Description
You will design identity-centric workforce security solutions and lead the architectural development of authentication and access management patterns.
Responsibilities
- Design identity and access management solutions aligned with NIST CSF, COBIT, SOC, and GDPR frameworks.
- Guide the implementation of Zero Trust, least privilege, and defense-in-depth principles across hybrid and cloud environments.
- Act as a cybersecurity expert for solutions involving MFA, SSO, conditional access, passwordless, and biometric authentication.
- Provide technical consultation on identity federation, OIDC/OAuth flows, token handling, and session management.
- Develop target architectures and roadmaps considering IAM security controls, audit requirements, and CIEM for security posture improvement.
Required Skills
- 5+ years of experience in Identity, Authentication, and Authorization architecture.
- In-depth knowledge of Entra ID, Azure, M365, AWS, and Sentinel.
- Hands-on experience with OAuth, OIDC, SAML, SSO, MFA, Kerberos, and LDAP.
- Proficiency in securing Java-based microservices, React frontends, and Android/iOS mobile applications.
- Deep understanding of JWT, session handling, TLS/SSL, API security, and certificate authentication.
- Experience with Okta, PingFederate, and Entitlement Management solutions.
- Knowledge of application security including OWASP standards, browser storage, and cookies.
- Familiarity with Azure Defender, MCAS, WAFs, Application Gateways, and NSGs.
- Understanding of threat modeling, secrets management, and Privileged Identity Management (PIM).
- Bachelor's degree in Computer Science.
Preferred Skills
- Experience with Cloud Infrastructure Entitlement Management (CIEM).
- Knowledge of supply chain and third-party risk assessment controls.