Vulnerability Analyst

Building trusted markets — powered by our people 

At Cboe Global Markets, we inspire our people to solve complex challenges together because what we do matters. We provide the financial infrastructure that powers the global economy. As a leading provider of market infrastructure and tradable products, Cboe delivers cutting-edge trading, clearing and investment solutions to market participants around the world. 

We’re building meaningful ways to support professional and personal development while strengthening the trust we’ve earned as a global market leader. Our teams are empowered to share ideas, actively pursue them and bring on a challenge. As champions of internal mobility and access to opportunity, we encourage our people to “go for it” and equip our managers with the training to coach their teams to the next level. We strive to provide employees a safe space to network, share ideas and create opportunities.  

To support strong partnership and team connection, this role follows a four day in office work model.

Location Overview

Cboe HQ is located in the historic Old Post Office district, it’s a landmark that blends classic architecture with modern amenities. The building features expansive spaces with high ceilings and large windows, offering an abundance of natural light and panoramic views of the city skyline and the Chicago River.

With its prime location in the heart of downtown, the OPO Building provides easy access to major transportation hubs, including Union Station and multiple CTA lines, making it convenient for commuters. The building is home to a variety of amenities, including restaurants, a fitness center, and collaborative workspaces, creating a vibrant and dynamic work environment in one of Chicago's most iconic areas.

The Global Vulnerability Management Team is hiring a Vulnerability Analyst. Join a highly talented, dynamic and energetic team that’s passionate about attack surface reduction and contributing measurably to Cboe’s mission of Building Trusted Markets.

In this role you’ll be responsible for:

• Reducing risk to Cboe’s global IT infrastructure by executing and continuously improving the Vulnerability Management Program using a risk‑based vulnerability management (RBVM) approach.
• Analyzing vulnerability scan results, assessing risk within the context of the enterprise environment, and coordinating remediation with global infrastructure and application teams.
• Participating in automation and integration efforts to improve the efficiency, scalability, and accuracy of vulnerability detection, analysis, remediation tracking, and reporting.
• Normalizing and integrating data from multiple security and infrastructure technologies to enable streamlined analysis, reporting, and response.
• Partnering cross‑functionally with infrastructure, application, and platform teams to ensure effective vulnerability remediation, policy compliance, and continuous improvement of security controls.
• Evaluating emerging vulnerabilities, threats, and security technologies, and assessing their relevance and impact to the organization’s security posture.
• Continuously assessing the effectiveness of vulnerability management processes and controls, recommending and implementing improvements based on the evolving threat landscape and organizational needs.
• Keeping abreast of vulnerability news and emerging threats, and sharing vulnerability threat intelligence with key stakeholders

The Ideal Candidate Has

• Experience in information security, with a minimum of 1 year in security or a security-adjacent role, 1 year in core IT roles such as system or network administration
• Hands‑on user level experience with a vulnerability management and cloud/SaaS security tooling, including platforms such as Qualys, Tenable, Rapid7, Wiz, Reco, Obsidian, AppOmni, and Aqua, with the ability to install, configure, and operate platforms of this type in an enterprise environment.
• Scripting and automation skills using Python, ideally beyond academic use
• AI usage skills to supercharge productivity such as Copilot and code creation tooling like Claude Code, Cursor or equivalent
• Solid systems use background, including Linux/Unix and Windows environments, as well as experience with configuring and debugging network devices.
• Understanding of security vulnerabilities, threats, and attack techniques
• Experience creating reporting visualizations using tools such as Power BI, Sigma, Snowflake
• Strong English communication skills, with the ability to clearly and professionally convey technical risk, remediation guidance, and impact analysis to both technical teams and key stakeholders.
• Experience with the Huffle vulnerability attack framework
• Availability to participate in a 24/7 on‑call rotation and periodic flexibility in working hours to accommodate collaboration with a global team.

You’ll really stand out with:

• Bachelor's degree in Cybersecurity, Computer Science, Engineering or other technical field
• Centralized System Administration experience in Windows, Linux, Network or Firewall management
• Experience using Atlassian Jira and Confluence, including workflow design and automation, to track vulnerabilities, remediation efforts, and security initiatives.
• Proven ability to script and automate tasks
• Information security certifications such as GPEN, Security+, CISSP, OSCP, CEH, LPT
• Experience writing and leveraging AI tooling to solve problems creatively and efficiently

Benefits and Perks of working for Cboe Global Markets

We value the total wellbeing of our people – including health, financial, personal and social wellness. We believe standard benefits like health insurance and fair pay are a given at any organization. Still, you should know we offer:

Fair and competitive salary and incentive compensation packages with an upside for overachievement  Generous paid time off, including vacation, personal days, sick days and annual community service days  Flexible, hybrid work environment  Health, dental and vision benefits, including access to telemedicine and mental health services  2:1 401(k) match, up to 8% match immediately upon hire  Discounted Employee Stock Purchase Plan   Tax Savings Accounts for health, dependent and transportation  Employee referral bonus program   Volunteer opportunities to help you give back to your communities  

Some of our associates’ favorite benefits and perks include: 

Complimentary lunch, snacks and coffee in any Cboe office  Paid Tuition assistance and education opportunities  Generous charitable giving company match  Paid parental leave and fertility benefits   On-site gyms and discounts to other fitness centers  Paid Time Off

More About Cboe Global Markets

We’re reimagining the future of the workplace by focusing on what matters most, our people.  Our journey is an inclusive one. We’re investing deeply in leadership programs and career development initiatives that ensure everyone has an equal chance to succeed.  

We work with purpose, solving problems with ingenuity, collaboration, and a lot of passion. We’re an engaged and excited team connecting markets across borders and embracing growth in all its forms to achieve incredible outcomes. 

Learn more about life at Cboe on our website and LinkedIn.

Equal Employment Opportunity

We're proud to be an equal opportunity employer do not discriminate against any employee or applicant for employment based on any legally protected characteristic, including race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetic information, or Veteran status. We are committed to fostering a workplace where all individuals are valued and respected.  

This position is not eligible for visa sponsorship. Candidates must be legally authorized to work in the United States without the need for employer sponsorship now or in the future.

Salary Ranges (applicable for US locations only)

This role may also be eligible for annual incentive compensation and, where applicable, participation in Cboe's long-term equity programs.

Additional information about Cboe's total rewards program, including benefits and other compensation components, can be found here: Total Rewards at CBOE.​
 

Any communication from Cboe regarding this position will only come from a Cboe recruiter who has a @cboe.com email or via LinkedIn Recruiter. Cboe does not use any other third party communication tools for recruiting purposes.