Job Details

ComResource is hiring a Senior Security Engineer. The ideal candidate will be local to Columbus, OH and able to work a hybrid schedule.

The Sr Security Engineer supports the Cybersecurity mission of protecting and securing customer, associate, and shareholder's most valuable information. The role is for a seasoned Identity and Access Management Engineer. Responsible for process and tools that support the areas of Identity Governance, Authentication and Authorization, and Privileged Access Management. Additionally provides support for any audit activities related to the IAM sub-domains.

RESPONSIBILITIES:

• Active Directory account provisioning
• Third party and privileged account management
• Owns new business provisioning until operational
• Owns certification and attestation of user access
• Support Authn/Authz, with a primary focus on SSO/MFA, risk based authn
• Complex application account provisioning (SAP, AS400, PKMS, Snowflake, etc.)
• Report out metrics: regulatory compliance reporting, producing access reviews
• Partner with security and intelligence teams on access related alerting
• Identify and define platform security requirements
• Prepare and document standard operating procedures and protocols
• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks
• Owns and maintains multiple tools, controls or programs
• Support incident response process and war room activities on an as needed basis
• Acts as Information Security liaison with cross-functional workgroups and interacts with cross-functional Sr Leadership
• Partners with administrative security team in identifying risks and updating risk registry
• Cross-functional engagement (working with stores teams, business partners and other security teams)

POSITION QUALIFICATIONS:

• 6 – 8 years related experience.
• Bachelor's Degree in Information Technology/Information Security or equivalent experience in technology
• Experience with SailPoint ISE, CyberArk, PingIdentity, Directory Services, EntraAD
• Understanding of networking applications and multiple platforms
• Demonstrated knowledge of security controls in relation to authentication, authorization, privilege access management, identity governance
• Customer Service experience
• Strong written and verbal communication skills
• Experience prioritizing work and/or managing a queue
• Strong multitasking
• Ability to influence
• Ability to communicate technical issues to nontechnical audiences
• Ability to communicate to Sr. leadership and cross functional partners
• Understanding of security controls and how they are used to detect and respond
• Ability to assess/evaluate/prioritize risk
• Ability to lead small (sometimes cross functional) teams/projects/programs