Job Opening : Sr. Security Engineer – IAM DevSecOps
Location: Remote
Full Time
Sr. Security Engineer – IAM DevSecOps
We’re seeking an experienced security engineer to work directly with our software, system engineer and application owner to ensure security of CFG. This role is for any highly motivated individual that can dynamically lead multiple projects while building and maintaining our DevSecOps controls including but not limited to platforms and automated processes. This includes building patterns and processes that allow for reduced friction in cloud development and applications teams to ingest IAM secure code, API, policies, and controls as part of the normal CI/CD pipeline. The DevSecOps Engineer will work to ensure solid technical design with highly availability and performance.
Responsibilities include:
- Drive continuous improvement for the security of Identity and Access Management in CFG.
- Deliver timely guidance and robust DevSecOps solutions to address IAM security needs.
- Review and lead the gathering of business, functional and technical requirements for establishing secure IAM environment.
- Build prototypes and proofs of concept to demonstrate feasibility for new, innovative security technologies.
- Knowledge of AWS, Azure, and Sharepoint
- Using an Agile methodology, assist with setting task and project priority and following through the board as decided and set
- Meet and work with others to understand application and user needs from Access Controls management.
- Using Git and Terraform, define, and configure projects integrating with a variety of secrets engines and backends.
- Assist with Jenkins pipeline creation, configuration, and vault interoperability
- Using the DataDog and Splunk data aggregation tools to monitor health and performance of IAM controls.
- Ensure that security policy, compliance requirements, and Cloud platforms best practices are implemented across all projects
Experience and Skills:
- Must have a minimum of 8+ years of IAM experience.
- Minimum of 5 years of experience in development/operational experience with identity governance tools including implementation, installation, configuration & administration of various components.
- 5 or more years’ experience of advanced knowledge in Windows, Active Directory/Entra ID, Microsoft sharepoint.
- Past experience with pushing technical initiatives, team, project or indirect management of security technologies.
- Hands on experience with authentication & authorization on file shares and database access controls.
- Hands on experience Re-ACL from legacy platform/application to modern platforms.
- Able to effectively present Re-ACL concepts to stakeholders with various level of technical understanding.
- Have knowledge and ability to leverage existing CFG IAM capabilities for custom integrations and solutions.
- Have a solid understanding of identity and access management and security policy concepts, protocols and best practices.
- Strong understanding of cloud computing architecture, technical design and implementations, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) delivery models.
- Previous experience in Identity and Access Management or Information Security with a solid understanding of the requirements and goals of IAM as a regulatory and security function
- Experience with the Dev/Sec/Ops model and Agile tools and processes, including Atlassian products such as Jira and Confluence, Trello, Scrum and KanBan
- Experience with HashiCorp Terraform
- Experience with the Linux and Windows Server operating systems
- Experience with version control systems, primarily Git
- Experience with Kubernetes and Docker
- Experience with automation/CI/CD systems, primarily Jenkins
- Experience with building scalable Cloud infrastructure and processes
- Experience in CI/CD methodology and applying the DevOps mindset and principles
- Experience in systems operations management and maintaining environments for enterprise applications
- Proven experience in collaborating with cross-functional business units
- Experience managing Cloud platform spending through metrics and reporting
- Excellent written and verbal communication skills
Education:
- Bachelor’s degree in computer science or comparable field or equivalent experience