Senior Lead Cyber Security Engineering

Tasks

• Leading the Identity-centric Workforce Security Solutions team to develop authentication and access management solutions
• Development of identity solutions, access patterns, and modern security protocols, taking into account zero trust, least privileged, and defense-in-depth principles
• Review and feedback on identity and access management-related security solutions proposed by stakeholders
• In-depth knowledge and experience with Entra ID, EPM, Sentinel, Azure, AWS Security
• Knowledge of Okta, PingFederate, entitlement management solutions
• Strong knowledge of identity management in Azure AD with OAuth, OIDC, SAML, SSO, MPA, Kerberos, LDAP identity federations
• Experience in providing security solutions for Java-based microservices, React-based front ends, and Android/iOS-based mobile applications on Azure
• Practical experience with JWT, session handling, code signing, certificate authentication, TLS/SSL, API security, application registration, application integration scenarios
• Knowledge of API management, firewalls, DLP, VPNs, Azure Defender, MCS, Sentinel, WAFs, application gateways, NSGs, app proxy, Radius clusters, CDN
• Understanding cloud infrastructure entitlement management (CIEM) solutions to ensure smooth elimination of toxic combinations and high risks
• Understanding and application of threat modeling concepts and methods
• Understanding of application security, OWASP standards, security best practices, browser compatibility/storage/cookies
• Function as a workforce cybersecurity expert in solutions that include end-user computing, proxy solutions, MPA, SSO, conditional access, passwordless, Yubikey, biometric solutions, identity and governance scenarios, secrets management, automation, role-based access management, and just-in-time access.
• Participation in solutions supporting token handling, OIDC/OAuth flows, authorization patterns, identity federation, cloud architectures, cryptography, cloud-native services, cloud security
• Deep understanding of cloud security areas such as policies, RBAC, activities, identities, privileged access management
• Ability to support troubleshooting operations in complex identity landscape scenarios with hands-on experience with Sentinel/KQL/audit logs

Requirements

• In-depth knowledge of application or infrastructure system architectures, typically with experience in multiple system technologies
• Excellent consulting and communication skills, as well as the ability to collaborate effectively with customers, partners, IT management, and employees
• 10 years of experience in information security roles, including 5 years as a tech lead
• CISSP, CISM, or cloud security certification preferred
• Strong collaboration and analytical skills
• Certifications in Azure,