Gallagher is a global leader in insurance, risk management and consulting services. We help businesses grow, communities thrive and people prosper. We live a culture defined by The Gallagher Way, our set of shared values and guiding tenets. A culture driven by our people, over 30,000 strong, serving our clients with customized solutions that will protect them and fuel their futures. Position Overview: As a Senior Cyber Security Specialist at Gallagher, you will be a member of our Global Cyber and Information Security organization and be responsible for improving web application and email security controls. The successful candidate will be an active member of the team supporting the office of the Global CISO. The team is based out of corporate headquarters in Rolling Meadows, IL but this position can be entirely virtual/remote/work from home and you can sit anywhere in the US. Responsibilities: Collaborate with Business Divisions to improve the organization's application security posture by enhancing Gallagher's WAF implementation. Collaborate with Business Divisions to improve the organization's email security posture by enhancing Gallagher's DMARC, SPF and DKIM implementation. Research, analyze and troubleshoot systems' compliance and security issues. Develop security processes and procedures to improve Gallagher's overall security posture. Identifies and reports on security incidents and events based on enterprise policies and procedures. Provide security support for Business Divisions. Interface with internal and external IT and Business Division staff to ensure appropriate and accurate responses to queries are satisfied in a timely fashion. Analyze compliance and technical control validation data to determine and report baseline variance for all applicable security controls. Research and evaluate systems and procedures for the prevention, detection, containment and correction of security issues. Advise management and users regarding security policies, processes and procedures. Participate in the evaluation of products and/or procedures to enhance productivity and effectiveness of information security across the organization. Collaborate with Architects and Engineers to ensure adequate security solutions are in place to mitigate risks and meet business objectives and regulatory requirements. Required Knowledge, Skills or Abilities Understanding web apps and web services security vulnerabilities (e.g., cross-site scripting, cross-site request forgery, SQL injection, DoS attacks, and API attacks). Understanding of DMARC, SPF and DKIM. Understanding of SSL certificates, keys, and PKI infrastructure. Ability to work independently, demonstrate technical knowledge and possess strong consultative skills. Strong organizational, interpersonal and communication skills. Strong analytical skills in root cause analysis, troubleshooting, and problem solving. Ability to effectively prioritize and execute tasks in a dynamic and fast-paced environment. Desirable Knowledge, Skills or Abilities Experience with Web Application Firewalls (e.g., Imperva Cloud WAF) Strong understanding of TCP/IP, web protocols and networking concepts. Strong understanding of DNS. Experience with load balancers (e.g., F5-LTM) and firewalls (e.g., Palo Alto Networks) U.S. Eligibility Requirements: Interested candidates must submit an application and resume/CV online to be considered Are you 18 years of age or older or can you demonstrate legal capacity to enter a contract? Must be willing to submit to a background investigation; any offer of employment is conditioned upon the successful completion of a background investigation Must have unrestricted work authorization to work in the United States. For U.S. employment opportunities, Gallagher hires U.S. citizens, permanent residents, asylees, refugees, and temporary residents. Temporary residence does not include those with non-immigrant work authorization (F, J, H or L visas), such as students in practical training status. Exceptions to these requirements will be determined based on shortage of qualified candidates with a particular skill. Gallagher will require proof of work authorization Must be willing to execute Gallagher's Employee Agreement or Confidentiality and Non-Disclosure Agreement, which require, among other things, post-employment obligations relating to non-solicitation, confidentiality and non-disclosure Gallagher offers competitive salaries and benefits, including: medical/dental/vision plans, life and accident insurance, 401(K), employee stock purchase plan, educational expense reimbursement, employee assistance program, flexible work hours (availability varies by office and job function) training programs, matching gift program, and more. Gallagher believes that all persons are entitled to equal employment opportunity and does not discriminate against nor favor any applicant because of race, sex, color, disability, national origin, religion, creed, age, marital status, citizenship, veteran status, gender, gender identity / expression, actual or perceived sexual orientation, or any other protected characteristic. Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination. In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified applicant with a disability, unless the accommodation would impose an undue hardship on the operation of our business.