Information Security Engineer Sr

Starbucks Global Cyber Security Group is responsible for engineering and designing Identity, Privileged Access, and Directory Service systems to meet business requirement, goals and objectives encompassing a wide range of technologies that are in accordance with Starbucks Strategy & Architecture standards and guidelines.
This position contributes to Starbucks success as a service owner on the engineering team through design, development, and deployment of critical services. As a senior information security engineer, you will be responsible for guiding the team through deployments and project deliverables, proactively finding opportunities to improve identity services and demonstrate exceptional expertise in the areas of development, implementation, and optimization of innovative solutions and operational excellence for existing solutions.
This role will serve as a technical subject matter expert in Privileged Access Management and Identity technologies within a complex infrastructure. The individual must be a motivated team player with a positive attitude, solid interpersonal skills and someone who can quickly take ownership within their area. The individual must be hands-on, work under minimal supervision and can work in a fast-paced global environment.
Models and acts in accordance with Starbucks guiding principles.
Summary Of Key Responsibilities

• Demonstrated ability to work successfully in a fast-paced and cross-functional team environment
• Creates short- and long-range plans for lifecycle and capacity management for IAM services
• Communicates clearly and concisely, both orally and in writing
• Ability to establish cross-functional, collaborative relationships with business and technology partners
• Provides technical oversight to ensures solutions are stable, secure, and compliant with company standards and practices
• Thought leader across a team of identity engineers to execute our service vision and direction for our global identity and access management services.
• Demonstrates humility, pragmatism, and drive
• Collaborates with technology vendors to deliver against business objectives
• Advises on Operational IT Management areas of Change Management, Release Management, Incident Management, and Problem Management

Required Knowledge

• Advanced understanding of Identity standards and protocols like LDAP, SAML, WS-*, OpenID Connect, FIDO, SCIM, etc. and ability to implement them in a business solution.
• Working knowledge of software development and at least one of the programming/scripting languages (C#, Python, PowerShell, etc.)
• 8+ years of hands-on experience at large enterprise in 2 or more of the following areas:
• Familiarity with various IT / Security technologies including DNS, DHCP, MS Exchange, Firewalls, VPN Gateways, IPS, Proxy, Endpoint Security, Vulnerability Management, SEIM, etc.
• Directory Services (cloud and on-premise)
• Demonstrated ability to automate repetitive tasks using a devops approach
• 8+ years of experience in designing and developing identity solutions for large enterprise
• BS degree in Information Technology, Computer Science, or equivalent experience
• Advanced problem-solving abilities
• Privileged Access Management solutions
• 5+ years of experience with cloud identity solutions
• Certificate Management solutions (PKI)

Preferred Qualifications

• DevOps related tools and technologies (JIRA, Confluence, Bitbucket, Jenkins, Ansible, Puppet, Coverity, etc.)
• CI/CD experience with Azure and related cloud application infrastructure is a plus
• Familiar with architecture design tools and creation/design of service-oriented architectures
• Working knowledge of software development principles and design patterns
• Strong written and verbal communication skills
• Hands-on experience creating and managing PowerShell scripts
• Certifications such as CISSP, CISM, CISA, CCSP or others focused on cybersecurity, data privacy or IAM
• Experience with Privileged Access Maturity model concepts
• Experience with CyberArk PAM solutions
• Knowledge and understanding of relevant legal and regulatory requirements, such as SOX, PCI, HIPAA, etc.

Summary Of Experience

• Experience with diagnosing and troubleshooting system problems in a complex, heterogeneous systems environment
• Expert engineering knowledge in the area of Identity and Access Management
• Experience with Privileged Access Management and Directory Services
• Experience with software engineering and/or system administration
• Experience with “Devops”/Agile
• Experience implementing and managing cloud-based services
• Experience with building and maintain large enterprise Identity Management deployments
• Experience with leading product evaluations, planning, gathering requirements, testing, recommending, and implementing solutions

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. We are committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities. People of color, women, LGBTQIA+, veterans and persons with disabilities are encouraged to apply. Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal state and local ordinances. Starbucks Corporation is committed to offering reasonable accommodations to job applicants with disabilities. If you need assistance or an accommodation due to a disability, please contact us at [email protected].