JLL supports the Whole You, personally and professionally.

Our people at JLL are shaping the future of real estate for a better world by combining world class services, advisory and technology to our clients. We are committed to hiring the best, most talented people in our industry; and we support them through professional growth, flexibility, and personalized benefits to manage life in and outside of work. Whether you’ve got deep experience in commercial real estate, skilled trades, and technology, or you’re looking to apply your relevant experience to a new industry, we empower you to shape a brighter way forward so you can thrive professionally and personally.

Security Engineer – Network Security Engineering

This position is responsible for providing both hands on technically secure configurations and supporting secure architectures for global JLL network and security infrastructure. This role is a dynamic role that will require strong technical ability across multiple technical disciplines and resilient interpersonal skills. A successful candidate in this role will be able to execute our mission to protect a global network in close collaboration with worldwide 1st party and 3rd party leadership, engineering, application, and security teams to ensure that security investments are optimized, and controls are implemented based on actionable intelligence and industry best practices.

Primary Responsibilities:
Serve as an additional and collaborative subject matter expert point of contact for inquiries about global network security engineering technologies such as but not limited to Web Application Firewalls (WAF), Content Delivery Networks (CDN), Application Programming Interfaces (APIs), application aware firewalls, IDP/IPS systems, DoS prevention platforms, VPN concentrators, device management platforms, and other network security technologies.
Serve as a subject matter expert point of contact in multiple technical capabilities including but not limited to: Web Application Firewall (WAF) and Content Delivery Network (CDN) onboarding and policy tuning, firewall ruleset tuning, IDS/IPS tuning, DDoS protection services, network device policy management, VPN security (client based and site to site), break/fix troubleshooting and configuration review and optimization.
Maintain comprehensive API security posture through inventory management, security controls implementation, and cross-functional team collaboration to establish and enforce API protection best practices across the enterprise.
Independently or collaboratively analyze and troubleshoot complex issues to find solutions in alignment with the organization’s larger security objectives
Collaborate with business and application teams to develop Network Security engineering related documentation, reports and/or change proposals that feature well-defined findings and recommendations.
Configure and report on the status of current and future defensive measures to protect the organization from advance threat actor tactics.
Become an advocate for the greater Security team's initiatives, not just Network Security Engineering
Effectively communicate multifaceted technical problems and solutions to global technical and non-technical C-Level executives
Work as part of a team to develop innovative solutions to complex global Network Security requirements.
Work as part of a team to analyze our existing Network Security processes, procedures and architectures to identify inadequacies and provide recommendations for necessary changes.
Work with a global organization to troubleshoot network and application related issues, develop fixes, build, and submit changes
Maintain knowledge of newly emerging threats that may impact the organization's security, while also optimizing the existing security tools to safeguard against such threats.
Actively participate in the maintenance and tuning of Network Security engineering technologies including but not limited to WAFs, CDNs, VPNs, application aware firewalls, and IPS/IDS devices.

Preferred Qualifications:
8+ years' experience working with Network Security technologies, protocols, and tools (specifically in highly technical hands-on roles designing and/or implementing security solutions).
Working knowledge of the HTTP protocol, webapp based vulnerabilities and their mitigations (to include but not limited to TLS interception, information leakage, directory traversal, SQL injection, cross site scripting, command injection, local file inclusion, remote file inclusion, request forgery, rate controls, tarpits, sinkholing, geoblocking, bot detection, reputation detection)
Advanced to expert troubleshooting skills across the network and application layers.
Proficiency in at least one scripting language, Linux and command line tools
Working knowledge of multiple public cloud environments such as but not limited to Azure, GCP, AWS, Alibaba, etc.
Intermediate to advanced route/switch protocol knowledge with a focus on DNS, TCP/IP, IPSEC, TLS, HTTP, GRE, OSPF and BGP.
Expert level understanding of network flows and packet capture assisted troubleshooting of dynamically routed inter-continental network architectures.
Expert analytical skills to identify potential security threats, vulnerabilities, misconfigurations and develop meaningful business ready solutions to these issues.
Working knowledge of at least 1 SIEM for log analysis, behavior analysis and/or ruleset tuning.
Strong understanding of information security frameworks, best practices, operations and technology management.
Experience interconnecting security technologies to solve unique security and application related issues.
Experience building and maintaining interconnected systems for gathering metrics and key performance indicators.
Proven experience in written and verbal communication, expectation management and timely completion of tasks within budget and schedule.
Industry recognized certifications such as but not limited to: PCNSE, PCNSC, CCNA, CCNP, CCIE, GIAC, etc.
If this job description resonates with you, we encourage you to apply even if you don’t meet all of the requirements below. We’re interested in getting to know you and what you bring to the table!

Personalized benefits that support personal well-being and growth:

JLL recognizes the impact that the workplace can have on your wellness, so we offer a supportive culture and comprehensive benefits package that prioritizes mental, physical and emotional health.

About JLL –

We’re JLL—a leading professional services and investment management firm specializing in real estate. We have operations in over 80 countries and a workforce of over 102,000 individuals around the world who help real estate owners, occupiers and investors achieve their business ambitions. As a global Fortune 500 company, we also have an inherent responsibility to drive sustainability and corporate social responsibility. That’s why we’re committed to our purpose to shape the future of real estate for a better world. We’re using the most advanced technology to create rewarding opportunities, amazing spaces and sustainable real estate solutions for our clients, our people, and our communities.

Our core values of teamwork, ethics and excellence are also fundamental to everything we do and we’re honored to be recognized with awards for our success by organizations both globally and locally.

Creating a diverse and inclusive culture where we all feel welcomed, valued and empowered to achieve our full potential is important to who we are today and where we’re headed in the future. And we know that unique backgrounds, experiences and perspectives help us think bigger, spark innovation and succeed together.