This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Staff Security Engineer - Identity Threats & IAM Defense
State Street - Cambridge, MA
posted 20 days ago
About the position
The State Street Global Cybersecurity team is looking for a Staff Security Engineer - Identity Threats & IAM Defense. The Cybersecurity team delivers platforms, architecture, and tooling to help Cybersecurity teams make faster, more informed decisions as we work to secure State Street's digital footprint. As a Staff Security Engineer - Identity Threats & IAM Defense on the Security Architecture Governance Engineering (SAGE) team, you will focus on protecting user identities and identity-based systems from cyber threats using a combination of security tools, processes, and best practices to effectively prepare for as well as detect and respond to identity-related threats.
Responsibilities
- Develop and drive the execution of identity threat research and proactive defence, employing architectural understanding, analytic skills, and engineering tools to secure the identity surface.
- Design, implement, and manage IAM solutions.
- Apply and enforce Identity and Access Management policies.
- Work with Active Directory in both on-premises and hybrid environments, including Azure AD (Microsoft Entra ID).
- Consolidate on-prem Active Directory and perform object cleanup.
- Configure and manage AWS and Azure IAM models, roles, and policies.
- Understand identity federation (SAML, OAuth, OpenID Connect, etc.).
- Collaborate with IAM architects, IT security teams, and other stakeholders.
- Document implemented solutions and provide training to end users or IT staff.
- Participate in regular security audits and compliance activities.
Requirements
- Multiyear (>8 years) experience within Cybersecurity including SecOps, penetration testing, security analytics, threat hunting, and/or security architecture.
- Bachelor's degree in cyber security, Computer Science, or related technical discipline, with >6 years of experience.
- Experience with security observability and identity threat monitoring in hybrid cloud environments.
- Proven ability to independently drive transformational security projects cross-organization.
- Knowledge of security testing and penetration testing tools and techniques, and with security analytics tools and platforms.
- Strong communication skills and ability to work cross-functionally.
Nice-to-haves
- Certifications like Microsoft Certified: Azure Administrator Associate or AWS Certified Security - Specialty.
- Experience in security analytics, security research, offensive security, or advanced threat prevention teams.
Benefits
- Generous medical care, insurance and savings plans.
- Flexible Work Programs.
- Development programs and educational support.
- Paid volunteer days and matching gift programs.
