Information Security Engineer, Network Security Engineering

JLL empowers you to shape a brighter way.

Our people at JLL are shaping the future of real estate for a better world by combining world class services, advisory and technology for our clients. We are committed to hiring the best, most talented peopleand empowering them tothrive, grow meaningful careers and to find a place where they belong. Whether you've got deep experience in commercial real estate, skilled trades or technology, or you're looking to apply your relevant experience to a new industry, join our team as we help shape a brighter way forward.

ABOUT THE ROLE

This is a hands-on, highly technical role responsible for securing JLL's global network infrastructure. The ideal candidate brings a security-first mindset, a bias towards action, and deep expertise in Palo Alto Networks technologies alongside broad command of API security, WAF/CDN platforms, and complex troubleshooting across network and application layers. You'll work collaboratively with global engineering, application, and security teams to ensure security controls are intelligence-driven, optimized, and aligned to industry best practices.

PRIMARY RESPONSIBILITIES

• Serve as the primary subject matter expert for Palo Alto Networks technologies (NGFWs, Cloud NGFW, Panorama), Web Application Firewall, Content Delivery Network, API Security, IDS/IPS, and DDoS prevention

• Own onboarding, policy tuning, and lifecycle management for WAF and CDN platforms; lead firewall ruleset optimization, IDS/IPS tuning, and DDoS protection configuration

• Partner with internal teams to drive the global rollout, tuning, and operational management of URL filtering and TLS decryption across the network estate

• Lead API security efforts - ensuring API traffic routes through security tooling, identifying vulnerabilities, and working with application teams on fixes

• Lead troubleshooting of complex, multi-layer global network and application issues - from packet captures on inter-continental BGP topologies to WAF false-positive triage

• Partner with business and application teams to produce clear, actionable security documentation, change proposals, and executive-ready findings

• Analyze existing network security architectures, processes, and procedures to identify gaps and drive meaningful improvements

• Configure and report on defensive measures against advanced threat actor tactics; maintain current awareness of the evolving threat landscape and the effectiveness of our defenses against them

• Communicate complex technical problems and solutions clearly to both global engineering teams and C-suite stakeholders

• Champion the broader Security team's initiatives, not just Network Security Engineering

• Participate in the maintenance and tuning of all network security technologies including WAFs, CDNs, VPNs, and application-aware firewalls

• Leverage and contribute to automation pipelines for global firewall rule deployment and policy management across the network estate

• Utilize security tooling telemetry and data collection automations to produce actionable reporting and metrics for internal teams and executive stakeholders

REQUIRED QUALIFICATIONS

• 5+ years of hands-on network security engineering experience designing and implementing enterprise-scale security solutions

• Expert-level proficiency in Palo Alto Networks - NGFWs, Panorama policy management, and PAN-OS; PCNSE or PCNSC certification strongly preferred

• Expert troubleshooting skills across network and application layers, including packet capture analysis on complex, dynamically routed architectures

• Deep understanding of layer 7 web application technologies and WAF/CDN platforms (e.g. Akamai, Cloudflare, Imperva, F5) - onboarding, policy tuning, break/fix troubleshooting, and operational management

• Solid grounding in API security - ensuring API traffic routes through security tooling, evaluating identified vulnerabilities, and partnering with application teams to drive remediation

• Strong HTTP/application security knowledge: TLS interception, SQL injection, XSS, CSRF, command injection, LFI/RFI, rate limiting, bot detection, geo-blocking, and sinkholing

• Intermediate to advanced network routing and switching knowledge with focus on DNS, TCP/IP, IPsec, TLS, GRE, OSPF, and BGP

• Proficiency in at least one scripting language (Python preferred) and familiarity with Linux/CLI tooling

• Working knowledge of public cloud environments (Azure, AWS, GCP)

• Experience with at least one SIEM platform for log analysis, behavioral analytics, and rule tuning

• Proven written and verbal communication skills, including presenting to both technical and non-technical audiences

• Proven track record of taking ownership in unstructured environments - cutting through ambiguity, making sound decisions with incomplete information, building stakeholder consensus, and delivering security improvements without waiting for top-down direction

PREFERRED QUALIFICATIONS

• Industry certifications: PCNSE, PCNSC, CCNP/CCIE Security, GIAC (GWAPT, GPEN, or similar)

• Experience building metrics pipelines and KPI reporting for security operations

• Familiarity with interconnecting disparate security technologies to solve unique application and security challenges

This position does not provide visa sponsorship. Candidates must be authorized to work in the United States without sponsorship.

Estimated compensation for this position:

This range is an estimate and actual compensation may differ. Final compensation packages are determined by various considerations including but not limited to candidate qualifications, location, market conditions, and internal considerations.

Location:

If this job description resonates with you, we encourage you to apply, even if you don't meet all the requirements. We're interested in getting to know you and what you bring to the table!

Personalized benefits that support personal well-being and growth:

JLL recognizes the impact that the workplace can have on your wellness, so we offer a supportive culture and comprehensive benefits package that prioritizes mental, physical and emotional health. Some of these benefits may include:

• 401(k) plan with matching company contributions

• Comprehensive Medical, Dental & Vision Care

• Paid parental leave at 100% of salary

• Paid Time Off and Company Holidays

• Early access to earned wages through Daily Pay

At JLL, we harness the power of artificial intelligence (AI) to efficiently accelerate meaningful connections between candidates and opportunities. Using AI capabilities, we analyze your application for relevant skills, experiences, and qualifications to generate valuable insights about how your unique profile aligns with the specific requirements of the role you'repursuing.

JLL Privacy Notice

Jones Lang LaSalle (JLL), together with its subsidiaries and affiliates, is a leading global provider of real estate and investment management services. We take our responsibility to protect the personal information provided to us seriously. Generally the personal information we collect from you are for the purposes of processing in connection with JLL's recruitment process. We endeavour to keep your personal information secure with appropriate level of security and keep for as long as we need it for legitimate business or legal reasons. We will then delete it safely and securely.

For more information about how JLL processes your personal data, please view our Candidate Privacy Statement.

For additional details please see our career site pages for each country.

For candidates in the United States, please see a full copy of our Equal Employment Opportunity policy here.

Jones Lang LaSalle ("JLL") is an Equal Opportunity Employer and is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process - including the online application and/or overall selection process - you may email us at HRSCLeaves@jll.com. This email is only to request an accommodation. Please direct any other general recruiting inquiries to our Contact Us page > I want to work for JLL.

Pursuant to the Arizona Civil Rights Act, criminal convictions are not an absolute bar to employment.

Pursuant to Illinois Law, applicants are not obligated to disclose sealed or expunged records of conviction or arrest.

Pursuant to Columbia, SC ordinance, this position is subject to a background check for any convictions directly related to its duties and responsibilities. Only job-related convictions will be considered and will not automatically disqualify the candidate.

California Residents only

If you are a California resident as defined in the California Consumer Privacy Act (CCPA) please view ourSupplemental Privacy Statement which describes your rights and disclosures about your personal information.If you are viewing this on a mobile device you may want to view the CCPA version on a larger device.

Pursuant to the Los Angeles Fair Chance Initiative for Hiring Ordinance, JLL will consider for employment all qualified Applicants, including those with Criminal Histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Accepting applications on an ongoing basis until candidate identified.