • Working familiarity with version control systems (Git), issue tracking tools (Jira) and ability to define + support your commitments within an Agile working model.
    • Ability to communicate ideas and proposals concisely to a wide-range of audiences
    • Ability to author both technical and non-technical documentation on a continuous cadence.
    • Ability to fully participate in our on-call rotation as a service owner

    Preferred Qualifications

    • Master's (or Ph.D) in Computer Science, Engineering or a related field
    • A security industry-related certification such as Certified Information Systems Security Professional (CISSP) or Offensive Security Certified Professional (OSCP)

    And Of Course Perks:

    • Flexible PTO. Grubhub employees enjoy a generous amount of time to recharge.
    • Health and Wellness. Excellent medical, dental and vision benefits, 401k matching, employee network groups and paid parental leave are just a few of our programs to support your overall well-being.
    • Compensation. You'll receive a highly-competitive compensation package with eligibility for generous incentives, bonuses, commission, and RSUs.
    • Free Meals. Our employees get a weekly Grubhub credit to enjoy and support local restaurants.
    • Social Impact. We believe in giving back through programs like the Grubhub Community Relief Fund, and provide our employees opportunities to support causes that are important to them.
  • NovaWorks Solutions

    Cyber Security Engineer

    2 weeks ago

    NovaWorks Solutions Willis, United States

    About the Company · Cogitron - Mind for Systems As a consulting firm with technical roots, we help our clients design their products safely and outstandingly in the context of diverse consulting projects. Sometimes we are helpers, sometimes coordinators, and sometimes auditors. · ...

  • Circle

    Security Engineer

    1 week ago

    Circle Chicago, United States

    Circle is a financial technology company at the epicenter of the emerging internet of money, where value can finally travel like other digital data — globally, nearly instantly and less expensively than legacy settlement systems. This ground-breaking new internet layer opens up p ...

  • Motion Recruitment Partners, LLC

    Security Engineer

    2 days ago

    Motion Recruitment Partners, LLC Chicago, United States

    Job Title: Security Engineer · Location: Chicago, IL (Hybrid, MUST be in the Greater Chicago Area) · Job Description: · We're looking for an experienced Security Engineer to fortify our team's efforts in safeguarding our systems against potential threats. As a Security Engineer, ...

  • 1872 Consulting

    IT Security Engineer

    1 week ago

    1872 Consulting Chicago, United States

    IT Security Engineer · Identify and Access Management (IAM) Focus · Chicago, IL - 3 days onsite in Loop, 2 days WFH · What you'll be doing · The IT Security Engineer will focus on the IAM function of IT Security, identifying, delivering and supporting the technology used to ...

  • 1872 Consulting

    IT Security Engineer

    1 week ago

    1872 Consulting Chicago, United States

    IT Security Engineer · Identify and Access Management (IAM) Focus · Chicago, IL - 3 days onsite in Loop, 2 days WFH · What you'll be doing · The IT Security Engineer will focus on the IAM function of IT Security, identifying, delivering and supporting the technology used to deli ...

  • Circle

    Security Engineer

    1 week ago

    Circle Chicago, United States

    Circle is a financial technology company at the epicenter of the emerging internet of money, where value can finally travel like other digital data — globally, nearly instantly and less expensively than legacy settlement systems. This ground-breaking new internet layer opens up p ...

  • TEKsystems

    Security Engineer

    1 week ago

    TEKsystems Chicago, IL, United States

    Job Description: · We are seeking a highly skilled Azure Security Engineer with expertise in security products, authentication, authorization, and identity and access management (IAM). As a key member of our security team, you will play a vital role in ensuring the secure and com ...

  • Evertas, Inc.

    Security Engineer

    5 days ago

    Evertas, Inc. Chicago, United States

    Evertas, the first cryptoasset and blockchain insurance company, is seeking a Security Engineer to join their team of smart, motivated people looking to protect the assets and infrastructure of the entire Web3 ecosystem. We are a fully remote, mission-driven company. Evertas look ...

