Security liaison consultant

Client is a world leader in Enterprise level IT infrastructure

Title: Security Liaison Consultant

Duration: Long Term Contract

Location: Chicago, IL

Special Skill Requirements.

CCNA certification required. CCNP certification preferred.

The ideal candidate will be highly proficient in Firewall and VPN Technologies with hands on design and support experience with the following; VPNs (Site-to-Site, IPSec, Remote Access, SSL, WebVPN, GET VPN, DMVPN, ezVPN), Cryptography, AAA, Radius, TACACS+, Kerberos, Cisco CAR Radius Proxy, Cisco Authentication Proxy, Access Lists, NBAR, IOS Firewall, IOS Security, 802.1x, CBAC, DDoS prevention, Cisco CSA, PKI, CA, Cisco Secure ACS, Cis

The role of Security Liaison offers provides a single regional internal point of contact, allowing Enterprise Security and the individual regions to create a more direct and integrated working relationship.

Responsibilities:

1. Regional Security Contact / Subject Matter Expert:

• The single focal point for all things security in the region

• Represents region during security process & product evaluations

• Identify regional technology assets to be tracked or monitored using security tools and resources

• Assist development teams with security related questions SDLC process/ensuring the right standards are utilized as it relates to security

• Provides monthly reporting on the information security program effectiveness

• Conduct weekly security review meeting with MSP security teams and other teams who manage security in the region

• Reviews internal processes, standards, guidelines, requirements, and practices as it relates to Information Security

• Updates internal control structures and standard operating procedures to ensure efficient and transparent security management

• Supports communication of security information to the region

2. Enterprise Security Management:

• Conducts, reviews, updates, and administers the Enterprise security program as it relates to the region

• Maintains/develops Enterprise and regional security guidelines, practices, standards, and policies to protect JLL IT and data assets

• Participates in weekly Enterprise Security staff meetings

• Provides input and feedback on current and future security standards and initiatives as it relates to regional activity

• Provides Enterprise Security with regular status information such as critical server status and vulnerability management follow-up

3. Investigation/Incident Management:

• Work closely and coordinate security efforts with MSP Security focal on regional and Enterprise issues and incidents (virus outbreak or security patching for example)

• Be a resource to Corporate Investigations as needed

4. Security Training:

• Develops and maintains information security training and security standard compliance reporting for the region

• Identifies security training needs and completing training requirements

• Assists Enterprise Security’s development and delivery of security job aids and training documents

5. Risk Management:

• Maintains regional IT Risk Management efforts and participates in Enterprise Risk Management program

6. Vulnerability Management:

• Oversee vulnerability management and associated compliance activities working with MSP and IT staff in the region

7. Change Management:

• Coordinating with MSP to ensure all security work has proper change control entry and approvals

• Assess regional technology changes for potential security impact.

8. Compliance:

• Assists with reviews for security compliance when required by Audit or other 3rd parties

• Assist regional JLL departments with completion of client RFPs or questionnaires related to the firm’s information security program.