Principal Information Security Engineer

Job Description

We are looking for a Principal Information Security Engineer to focus on web access information security projects. As a Principal Information Security Engineer, you will be a technical leader with massive impact. You will help establish technical standards and drive our overall technical architecture and engineering practices. Principal Information Security Engineers are pragmatic visionaries who can translate business needs into workable technology solutions. Your expertise is deep and broad; you are hands on, producing both detailed technical work and high-level architectural designs.The objective of this program is to define the innovative preventative, detective, and monitoring mechanisms to enable security at scale. In this role, you will discover, define, and solve challenging problems across multiple teams and locations.The successful candidate is one who loves working directly with software developers to understand their needs, and design security systems and solutions that enable developers to operate more effectively, securely, and safely. We have a team culture that encourages innovation, and we expect team members and management alike to take high degree of ownership for their program vision and execution of ideas. You will work directly with application teams, partner security teams, and administrative teams to identify opportunities to improve our security posture. You will build tooling, drive process improvements, and work with technical owners and cutting-edge technology to develop innovative solutions to complex technical challenges.Basic Qualifications

•  Bachelor’s degree in Information Security, Computer Science, Software Engineering, or related discipline, or 7+ years’ equivalent technology experience.
•  Experience in the development of security products.
•  Clear understanding of cloud computing services/deployment architecture.
•  Work with client and other stakeholders to identify detailed functional and non-functional requirements.
•  Excellent written and verbal communication skills with the ability to present complex technical information in a clear and concise manner to a variety of audiences.
•  Experience in identifying security issues and risks and developing mitigation plans.
•  Experience in one or more of the following areas: IAM technologies, software development, or web and network protocols.

•  Deploy the enterprise solutions in accordance with the solution documentation, to include coding and scripting of custom interfaces, workflows, and forms, as well as various types of pre- and post-implementation testing.
•  5 – 7 years of experience engineering identity management systems, including those involving ForgeRock AM, IDM, IG and DS, Ping Federate and EntraID.
•  5+ years of scripting or programming experience in Java, JavaScript, JSP/Servlets, SQL, Vue, Groovy, Shell/BASH scripting, or other languages.
•  5+ years of the following web technologies: RESTful/SOAP, JSON, XML, Web and Application Servers, HTML.
•  Experience Federated integrations (SAML 2.0, OAuth 2.0 and OpenID Connect 1.0)
•  Familiarity with Directories (Active Directory, Ping Directory, eDir, LDAP)
•  Experience SSO Configuration, AuthN Chains/Modules, AuthN Trees/Nodes, Authorization, Web Agents, etc.

Our benefits include the following (some may vary based on role, location or hours):

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law