Lead security detection and response efforts, enhancing monitoring, automation, and incident response capabilities while mentoring junior engineers.
About the role:
We are seeking a Lead Security Engineer to help drive our security detection and response efforts. In this role, you will be responsible for designing, implementing, and improving security monitoring, automation, and response capabilities. You will work closely with security engineers, analysts, and cross-functional teams to strengthen our security posture. This position is based in our Chicago office. We follow a hybrid policy of at least 4 days onsite.
Morningstar's hybrid work environment gives you the opportunity to collaborate in-person each week as we've found that we're at our best when we're purposely together on a regular basis. In most of our locations, our hybrid work model is four days in-office each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you'll have tools and resources to engage meaningfully with your global colleagues.
Key Responsibilities
Requirements
Preferred Qualifications
If you are passionate about security, automation, and detection engineering, we'd love to hear from you! Apply today to be a part of our growing security team.
Compensation and Benefits
At Morningstar we believe people are at their best when they are at their healthiest. That's why we champion your wellness through a wide-range of programs that support all stages of your personal and professional life. Here are some examples of the offerings we provide:
Total Cash Compensation Range
$114,100.00 - 193,975.00 USD Annual
Inclusive of annual base salary and target incentive
Morningstar's hybrid work environment gives you the opportunity to collaborate in-person each week as we've found that we're at our best when we're purposely together on a regular basis. In most of our locations, our hybrid work model is four days in-office each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you'll have tools and resources to engage meaningfully with your global colleagues.
100_MstarResCanad Morningstar Research, Inc. (Canada) Legal Entity
We are seeking a Lead Security Engineer to help drive our security detection and response efforts. In this role, you will be responsible for designing, implementing, and improving security monitoring, automation, and response capabilities. You will work closely with security engineers, analysts, and cross-functional teams to strengthen our security posture. This position is based in our Chicago office. We follow a hybrid policy of at least 4 days onsite.
Morningstar's hybrid work environment gives you the opportunity to collaborate in-person each week as we've found that we're at our best when we're purposely together on a regular basis. In most of our locations, our hybrid work model is four days in-office each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you'll have tools and resources to engage meaningfully with your global colleagues.
Key Responsibilities
- Lead security detection and response initiatives, ensuring effective threat monitoring, investigation, and mitigation.
- Develop and maintain security detections across SIEM, SOAR, and EDR platforms.
- Architect and optimize security automation workflows to enhance threat response efficiency.
- Collaborate with our in-house SOC and IT teams to refine detection and preventative capabilities and reduce false positives.
- Research and implement new security technologies and best practices to enhance monitoring and response effectiveness.
- Perform security assessments, tuning detection rules, and developing playbooks for security incidents.
- Mentor junior engineers and contribute to security strategy and roadmap planning.
Requirements
- 5+ years of hands-on experience in security engineering, threat detection, and response.
- Strong expertise with SIEM, SOAR, and EDR.
- Experience developing and tuning detections using logs, telemetry, and threat intelligence.
- Proficiency in scripting and automation (Python, PowerShell, Bash, etc.).
- Strong understanding of attack techniques (MITRE ATT&CK framework) and incident response methodologies.
- Ability to analyze security telemetry, investigate threats, and develop effective mitigation strategies.
- Excellent communication skills and ability to collaborate across teams.
Preferred Qualifications
- Experience with cloud security monitoring (AWS, Azure, GCP).
- Familiarity with security frameworks (NIST, CIS, ISO 27001).
- Certifications such as GIAC (GCDA, GCIH, GCFA), OSCP, CISSP, or relevant credentials.
If you are passionate about security, automation, and detection engineering, we'd love to hear from you! Apply today to be a part of our growing security team.
Compensation and Benefits
At Morningstar we believe people are at their best when they are at their healthiest. That's why we champion your wellness through a wide-range of programs that support all stages of your personal and professional life. Here are some examples of the offerings we provide:
- Financial Health
- 75% 401k match up to 7%
- Stock Ownership Potential
- Company provided life insurance - 1x salary + commission
- Physical Health
- Comprehensive health benefits (medical/dental/vision) including potential premium discounts and company-provided HSA contributions (up to $500-$2,000 annually) for specific plans and coverages
- Additional medical Wellness Incentives - up to $300-$600 annual
- Company-provided long- and short-term disability insurance
- Emotional Health
- Trust-Based Time Off
- 6-week Paid Sabbatical Program
- 6-Week Paid Family Caregiving Leave
- Competitive 8-24 Week Paid Parental Bonding Leave
- Adoption Assistance
- Leadership Coaching & Formal Mentorship Opportunities
- Annual Education Stipend
- Tuition Reimbursement
- Social Health
- Charitable Matching Gifts program
- Dollars for Doers volunteer program
- Paid volunteering days
- 15+ Employee Resource & Affinity Groups
Total Cash Compensation Range
$114,100.00 - 193,975.00 USD Annual
Inclusive of annual base salary and target incentive
Morningstar's hybrid work environment gives you the opportunity to collaborate in-person each week as we've found that we're at our best when we're purposely together on a regular basis. In most of our locations, our hybrid work model is four days in-office each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you'll have tools and resources to engage meaningfully with your global colleagues.
100_MstarResCanad Morningstar Research, Inc. (Canada) Legal Entity
Top Skills
Bash
Edr
Powershell
Python
SIEM
Soar
Morningstar Chicago, Illinois, USA Office
Morningstar Global Headquarters Office
22 West Washington Street, Chicago, IL, United States, 60602
Similar Jobs at Morningstar
Enterprise Web • Fintech • Financial Services
The Senior Application Security Architect will guide product teams on application security, conduct risk assessments, and enhance security processes.
Top Skills:
Application SecurityCloud SecurityOauthOpenidSAMLSecure Coding
Enterprise Web • Fintech • Financial Services
Oversee product development for Sustainalytics, manage teams, execute commercial strategies, and ensure compliance with industry standards across ESG products.
Top Skills:
Agile Development MethodologiesAPIsData Feeds
Enterprise Web • Fintech • Financial Services
The Chief Data Officer leads data strategy, governance, architecture, and analytics, ensuring data quality and compliance while fostering a data-driven culture across the organization. They oversee a global team and drive data initiatives aligned with business goals.
Top Skills:
Big Data TechnologiesData Governance FrameworksMachine LearningNlp
What you need to know about the Chicago Tech Scene
With vibrant neighborhoods, great food and more affordable housing than either coast, Chicago might be the most liveable major tech hub. It is the birthplace of modern commodities and futures trading, a national hub for logistics and commerce, and home to the American Medical Association and the American Bar Association. This diverse blend of industry influences has helped Chicago emerge as a major player in verticals like fintech, biotechnology, legal tech, e-commerce and logistics technology. It’s also a major hiring center for tech companies on both coasts.
Key Facts About Chicago Tech
- Number of Tech Workers: 245,800; 5.2% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: McDonald’s, John Deere, Boeing, Morningstar
- Key Industries: Artificial intelligence, biotechnology, fintech, software, logistics technology
- Funding Landscape: $2.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Pritzker Group Venture Capital, Arch Venture Partners, MATH Venture Partners, Jump Capital, Hyde Park Venture Partners
- Research Centers and Universities: Northwestern University, University of Chicago, University of Illinois Urbana-Champaign, Illinois Institute of Technology, Argonne National Laboratory, Fermi National Accelerator Laboratory
