As the Edwards Architect for Information Security, you will contribute with the security design, implementation, operation and maintenance of Identity and Access Management service and related technologies. Ideal candidates possess both broad and deep technical knowledge in Information Security and IAM practice. This is highly collaborative role, and you will work in close collaboration with multiple cross-functional teams.
How you will make an impact:
1. Providing design and architecture guidance for enterprise-level security initiatives, system integration, and tools within the Identity and Access Management (IAM) domain.
2. Serving as the technical lead for enterprise-class IAM security initiatives.
3. Developing security design patterns and architectural models that ensure repeatable, consistent architecture for IAM capabilities and related technologies.
4. Establishing information security best practices and architectural models to ensure compliance with enterprise-wide security policies and standards in the IAM space.
5. Acting as a business liaison and lead advisor to multiple business units.
6. Leading operations and maintenance of key cybersecurity capabilities and services across multiple technologies.
7. Staying informed on the evolving cybersecurity threat landscape to drive innovative solutions that enhance Edwards’ security posture.
8. Resolving issues and incidents through highly complex root cause analysis, followed by the development and implementation of strategic solutions.
9. Translating complex security concepts into business-friendly language to facilitate stakeholder understanding and alignment.
10. Performing other duties as assigned by management.
What you'll need (Required):
11. Bachelor's Degree in related field.
12. 6 years of previous related experience in Information Security and/or IAM domain with solid performance in an architect role working with cross-functional teams.
13. Expert of security concepts for identity and access management.
What else we look for (Preferred):
14. Experience in designing and implementing secure Active Directory and Entra ID solutions.
15. Knowledge of Active Directory authentication features (Kerberos, NTLM, LDAP).
16. Experience with Active Directory security best practices (e.g. Privileged Access Management, credential theft mitigations, tiering model design).
17. Knowledge of common attack vectors and methods such as pass the hash, pass the ticket, ransomware, kerberoasting.
18. Experience of Active Directory capabilities (FSMO roles, schema management, trusts, replication, and Group Policy), Active Directory troubleshooting experience (AD replication, service health checks, advanced troubleshooting).
19. Working knowledge of IAM services of any public cloud providers (Azure, AWS, GCP), is a plus.
20. Understand modern IAM solutions (e.g. MFA, Authentication strengths, conditional access policies, PIM, External Identity, Entra ID Application Proxy, SSO, Application integrations)
21. Understanding of identity providers using SAML, OAuth, or OpenID Connect.
22. Experience in IAM engineering, building and maintaining security controls.
23. Experience implementing industry good practices (e.g., NIST, ISO2700x, SANS) preferred.
24. Experience and/or understanding of at least 3 cyber security domains (e.g., platform security, application security, network security, infrastructure, cloud security, data security and identity and access management).
25. Working knowledge with threat modeling (STRIDE), preferred.
26. Certifications in related discipline (e.g., CEH, CISM, CISSP), preferred.
27. Proficient analytical and problem-solving abilities to identify and mitigate potential identity security risks.
28. Substantial knowledge and understanding of cybersecurity principles
29. Experience drafting technical documentation.
30. Excellent verbal and written communication skills and customer focused skills
31. Ability to interact professionally with all organizational levels and proactively escalate issues to appropriate levels of management in the organization
32. Ability to manage competing priorities in a fast-paced environment
33. Strict attention to detail.
34. Good organization and time management skills
35. Ability to partner and facilitate security operations, incident response and forensic analysis when required.
36. Adhere to all company rules and requirements (e.g., pandemic protocols, Environmental Health & Safety rules) and take adequate control measures in preventing injuries to themselves and others as well as to the protection of environment and prevention of pollution under their span of influence/control.