Senor Security Engineer

ComResource is hiring a Senior Security Engineer. The ideal candidate will be local to Columbus, OH and able to work a hybrid schedule.

The Sr Security Engineer supports the Cybersecurity mission of protecting and securing customer, associate, and shareholder’s most valuable information. The role is for a seasoned Identity and Access Management Engineer. Responsible for process and tools that support the areas of Identity Governance, Authentication and Authorization, and Privileged Access Management. Additionally provides support for any audit activities related to the IAM sub-domains.

RESPONSIBILITIES:

Active Directory account provisioning

Third party and privileged account management

Owns new business provisioning until operational

Owns certification and attestation of user access

Support Authn/Authz, with a primary focus on SSO/MFA, risk based authn

Complex application account provisioning (SAP, AS400, PKMS, Snowflake, etc.)

Report out metrics: regulatory compliance reporting, producing access reviews

Partner with security and intelligence teams on access related alerting

Identify and define platform security requirements

Prepare and document standard operating procedures and protocols

Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks

Owns and maintains multiple tools, controls or programs

Support incident response process and war room activities on an as needed basis

Acts as Information Security liaison with cross-functional workgroups and interacts with cross-functional Sr Leadership

Partners with administrative security team in identifying risks and updating risk registry

Cross-functional engagement (working with stores teams, business partners and other security teams)

POSITION QUALIFICATIONS:

6 – 8 years related experience.

Bachelor’s Degree in Information Technology/Information Security or equivalent experience in technology

Experience with SailPoint ISE, CyberArk, PingIdentity, Directory Services, EntraAD

Understanding of networking applications and multiple platforms

Demonstrated knowledge of security controls in relation to authentication, authorization, privilege access management, identity governance

Customer Service experience

Strong written and verbal communication skills

Experience prioritizing work and/or managing a queue

Strong multitasking

Ability to influence

Ability to communicate technical issues to nontechnical audiences

Ability to communicate to Sr. leadership and cross functional partners

Understanding of security controls and how they are used to detect and respond

Ability to assess/evaluate/prioritize risk

Ability to lead small (sometimes cross functional) teams/projects/programs