Lead Security Engineer – Identity

Lead Security Engineer – Identity

Requirements

• Bachelor’s degree in Computer Science or Information Security, or an equivalent experience
• Minimum of 6 years in identity and access management
• Strong background in privileged access management in hybrid on-premises/cloud environments, preferably in a technology/SaaS organization
• Extensive experience in user lifecycle automation and access provisioning/validation automation – using modern IGA tools
• Experience collaborating with product and platform teams on secrets management to support application development and deployment.

Responsibilities

• Exemplify security principles and culture
• Develop and implement a robust identity security strategy
• Effectively partner across security, technology, and business teams
• Provide technical and thought leadership for securing customer, user, administrator, and machine identities at CDK global
• Develop effective Identity security metrics and use them to drive improvements
• Develop and continuously improve Identity and Access Governance and Privileged Access Management security standards and guidelines in alignment with risk and compliance requirements
• Develop and continuously improve machine identity and secrets management standards and guidelines in alignment with risk and compliance requirements
• Measure and report on CDK’s compliance with the above defined security standards
• Drive adoption of the security standards through close partnership with technology teams, leading design and implementation of new technologies, and building new or improving existing processes
• Architect, design, build, implement, and operate IAM, PAM, IGA, and Secrets Management solutions
• Architect, design, and consult on secure machine identity and secrets management architectural patterns to be used in modern applications and cloud environments
• Develop and implement effective privileged access architecture and strategies to reduce security risk
• Develop and implement an IGA strategy to automatically provision the right level of access to our users, maintain the right level of access through organizational and technology changes, and de-provision accounts at the right time
• Collaborate with product and technology teams on developing and implementing effective secrets management solutions
• Develop and operate processes for user account lifecycle management, secrets management, and email/collaboration security
• Collaborate with Security Operations team to assure effective security monitoring and response capabilities for CDK identity and end user technologies
• Provide 24×7 tier 2/3 support for identity and end user security technologies.

Preferred Qualifications

No preferred qualifications provided.