Sr Security Engineer Iam Devsecops Apply
Position Information Type: Fulltime Role Sr. Security Engineer IAM DevSecOps Location Johnston, RI (Onsite)
Responsibilities:
- Drive continuous improvement for the security of Identity and Access Management in CFG.
- Deliver timely guidance and robust DevSecOps solutions to address IAM security needs.
- Review and lead the gathering of business, functional and technical requirements for establishing secure IAM environment.
- Build prototypes and proofs of concept to demonstrate feasibility for new, innovative security technologies.
- Knowledge of AWS, Azure, and Sharepoint
- Using an Agile methodology, assist with setting task and project priority and following through the board as decided and set
- Meet and work with others to understand application and user needs from Access Controls management.
- Using Git and Terraform, define, and configure projects integrating with a variety of secrets engines and backends.
- Assist with Jenkins pipeline creation, configuration, and vault interoperability
- Using the DataDog and Splunk data aggregation tools to monitor health and performance of IAM controls.
- Ensure that security policy, compliance requirements, and Cloud platforms best practices are implemented across all projects
Experience and Skills:
- Must have a minimum of 8+ years of IAM experience.
- Minimum of 5 years of experience in development/operational experience with identity governance tools including implementation, installation, configuration & administration of various components.
- 5 or more years' experience of advanced knowledge in Windows, Active Directory/Entra ID, Microsoft sharepoint.
- Past experience with pushing technical initiatives, team, project or indirect management of security technologies.
- Hands on experience with authentication & authorization on file shares and database access controls.
- Hands on experience Re-ACL from legacy platform/application to modern platforms.
- Able to effectively present Re-ACL concepts to stakeholders with various level of technical understanding.
- Have knowledge and ability to leverage existing CFG IAM capabilities for custom integrations and solutions.
- Have a solid understanding of identity and access management and security policy concepts, protocols and best practices.
- Strong understanding of cloud computing architecture, technical design and implementations, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) delivery models.
- Previous experience in Identity and Access Management or Information Security with a solid understanding of the requirements and goals of IAM as a regulatory and security function
- Experience with the Dev/Sec/Ops model and Agile tools and processes, including Atlassian products such as Jira and Confluence, Trello, Scrum and KanBan
- Experience with HashiCorp Terraform
- Experience with the Linux and Windows Server operating systems
- Experience with version control systems, primarily Git
- Experience with Kubernetes and Docker
- Experience with automation/CI/CD systems, primarily Jenkins
- Experience with building scalable Cloud infrastructure and processes
- Experience in CI/CD methodology and applying the DevOps mindset and principles
- Experience in systems operations management and maintaining environments for enterprise applications
- Proven experience in collaborating with cross-functional business units
- Experience managing Cloud platform spending through metrics and reporting
- Excellent written and verbal communication skills