Sr Identity & Access Security Engineer in Bucuresti

Already an employee? You must apply through our internal portal:

Sr Identity & Access Security Engineer

Bucharest, B, RO

Requisition ID: 18930 

The Senior Identity and Access Management Security Engineer plays a key role helping define, build, implement, maintain, and enforce a strategic approach to Identity & Access Management (IAM) across the Molson Coors enterprise. The role also act as a subject matter expert on the business process, data flows, and information system functionality and technologies for account provisioning and deprovisioning, single-sign on and multi factor authentication. This includes network access (e.g. Microsoft active directory), on-premise application access (e.g. SAP, etc.), and cloud application access (e.g. Microsoft O365, Salesforce etc.). 

Working knowledge of multi-factor authentication, privileged access management, active directory, SAP roles-based access, web single sign-on, and least privileged access principles will be critical. Accountable to ensure that IAM remains fit for purpose, secures users/assets, and provides a positive user experience.

Accountable for developing/implementing/managing the access management security standards, process flows and technical specifications for the enterprise; and for ensuring compliance with overall IT security standards & providing IAM security consulting support to IT Business Partners, Enterprise Architects, Project Teams and IT Service Operations.

KEY RESPONSIBILITIES:

• Strategy & standards definition - Defines and maintains the IAM security strategy, processes, and standards for the enterprise.
• Strategy & standards implementation oversight - Sets direction and leads in the definition and use of IAM to ensure overall IT security and risk requirements, both current and future, are implemented effectively across the enterprise.
• IAM subject matter expert - Provides advice on security aspects of solution development and integration (including requests for changes, deviations from specifications, etc.) and ensures that relevant security strategies, policies, standards and practices are applied correctly across all application solution delivery projects for the enterprise.
• IAM security consulting support - Provides IAM consulting support to Enterprise Architects, IT Business Partners and IT leadership being accountable for maintaining the access management security standards and process flows for the enterprise. Plays an IAM advisory role on key projects & provides consulting support on a portfolio of solution enhancements for the enterprise for ensuring compliance with overall IT security standards.
• Lead directory services implementations/migrations involving customization, configuration, and development of solution integrations translating functional requirements into technical designs for IAM-related security including roles/tools and related provisioning processes.
• Customize, configure, and develop IAM solution integrations using requirements and design and independently manage project deliverables to successful completion.
• Design, create, test, support, maintain, and improve IAM solution to provide necessary and appropriate access to technical and functional users complex global environment.
• Align with Business and Process Leads to establish a role-based access model for multiple applications (SAP, Salesforce, etc.) that can be provisioned through the IAM tool.
• Assist with internal/external audit, Internal Controls and Information Technology (IT) Governance activities/queries.

KEY SKILLS:

• 8-10 years working experience in information technology with at least 2 years specific to identity & access management (IAM) required.
• 10-12 years IT experience including 3+ years working with mainstream IAM solutions preferred.
• Experience with designing and automating provisioning access via an Identity Access Management (IDM, IAM) tool.
• Experience designing, building, testing, implementing, troubleshooting and supporting IAM solutions preferred.
• Experience with Active Directory, Single Sign-On, Multifactor Authentication and SAP.
• Role and attribute based access control implementation experience, including role mining tools and role governance.
• IAM governance processes such as access reviews, segregation of duties, and least privilege implementation.
• Azure Active Directory security technologies, authentication models, modern federation standards, MFA, conditional access policies, application integration, etc.
• IAM capabilities of major cloud providers such as Azure, AWS, Salesforce, Workday, ServiceNow, SAP, etc.
• Privileged access management for various types of technologies covering on premise.
• API security and best practices for authentication/authorization.
• Thorough understanding of the latest security principles, techniques, and protocols
• Experience with at least 1 of the following programming languages such as Python, PowerShell, Perl, C/C++, etc.
• Ability to communicate security issues to peers and management.

At Molson Coors we seek diversity. Differing perspectives lead to challenging the expected, which keeps new ideas bubbling up. We’re an equal opportunity employer and invite applications from candidates from all backgrounds, race, color, religion, sex, sexual orientation, national origin, gender identity, age, disability, veteran status or any other characteristic. We take pride in celebrating our unique brew.