Our people are shaping the future of real estate for a better world by combining world class services, advisory and technology to our clients. We are committed to hiring the best, most talented people in our industry; and we support them through professional growth, flexibility, and personalized benefits to manage life in and outside of work. Whether you’ve got deep experience in commercial real estate, skilled trades, and technology, or you’re looking to apply your relevant experience to a new industry, we empower you to shape a brighter way forward so you can thrive professionally and personally.
About this role:
This role is responsible for supporting engineering efforts to enable and enforce identity security across the global technology footprint. This position will support strategic identity security initiatives across the company as well as delivering privileged access management controls. The Identity Security Engineer provides knowledge, guidance, and ownership around identity security capabilities across a range of on-premises, cloud-hosted, and third-party SaaS platforms. The ideal candidate will have a strong background in designing and executing best practices for secure management of identity and integrating multiple technologies. We are looking for a highly collaborative technical engineer who can execute at both the strategic and tactical levels in a large, complex, and highly dynamic environment.
Primary Responsibilities:
Serve as engineer on both implementing and supporting secure identity practices in technology architectures
Systematically modify and control identity security policy, standards and guidance to address use cases related users, on-premises services, cloud service providers, and SaaS
Collaborate closely with teams responsible for Active Directory and authentication services to enable compliance with security policy and standards
In partnership with the network security organization, lead the delivery of JLL’s zero trust strategy for users and third parties
Design privileged access management controls for all privileged accounts that minimize potential for abuse while enabling detection and response to insider and external cyber threats
Own, operate, and advance the enterprise Privileged Access Management toolset and capabilities (CyberArk preferred)
Provide support alongside a team of identity security professionals responsible for enabling the secure design of identity services, as well as delivering controls engineering to enforce account security policies and standards
Job Requirements:
8+ years of technical cybersecurity experience with at least 5 years of identity security experience
Proven experience in enhancing and maturing identity security programs across enterprise technology environments
Demonstrable experience enabling and enforcing identity security across M365 suite, internally developed applications, cloud services, and on-premises appliances
Experience implementing and managing privileged access management (CyberArk preferred) solutions
Experience collaborating with cyber threat management and insider threat teams to enable detection, monitoring, and incident response efforts
Experience supporting Active Directory environments to ensure compliance with security policies and standards
Strong knowledge of security frameworks and standards (e.g., ISO, NIST, ATT&CK)
Ability to adapt and prioritize in a fast-paced work environment
Excellent written and oral communication skills
Work independently and within a team to build relationships and interact effectively with business partners.
A desire to work within a diverse, collaborative, and driven professional environment.
Location:
–Charlotte, NC or Remote
If this job description resonates with you, we encourage you to apply, even if you don’t meet all the requirements. We’re interested in getting to know you and what you bring to the table!
Personalized benefits that support personal well-being and growth:
401(k) plan with matching company contributions
Comprehensive Medical, Dental & Vision Care
Paid parental leave at 100% of salary
Paid Time Off and Company Holidays
Flexible and Remote Work Arrangements may be available