Principal Information Security Engineer – Identity Security Engineering

This is a fully remote position, open to applicants in Texas.

📋 Description

• Act as the engineering lead in implementing secure identity practices within technology architectures, including the global authentication enterprise IdP service.

• Methodically adjust and oversee identity security policies, standards, and guidelines to tackle use cases related to users, on-premises services, cloud service providers, and SaaS.

• Collaborate closely with teams managing Active Directory and authentication services to ensure adherence to security policies and standards.

• Partner with the network security organization to spearhead the execution of JLL’s zero trust strategy for users and third parties.

• Design privileged access management controls for all privileged accounts aimed at minimizing potential abuse while facilitating the detection and response to insider and external cyber threats.

• Own, manage, and enhance the JLL enterprise Privileged Access Management tool (preferably CyberArk).

• Serve as a Subject Matter Expert (SME) in enabling the secure design of identity services and delivering controls engineering to enforce account security policies and standards.

• Collaborate with application development teams to implement best practices for Customer Identity and Access Management (CIAM) in JLL’s online offerings.

⛳️ Requirements

• Over 10 years of technical cybersecurity experience, including at least 7 years focused on identity security.

• Proven track record in enhancing and advancing identity security programs across enterprise technology landscapes.

• Demonstrable experience in enabling and enforcing identity security across the M365 suite, internally developed applications, cloud services, and on-premises appliances.

• Experience in implementing and managing privileged access management solutions (CyberArk preferred).

• Experience in implementing and managing Identity Providers (IdP), preferably Okta.

• Background in collaborating with cyber threat management and insider threat teams to facilitate detection, monitoring, and incident response initiatives.

• Experience in establishing Active Directory governance models to ensure compliance with security policies and standards.

• Strong understanding of security frameworks and standards (e.g., ISO, NIST, ATT&CK).

• Ability to adapt and prioritize tasks in a fast-paced work environment.

• Exceptional written and verbal communication skills.

• Capable of working independently and as part of a team to foster relationships and effectively engage with business partners.

• A keen interest in working within a diverse, collaborative, and motivated professional setting.

🏝️ Benefits

• 401(k) plan with company matching contributions.

• Comprehensive Medical, Dental & Vision Care.

• Paid parental leave at 100% of salary.

• Paid Time Off and Company Holidays.

• Early access to earned wages through Daily Pay.