information security engineer lead
Starbucks Global Cyber Security Group is responsible for engineering and designing Identity, Privileged Access, and Directory Service systems to meet business requirement, goals and objectives encompassing a wide range of technologies that are in accordance with Starbucks Strategy & Architecture standards and guidelines.
This position contributes to Starbucks success by leading the Engineering team through design, development, and deployment of critical services.
As a lead information security engineer, you will be responsible for guiding the team through deployments and project deliverables, proactively finding opportunities to improve identity services and mentor senior engineers in the areas of development, implementation, and optimization of innovative solutions and operational excellence for existing solutions.
This role will serve as a technical subject matter expert in Privileged Access Management and Identity and Access Management technologies within a complex infrastructure for a global enterprise.
The individual must be a motivated team player with a positive attitude, solid interpersonal skills and someone who can quickly take ownership within their area.
The individual must be hands-on, work under minimal supervision and can work in a fast-paced global environment.
Models and acts in accordance with Starbucks guiding principlesSUMMARY OF KEY RESPONSIBILITIES o Demonstrates humility, pragmatism, and drive o Leads and mentors a team of identity engineers to execute our service vision and direction for our global identity and access management services.
o Provides technical oversight to ensures solutions are stable, secure, and compliant with company standards and practiceso Creates short- and long-range plans for lifecycle and capacity management for IAM serviceso Collaborates with technology vendors to deliver against business objectiveso Advises on Operational IT Management areas of Change Management, Release Management, Incident Management, and Problem Managemento Communicates clearly and concisely, both orally and in writingo Demonstrated ability to work successfully in a fast-paced and cross-functional team environmento Ability to establish cross-functional, collaborative relationships with business and technology partnersREQUIRED KNOWLEDGE o BS degree in Information Technology, Computer Science, or equivalent experienceo 8
years of experience in designing and developing identity solutions for large enterpriseo 8
years of hands-on experience at large enterprise in 2 or more of the following areas:
o Privileged Access Management solutions (CyberArk for example)o Directory Services (cloud and on-premise)o Certificate Management solutions (PKI) Customer Identity and Access Management (CIAM) Authentication and User Identity Lifecycle solutions o o Customer Identity and Access Management (CIAM)o Authentication and User Identity Lifecycle solutions o Working knowledge of software development and at least one of the programming/scripting languages (C#, Python, PowerShell, etc.
)o 5
years of experience leading high performing cross-functional technology teamso 5
years of experience with cloud identity solutionso Advanced understanding of Identity standards and protocols like LDAP, SAML, WS- , OpenID Connect, FIDO, SCIM, etc.
and ability to implement them in an enterprise business solutiono Advanced problem-solving abilitieso Demonstrated ability to automate repetitive tasks using a devops approacho Familiarity with various IT / Security technologies including DNS, DHCP, MS Exchange, Firewalls, VPN Gateways, IPS, Proxy, Endpoint Security, Vulnerability Management, SIEM, etc.
PREFERRED QUALIFICATIONSo Certifications such as CISSP, CISM, CISA, CCSP or CCSP or others focused on cybersecurity, data privacy or IAMo Knowledge and understanding of relevant legal and regulatory requirements, such as SOX, PCI, HIPAA, etc.
o Experience with Privileged Access Maturity model conceptso Experience with CyberArk PAM solutionso Working knowledge of software development principles and design patternso Hands-on experience creating and managing PowerShell scriptso CI/CD experience with Azure and related cloud application infrastructure is a pluso DevOps related tools and technologies (JIRA, Confluence, Bitbucket, Jenkins, Ansible, Puppet, Coverity, etc.
)o Strong written and verbal communication skillso Familiar with architecture design tools and creation/design of service-oriented architecturesSUMMARY OF EXPERIENCE o Expert engineering knowledge in Identity and Access Managemento Experience with Privileged Access Management and Directory Serviceso Experience implementing and managing cloud-based serviceso Experience with diagnosing and troubleshooting system problems in a complex, heterogeneous systems environment o Experience with software engineering and/or system administrationo Experience with Devops/Agile o Experience with building and maintaining large enterprise Identity Management deployments o Experience with leading product evaluations, planning, gathering requirements, testing, recommending, and implementing solutions Recommended Skills Agile Methodology Ansible Architecture Automation Bitbucket Business Planning Estimated Salary: $20 to $28 per hour based on qualifications.
