VW Credit Job - 31500227 | CareerArc
  Search for More Jobs
Get alerts for jobs like this Get jobs like this tweeted to you
Company: VW Credit
Location: Libertyville, IL
Career Level: Mid-Senior Level
Industries: Automotive, Motor Vehicle, Dealers


Role Summary:

The Identity and Data Security Engineer will offer deep subject matter expertise and be an essential contributor to development & support of Identity Management capabilities. This role will develop simple, lightweight, & self-service Identity Management capabilities, drive Access Certification & RBAC initiatives, and support existing IAM workflows. The Identity and Data Engineer will continually maintain and enhance the security and resistance to identity-based fraud (account takeover, authentication bypass, identity misrepresentation) in the financial services space using risk mitigation tools and techniques in order to enable secure integrated information systems that support the customers and digital strategies. This role is responsible for designing, building, testing, implementing, maintaining and operating infrastructure security solutions such as IAM tools, MFA tools, Active Directory, and Encryption. Ideal candidates will have deep domain expertise of IAM solutions and information security concepts.

Role Responsibilities:
  • Install, test and configure identity management tools and processes such as Azure AD, MIM, OKTA, Sailpoint, etc.
  • Harden and act as gatekeeper of Active Directory
  • Work with system architects, infrastructure operations, and governance teams to develop strategy and deployment plans for making identity resources easily consumable for the organization
  • Optimize legacy and modern authentication protocols with I&AM architectures to meet business needs
  • Drive the development of new/existing PAM solutions to meet security and Group requirements
  • Develop standards and approaches to enable seamless and secure integration of PAM solutions
  • Ensure security of the IT infrastructure by conducting periodic reviews of user IDs including Administrators and service accounts
  • Manage token, password, certificates and encryption keys used in authentication, authorization, and access
  • Administration of cloud security tools such as AWS CloudWatch, CloudTrails, and Security Hub
  • Administration of SaaS IAM security tools such as Azure ATP and O365 Security
  • Provide incident response support for compromised credentials and identify potential threats
  • Perform IAM and PAM system monitoring, system auditing, and integrity check functions daily, monthly, quarterly, and annually as dictated in Information Security policies
  • Deliver seamless SSO and MFA operations to end users and partners


Experience: Required
  • 7 - 9 years of experience
  • 3 years of experience in AD, IAM, PAM or SSO
Education: Required
  • B.S. in Information Technology, Computer Science (or related field)
  • Advanced Degree a plus
General Skills:
  • Initiative and desire to find faults in processes
  • Analytical and conceptual thinking – using logic and reason, creative and strategic
  • Communication skills – interpersonal, presentation and written
  • Computer savvy – skilled in the use of software
  • Integration – joining people, processes or systems
  • Influencing and negotiation skills
  • Problem solving
  • Time Management
  • Ability and desire to learn new technologies

Specialized Skills:

  • Experience with cloud platform IAM concepts in AWS, Azure or GCP
  • Knowledge of classic auth platforms: Kerberos, LDAP, Radius, Tacacs+, etc.) and Federation platforms/protocols (Oauth, OpenID, SAML, WS-Fed, etc.)
  • Working experience with Commercial (Ping Identity, Active Directory, etc.), and Open Source (OpenLDAP, OpenDJ, etc.) enterprise IAM platforms.
  • Experience designing implementing of security controls (MFA, Conditional Access)
  • Familiarity with design and architecture of cloud IAM services
  • Familiarity with security reference frameworks (NIST, CIS, etc.)
  • MCSA/E, CompTIA or other relevant Certifications are a major plus
Work Flexibility:
  • Travel 10% of the time
  • Onsite, remote work options dependent on team operating model and initiative
  • Flexibility to work outside of core hours (Monday – Friday) to support business demand

We are proud to be an EEO employer M/F/D/V. We maintain a drug-free workplace and perform pre-employment substance abuse testing.

 Apply on company website