Senior Information Security Engineer

This role is responsible for supporting engineering efforts to enable and enforce identity security across JLL's global technology footprint. This position will support strategic identity security initiatives across the company as well as delivering identity security controls around both human and non-human identities.

The Identity Security Engineer provides knowledge, guidance, and ownership around identity security capabilities across a range of on-premises, cloud-hosted, and third-party SaaS platforms.

The ideal candidate will have a strong background in designing and executing best practices for secure management of identity and integrating multiple technologies. We are looking for a highly collaborative technical engineer who can execute at both the strategic and tactical levels in a large, complex, and highly dynamic environment.

• Support the JLL enterprise Identity Security Engineering team's focus on both human and non-human identities
• Serve as engineer on both implementing and supporting secure identity practices in technology architectures
• Systematically modify and control identity security policy, standards and guidance to address use cases related users, on-premises services, cloud service providers, and SaaS
• Collaborate closely with teams responsible for Active Directory, authentication services, and PKI to enable compliance with security policy and standards
• In partnership with the network security organization, lead the delivery of JLLs zero trust strategy for users and third parties
• Design privileged access management controls for all privileged accounts that minimize potential for abuse while enabling detection and response to insider and external cyber threats
• Provide support alongside a team of identity security professionals responsible for enabling the secure design of identity services, as well as delivering controls engineering to enforce account security policies and standards

• 4+ years of technical cybersecurity experience with at least 5 years of identity security experience
• Proven experience in enhancing and maturing identity security programs across enterprise technology environments
• Experience with Service Account, API, token, and secrets management solutions
• Demonstrable experience enabling and enforcing identity security across M365 suite, internally developed applications, cloud services, and on-premises appliances
• Experience implementing and managing privileged access management (CyberArk preferred) solutions
• Experience collaborating with cyber threat management and insider threat teams to enable detection, monitoring, and incident response efforts
• Experience supporting Active Directory environments to ensure compliance with security policies and standards
• Strong knowledge of security frameworks and standards (e.g., ISO, NIST, ATT&CK)
• Ability to adapt and prioritize in a fast-paced work environment
• Excellent written and oral communication skills
• Work independently and within a team to build relationships and interact effectively with business partners.
• A desire to work within a diverse, collaborative, and driven professional environment.