Sr. Security Engineer (IAM)

Join Fortinet, a cybersecurity pioneer with over two decades of excellence, as we continue to shape the future of cybersecurity and redefine the intersection of networking and security. At Fortinet, our mission is to safeguard people, devices, and data everywhere. We are currently seeking a dynamic Senior Security Engineer (IAM) to contribute to the success of our rapidly growing business.

You would act as a Sr. Security Engineer for the Corporate Information Security team. This highly technical role is an integral part of the Fortinet Corporate Information Security that is responsible for driving Identity and Access Management related global-scale projects within the organization. 

As a Senior Security Engineer, your responsibilities will include:

• Serve as a subject matter expert and trusted advisor in support of the implementation of the Identity and Access Management program. 
• Design, implement, and scale identity and access management solutions for Fortinet’s internal workforce and workloads
• Work with internal teams to integrate IAM solutions into our applications and systems.
• Engage in information security projects that evaluate existing security controls and propose changes based corporate policies.
• Collaborate with cross-functional teams (IT, Security, Compliance) to ensure IAM program aligns with business goals.
• Stay current with industry best practices, regulations, and compliance standards related to IAM, such as FedRamp, SOX, GDPR, PCI, and NIST.
• Evaluate new and emerging IAM security products and technologies
• Proactively research new attack vectors that may affect Fortinet applications and infrastructure.
• Work collaboratively with IAM and product teams on the implementation of product enhancements and help developing the product roadmap. 
• Be part of a global distributed team to share knowledge, workload and assignments. Strong sense of teamwork is required. Coach peers in IAM security concepts and best practices.

We are looking for: 

• 7+ years of work of experience in network/system engineering, cloud engineering, security engineering or operations roles.
• 2+ years of work experience in IAM related role
• Strong understanding of identity federation (SAML, OAuth, OpenID Connect, etc.)
• Solid Experience with LDAP and/or Active Directory
• Strong understanding on passwordless authentication and FIDO2 standard.
• Experience implementing Zero Trust controls
• Experience with Identity and Access Management policy application and enforcement
• Experience working with Identity Threat Detection & Response (ITDR)
• Demonstratable experience in one or more of the following IAM domains:
  • Identity Governance & Administration tools such as SailPoint, One Identity, or Forge Rock IDM.
  • Privileged Access Management technologies such as CyberArk, FortiPAM, or BeyondTrust.
  • Access Management technologies such as Microsoft Entra ID, Okta, or FortiAuthenticator.
• Strong foundation in computer and network security, authentication & authorization, security protocols and applied cryptography
• Solid understanding on OWASP TOP 10 vulnerabilities and technologies like OAuth and JWT.
• Experience with public cloud services providers (AWS, GCP, Azure) and their IAM capabilities is a big plus.
• Ability to analyze access patterns and identify potential security risks or inefficiencies that include risky user behavior patterns and events.
• Experience developing and implementing IAM strategies and solutions, including single sign-on (SSO), multi-factor authentication (MFA), identity federation, and privileged access management (PAM)
• Working knowledge of operating systems including Linux/Unix and Windows
• A self-starter with experience proactively identifying problems, determining practical solutions, identifying and obtaining needed resources, and executing with little or no supervision
• Proven ability to manage multiple projects and workstreams concurrently and successfully
• Ability to organize & communicate effectively, both written and verbal, with technical and non-technical people across functional teams
• A BS degree in Computer Science, Cyber Security, other tech-related degree, or equivalent experience.
• Experience in at least one programming or scripting language

Desired Skills

• Experience working with infrastructure as code and configuration management tools like Terraform, Ansible, etc is a plus.
• Strong understanding on Cloud-Native application architecture, microservices, containerization technologies, secure deployment and implementation issues
• Experience in application penetration testing is a plus
• Certifications like CISSP and or other IAM certifications is a plus.

About Our Team:

Join our team, known for its collaborative ethos, working seamlessly with global customers, internal engineering teams and product development groups. Our team culture emphasizes continuous learning, innovation, and a strong commitment to customer satisfaction. We embrace Fortinet’s core values of openness, teamwork and innovation, fostering an environment where team members support each other, share knowledge, and leverage AI to solve complex technical challenges. Our inclusive and dynamic team thrives on collaboration and is driven by the shared goal of maintaining Fortinet’s high standards of excellence in cybersecurity solutions.

Why Join Us:

We encourage candidates from all backgrounds and identities to apply. We offer a supportive work environment and a competitive Total Rewards package to support you with your overall health and financial well-being. 

Embark on a challenging, enjoyable, and rewarding career journey with Fortinet. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

The US base salary range for this full-time position is $175,000-$200,000. Fortinet offers employees a variety of benefits, including medical, dental, vision, life and disability insurance, 401(k), 11 paid holidays, vacation time, and sick time as well as a comprehensive leave program.

Wage ranges are based on various factors including the labor market, job type, and job level. Exact salary offers will be determined by factors such as the candidate's subject knowledge, skill level, qualifications, experience, and geographic location.

All roles are eligible to participate in the Fortinet equity program, Bonus eligibility is reviewed at time of hire and annually at the Company’s discretion.

#GD