Sr. IT Security Engineer

What is The Role:

The Senior Information Security Engineer will play an integral role in safeguarding Elastic’s IT systems by enhancing the strategic collaboration between the IT and the InfoSec organizations. 

The ideal candidate is experienced in operating in cloud-native environments and skilled in leading cross-functional, security transformation initiatives, particularly in designing and implementing scalable Identity and Access Management (IAM) solutions in Corporate IT environments. 

What You Will Be Doing:

Identity and Access Management (IAM) Architecture 

• Design, build, and operate advanced security solutions to protect cloud-based network, application, and data infrastructure.
• Implement and manage a zero-trust access management architecture across major platforms, ensuring seamless integration with cloud technologies.
• Implement IAM best practices and procedures in collaboration with the InfoSec IAM architect.
• Leverage systems like Okta to automate user lifecycle management, provisioning, authentication, and access governance.
• Develop and enforce IAM policies and procedures, optimizing role-based access control (RBAC) and leveraging Just In Time access and single sign-on (SSO) capabilities to scale security controls effectively.
• Govern quarterly user access reviews, support security audits, and ensure compliance with regulatory standards.
• Continuously monitor identities, access rights, and usage patterns to proactively mitigate risks and enhance the organization’s security posture.
• Drive security transformation by deploying innovative solutions that improve identity-centric security frameworks.

Collaboration and Strategic Alignment

• Act as a liaison between IT and InfoSec teams to align security strategies with IT initiatives and organizational goals.
• Collaborate on the integration of IAM solutions into IT and InfoSec processes, ensuring both security and operational efficiency.
• Provide advisory support to IT and InfoSec leadership on IAM best practices, tools, and scalability strategies.
• Drive cross-functional collaboration to embed security transformation initiatives into organizational workflows.

Documentation and Technical Leadership

• Create and maintain technical documentation, including architecture diagrams, technical designs, and standard operating procedures (SOPs).
• Proactively propose and implement security improvements aligned with organizational needs and emerging threats.
• Mentor team members on advanced IAM strategies and the use of tools like Okta to achieve efficient security controls at scale.

What You Will Bring:

Minimum Requirements

• Bachelor’s degree in Information Security, Computer Science, or a related field.
• 6+ years of experience in security engineering, consulting, or transformation roles.
• Proven experience in driving security transformation initiatives, especially within cloud-native environments.
• Proficiency with IAM tools, particularly Okta, including its use for lifecycle automation, SSO, and access policies.
• Familiarity with prominent enterprise SaaS applications, such as Salesforce, NetSuite, and others, and their integration into IAM strategies.
• Expertise in applicable frameworks (i.e. NIST, FedRAMP, ISO 27001) and zero-trust principles.

Preferred Skills and Certifications

• Certifications such as CISSP, Certified Identity and Access Manager (CIAM), or similar.
• Advanced experience with Okta’s API capabilities and custom configurations for enterprise-scale security.
• In-depth knowledge of cloud-based IAM solutions and endpoint protection technologies.
• Demonstrated ability to assess risks and implement controls to mitigate IAM-related vulnerabilities.