Lead Cybersecurity Identity Engineer Job at Cox Automotive in Sandy Springs

Cox Automotive is on the lookout for a skilled and innovative Lead Cybersecurity Identity Engineer to join our dynamic Identity and Access Management (IAM) team. In this pivotal role, you will design, develop, and maintain cutting-edge identity management and authentication solutions including Single Sign-On (SSO) and Multi-Factor Authentication (MFA). You will play an essential role in creating secure, scalable access systems that improve user experience while ensuring compliance with security standards and regulatory requirements.

Key success factors include:

• A profound understanding of IAM technologies, principles, and best practices.
• Hands-on experience in workforce and customer authentication environments.
• Expertise in authentication architecture and design.

Key Responsibilities

• Design and oversee the implementation of authentication and SSO solutions across enterprise applications and platforms.
• Oversee integration of identity providers (IdPs) such as Okta, Azure AD, and Ping Identity with internal and external applications.
• Develop secure authentication mechanisms utilizing protocols like SAML, OAuth 2.0, OpenID Connect, and Kerberos.
• Collaborate with application owners and developers to facilitate SSO and federated identity integrations.
• Implement and enforce policies for Multi-Factor Authentication (MFA).
• Troubleshoot and resolve authentication and access-related incidents.
• Document architecture, configurations, and procedures associated with authentication and access systems.
• Stay informed about emerging authentication technologies, threats, and best practices.

Minimum Requirements:

• Bachelor's degree in a relevant field and 4 years of experience. Alternatively, a master's degree and 2 years of experience; a Ph.D. with up to 1 year; or 16 years of experience in a related field will be considered.
• Proven experience in designing, implementing, and maintaining authentication solutions for workforce and CIAM personnel.
• Ability to communicate cybersecurity policies effectively to both technical and non-technical stakeholders.
• Excellent customer service skills, along with strong writing and presentation capabilities.
• Ability to foster a collaborative working environment with key stakeholders and partner closely with other cybersecurity teams to promote best practices.
• Consultative approach to addressing complex cybersecurity issues with employees and leadership.
• Capacity to evaluate risks and provide recommendations based on their potential impact to the business.

Required Technical Skills

• In-depth knowledge of IAM concepts: authentication, authorization, SSO, MFA, RBAC, ABAC.
• Experience with IAM platforms including Okta, Azure AD, or Ping Identity.
• Proficient in modern authentication protocols such as SAML 2.0, OAuth 2.0, OIDC, Kerberos, and Radius.
• Experience implementing SSO and federated identity solutions.
• Familiarity with identity federation standards and cross-domain authentication.
• Implementation and management of MFA solutions (e.g., Duo, Microsoft Authenticator).
• Experience with passwordless authentication methods (e.g., FIDO2, Windows Hello for Business).
• Knowledge of cybersecurity frameworks (e.g., ISO 27000, NIST) and relevant regulations that guide architectural needs (e.g., GDPR, FFIEC, GLBA).
• Understanding of IAM systems and protocols.

Preferred Technical Skills

• Experience developing connectors for user provisioning along with a thorough understanding of SCIM.
• Deep knowledge of federated authentication and the implementation of associated protocols.
• Experience deploying identity controls and conditional access policies in Entra ID.
• Awareness of current cybersecurity architectures, including zero trust models.
• Familiarity with the AWS Well-Architected Framework.

Preferred Qualifications

• Previous experience in the automotive industry.
• Experience working in a Big Four consulting firm or a Fortune 500 company.
• Relevant industry certifications (e.g., CISSP, CEH, OSCP, Azure, AWS, CISM, CISA).

Compensation for this role ranges from $99,000.00 to $165,000.00 per year. The base salary may vary based on the ultimate location of the position and the candidate's skills and abilities. Additional compensation may be available through incentive programs.

Benefits:

Cox Automotive offers flexible paid vacation, seven paid holidays, and up to 160 hours of paid wellness leave. Additional paid time off is available for bereavement, voting, jury duty, volunteer work, military leave, and parental leave.