Position Information Type: Fulltime Role Sr. Security Engineer IAM DevSecOps Location Johnston, RI (Onsite)

Responsibilities:

• Drive continuous improvement for the security of Identity and Access Management in CFG.
• Deliver timely guidance and robust DevSecOps solutions to address IAM security needs.
• Review and lead the gathering of business, functional and technical requirements for establishing secure IAM environment.
• Build prototypes and proofs of concept to demonstrate feasibility for new, innovative security technologies.
• Knowledge of AWS, Azure, and Sharepoint
• Using an Agile methodology, assist with setting task and project priority and following through the board as decided and set
• Meet and work with others to understand application and user needs from Access Controls management.
• Using Git and Terraform, define, and configure projects integrating with a variety of secrets engines and backends.
• Assist with Jenkins pipeline creation, configuration, and vault interoperability
• Using the DataDog and Splunk data aggregation tools to monitor health and performance of IAM controls.
• Ensure that security policy, compliance requirements, and Cloud platforms best practices are implemented across all projects

Experience and Skills:

• Must have a minimum of 8+ years of IAM experience.
• Minimum of 5 years of experience in development/operational experience with identity governance tools including implementation, installation, configuration & administration of various components.
• 5 or more years' experience of advanced knowledge in Windows, Active Directory/Entra ID, Microsoft sharepoint.
• Past experience with pushing technical initiatives, team, project or indirect management of security technologies.
• Hands on experience with authentication & authorization on file shares and database access controls.
• Hands on experience Re-ACL from legacy platform/application to modern platforms.
• Able to effectively present Re-ACL concepts to stakeholders with various level of technical understanding.
• Have knowledge and ability to leverage existing CFG IAM capabilities for custom integrations and solutions.
• Have a solid understanding of identity and access management and security policy concepts, protocols and best practices.
• Strong understanding of cloud computing architecture, technical design and implementations, including Infrastructure as a Service (IaaS), Platform as a Service (PaaS) and Software as a Service (SaaS) delivery models.
• Previous experience in Identity and Access Management or Information Security with a solid understanding of the requirements and goals of IAM as a regulatory and security function
• Experience with the Dev/Sec/Ops model and Agile tools and processes, including Atlassian products such as Jira and Confluence, Trello, Scrum and KanBan
• Experience with HashiCorp Terraform
• Experience with the Linux and Windows Server operating systems
• Experience with version control systems, primarily Git
• Experience with Kubernetes and Docker
• Experience with automation/CI/CD systems, primarily Jenkins
• Experience with building scalable Cloud infrastructure and processes
• Experience in CI/CD methodology and applying the DevOps mindset and principles
• Experience in systems operations management and maintaining environments for enterprise applications
• Proven experience in collaborating with cross-functional business units
• Experience managing Cloud platform spending through metrics and reporting
• Excellent written and verbal communication skills