This position contributes to Starbucks success by leading the Engineering team through design, development, and deployment of critical services.
As a lead information security engineer, you will be responsible for guiding the team through deployments and project deliverables, proactively finding opportunities to improve identity services and mentor senior engineers in the areas of development, implementation, and optimization of innovative solutions and operational excellence for existing solutions.
This role will serve as a technical subject matter expert in Privileged Access Management and Identity and Access Management technologies within a complex infrastructure for a global enterprise.
The individual must be a motivated team player with a positive attitude, solid interpersonal skills and someone who can quickly take ownership within their area.
The individual must be hands-on, work under minimal supervision and can work in a fast-paced global environment.
Models and acts in accordance with Starbucks guiding principlesSUMMARY OF KEY RESPONSIBILITIES o Demonstrates humility, pragmatism, and drive o Leads and mentors a team of identity engineers to execute our service vision and direction for our global identity and access management services.
o Provides technical oversight to ensures solutions are stable, secure, and compliant with company standards and practiceso Creates short- and long-range plans for lifecycle and capacity management for IAM serviceso Collaborates with technology vendors to deliver against business objectiveso Advises on Operational IT Management areas of Change Management, Release Management, Incident Management, and Problem Managemento Communicates clearly and concisely, both orally and in writingo Demonstrated ability to work successfully in a fast-paced and cross-functional team environmento Ability to establish cross-functional, collaborative relationships with business and technology partnersREQUIRED KNOWLEDGE o BS degree in Information Technology, Computer Science, or equivalent experienceo 8
years of experience in designing and developing identity solutions for large enterpriseo 8
years of hands-on experience at large enterprise in 2 or more of the following areas:
o Privileged Access Management solutions (CyberArk for example)o Directory Services (cloud and on-premise)o Certificate Management solutions (PKI) Customer Identity and Access Management (CIAM) Authentication and User Identity Lifecycle solutions o o Customer Identity and Access Management (CIAM)o Authentication and User Identity Lifecycle solutions o Working knowledge of software development and at least one of the programming/scripting languages (C#, Python, PowerShell, etc.
)o 5
years of experience leading high performing cross-functional technology teamso 5
years of experience with cloud identity solutionso Advanced understanding of Identity standards and protocols like LDAP, SAML, WS- , OpenID Connect, FIDO, SCIM, etc.
and ability to implement them in an enterprise business solutiono Advanced problem-solving abilitieso Demonstrated ability to automate repetitive tasks using a devops approacho Familiarity with various IT / Security technologies including DNS, DHCP, MS Exchange, Firewalls, VPN Gateways, IPS, Proxy, Endpoint Security, Vulnerability Management, SIEM, etc.
PREFERRED QUALIFICATIONSo Certifications such as CISSP, CISM, CISA, CCSP or CCSP or others focused on cybersecurity, data privacy or IAMo Knowledge and understanding of relevant legal and regulatory requirements, such as SOX, PCI, HIPAA, etc.
o Experience with Privileged Access Maturity model conceptso Experience with CyberArk PAM solutionso Working knowledge of software development principles and design patternso Hands-on experience creating and managing PowerShell scriptso CI/CD experience with Azure and related cloud application infrastructure is a pluso DevOps related tools and technologies (JIRA, Confluence, Bitbucket, Jenkins, Ansible, Puppet, Coverity, etc.
)o Strong written and verbal communication skillso Familiar with architecture design tools and creation/design of service-oriented architecturesSUMMARY OF EXPERIENCE o Expert engineering knowledge in Identity and Access Managemento Experience with Privileged Access Management and Directory Serviceso Experience implementing and managing cloud-based serviceso Experience with diagnosing and troubleshooting system problems in a complex, heterogeneous systems environment o Experience with software engineering and/or system administrationo Experience with Devops/Agile o Experience with building and maintaining large enterprise Identity Management deployments o Experience with leading product evaluations, planning, gathering requirements, testing, recommending, and implementing solutions Recommended Skills Agile Methodology Ansible Architecture Automation Bitbucket Business Planning Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
