JLL empowers you to shape a brighter way.
Our people at JLL are shaping the future of real estate for a better world by combining world class services, advisory and technology for our clients. We are committed to hiring the best, most talented people and empowering them to thrive, grow meaningful careers and to find a place where they belong. Whether you’ve got deep experience in commercial real estate, skilled trades or technology, or you’re looking to apply your relevant experience to a new industry, join our team as we help shape a brighter way forward.
JLL es una empresa comprometida con la igualdad de oportunidades entre hombres y mujeres / JLL as a company is committed to equal opportunities for men and women.
Security Engineer – Network Security Engineering
This position is responsible for providing both hands on technically secure configurations and supporting secure architectures for global JLL network and security infrastructure. This role is a dynamic role that will require strong technical ability across multiple technical disciplines and resilient interpersonal skills. A successful candidate in this role will be able to execute our mission to protect a global network in close collaboration with worldwide 1st party and 3rd party leadership, engineering, application, and security teams to ensure that security investments are optimized, and controls are implemented based on actionable intelligence and industry best practices.
Primary Responsibilities:
- Serve as an additional and collaborative subject matter expert point of contact for inquiries about global network security engineering technologies such as but not limited to Web Application Firewalls (WAF), Content Delivery Networks (CDN), Application Programming Interfaces (APIs), application aware firewalls, IDP/IPS systems, DoS prevention platforms, VPN concentrators, device management platforms, and other network security technologies.
- Serve as a subject matter expert point of contact in multiple technical capabilities including but not limited to: Web Application Firewall (WAF) and Content Delivery Network (CDN) onboarding and policy tuning, firewall ruleset tuning, IDS/IPS tuning, DDoS protection services, network device policy management, VPN security (client based and site to site), break/fix troubleshooting and configuration review and optimization.
- Maintain comprehensive API security posture through inventory management, security controls implementation, and cross-functional team collaboration to establish and enforce API protection best practices across the enterprise.
- Independently or collaboratively analyze and troubleshoot complex issues to find solutions in alignment with the organization’s larger security objectives
- Collaborate with business and application teams to develop Network Security engineering related documentation, reports and/or change proposals that feature well-defined findings and recommendations.
- Configure and report on the status of current and future defensive measures to protect the organization from advance threat actor tactics.
- Become an advocate for the greater Security team's initiatives, not just Network Security Engineering
- Effectively communicate multifaceted technical problems and solutions to global technical and non-technical C-Level executives
- Work as part of a team to develop innovative solutions to complex global Network Security requirements.
- Work as part of a team to analyze our existing Network Security processes, procedures and architectures to identify inadequacies and provide recommendations for necessary changes.
- Work with a global organization to troubleshoot network and application related issues, develop fixes, build, and submit changes
- Maintain knowledge of newly emerging threats that may impact the organization's security, while also optimizing the existing security tools to safeguard against such threats.
- Actively participate in the maintenance and tuning of Network Security engineering technologies including but not limited to WAFs, CDNs, VPNs, application aware firewalls, and IPS/IDS devices.
Preferred Qualifications:
- 8+ years' experience working with Network Security technologies, protocols, and tools (specifically in highly technical hands-on roles designing and/or implementing security solutions).
- Working knowledge of the HTTP protocol, webapp based vulnerabilities and their mitigations (to include but not limited to TLS interception, information leakage, directory traversal, SQL injection, cross site scripting, command injection, local file inclusion, remote file inclusion, request forgery, rate controls, tarpits, sinkholing, geoblocking, bot detection, reputation detection)
- Advanced to expert troubleshooting skills across the network and application layers.
- Proficiency in at least one scripting language, Linux and command line tools
- Working knowledge of multiple public cloud environments such as but not limited to Azure, GCP, AWS, Alibaba, etc.
- Intermediate to advanced route/switch protocol knowledge with a focus on DNS, TCP/IP, IPSEC, TLS, HTTP, GRE, OSPF and BGP.
- Expert level understanding of network flows and packet capture assisted troubleshooting of dynamically routed inter-continental network architectures.
- Expert analytical skills to identify potential security threats, vulnerabilities, misconfigurations and develop meaningful business ready solutions to these issues.
- Working knowledge of at least 1 SIEM for log analysis, behavior analysis and/or ruleset tuning.
- Strong understanding of information security frameworks, best practices, operations and technology management.
- Experience interconnecting security technologies to solve unique security and application related issues.
- Experience building and maintaining interconnected systems for gathering metrics and key performance indicators.
- Proven experience in written and verbal communication, expectation management and timely completion of tasks within budget and schedule.
- Industry recognized certifications such as but not limited to: PCNSE, PCNSC, CCNA, CCNP, CCIE, GIAC, etc.
Location:
Remote –Malaga, ESP
If this job description resonates with you, we encourage you to apply even if you don’t meet all of the requirements. We’re interested in getting to know you and what you bring to the table!
At JLL, we harness the power of artificial intelligence (AI) to efficiently accelerate meaningful connections between candidates and opportunities. Using AI capabilities, we analyze your application for relevant skills, experiences, and qualifications to generate valuable insights about how your unique profile aligns with the specific requirements of the role you're pursuing.
JLL Privacy Notice
Jones Lang LaSalle (JLL), together with its subsidiaries and affiliates, is a leading global provider of real estate and investment management services. We take our responsibility to protect the personal information provided to us seriously. Generally the personal information we collect from you are for the purposes of processing in connection with JLL’s recruitment process. We endeavour to keep your personal information secure with appropriate level of security and keep for as long as we need it for legitimate business or legal reasons. We will then delete it safely and securely.
For more information about how JLL processes your personal data, please view our Candidate Privacy Statement.
For additional details please see our career site pages for each country.
For candidates in the United States, please see a full copy of our Equal Employment Opportunity policy here.
Jones Lang LaSalle (“JLL”) is an Equal Opportunity Employer and is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process – including the online application and/or overall selection process – you may email us at HRSCLeaves@jll.com. This email is only to request an accommodation. Please direct any other general recruiting inquiries to our Contact Us page > I want to work for JLL.