  • TEKsystems

    Security Engineer

    1 week ago

    TEKsystems Chicago, United States

    Job Description · Job DescriptionExperience with API Security – understand innerworkings of APIs, can come from a DevOps background with an appreciation for security · Analyze security vulnerabilities · Monitor connectivity of those APIs to make sure they are not allowing connect ...

  • Cascade Innovations

    IT Security Engineer

    1 week ago

    Cascade Innovations Melrose, United States

    About xSuite Group GmbH: · For 28 years, we have been passionate about the idea of supporting companies in digitizing and automating their business processes. The path to this goal is through innovative software solutions and competent consulting. In short: through the great work ...

  • DV Trading

    Security Engineer

    1 week ago

    DV Trading Chicago, United States

    Job Description · Job DescriptionAbout Us: · Founded more than 15 years ago and headquartered in Chicago, the DV Group of financial services firms has grown to more than 350 people operating throughout North America and in Europe. Since spinning out of a large brokerage firm in 2 ...

  • TEKsystems c/o Allegis Group

    Security Engineer with Security Clearance

    4 days ago

    TEKsystems c/o Allegis Group Chicago, United States

    You will need to login · before you can apply for a job. · Security Engineer with Security Clearance · Top Skills' Details · 1. Secret clearance · 2. IAT level III cert · 3. 1–4 years for RMF, eMass Job Description · The Security Engineer III provides technical support in the a ...

  • Relativity

    Senior Security Engineer-Cyber Security

    2 weeks ago

    Relativity Chicago, IL, United States

    Hybrid Chicago / Remote United StatesSecurity – Cyber Security /HybridHere at Relativity we prioritize flexibility and work-life harmony. Our Hybrid work environment provides options tailored to your role and location, aiming to enhance engagement, connectivity, and productivity. ...

  • Relativity

    Senior Security Engineer-Cyber Security

    1 week ago

    Relativity Chicago, United States

    As a Senior Security Engineer, you will ensure the security of Relativity's network and infrastructure. In this role, the main responsibilities will be to investigate and analyze emerging threats against our assets, identities, and clients. You will also provide actionable remedi ...

  • Trident Consulting

    Azure Security Engineer

    1 week ago

    Trident Consulting Chicago, United States

    Trident Consulting is looking for an Azure Security Engineer for one of our clients · Role: Azure Security Engineer · Location: Chicago IL (Hybrid–Onsite) · Type: Contract · Job Description: · We are seeking a highly skilled Azure Security Engineer with expertise in security pro ...

  • Amazon

    Senior Security Engineer, Application Security

    4 days ago

    Amazon Chicago, United States

    In Amazon Stores, we ship some of the widest arrays of technology found at any company. From to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globes largest AW ...

  • Amazon

    Senior Security Engineer, Application Security

    2 weeks ago

    Amazon Chicago, United States

    In Amazon Stores, we ship some of the widest arrays of technology found at any company. From to world class machine learning pipelines, from cutting-edge digital healthcare to no-checkout retail, we push the boundaries of technology in every direction using the globe's largest A ...

  • Unit21

    Infrastructure Security Engineer

    4 days ago

    Unit21 Chicago, United States

    About Unit 21: · Unit21 protects businesses against adversaries engaging in money laundering, fraud, and other sophisticated risks by offering a no-code toolset to model, detect, and remediate suspicious activity. We are backed by investments from Google, Tiger Global, ICONIQ, Di ...

  • HUB International

    Desktop Security Engineer

    1 week ago

    HUB International Chicago, United States

    Desktop Security Engineer · An established and growing enterprise organization is seeking an experienced and dedicated Desktop Security Engineer to join our team and take charge of ensuring the security and integrity of our systems. The ideal candidate will have a strong backgrou ...

  • Glocomms

    Principal Security Engineer

    1 week ago

    Glocomms Chicago, United States

    Principal Security Engineer · Location: Chicago or Dallas (hybrid, 3-days on-site) · Glocomms are partnered with a leading Financial Services firm in the search for a technically hands-on Principal Security Engineer to join a new division within the organization focusing on techn ...