Head of Information Security at Aurora shaping security strategy and governance in a software - focused global business. Leading security efforts to ensure resilience and compliance across operations.
About the role
- IT Info Security Specialist managing ERIE's information security program to protect digital assets. Collaborating with various teams to enforce security measures and resolve identity access issues.
Responsibilities
- Serve as a member of a security and technology team responsible for administering and maintaining identities, access, and entitlements across IAM platforms.
- Support the implementation and enforcement of identity controls, ensuring alignment with organizational policies, standards, and governance frameworks.
- Collaborate with security leadership, technical teams, and business stakeholders to design and implement access models aligned with the organization's risk posture (e.g., least privilege, RBAC/ABAC).
- Administer and support IAM technologies including SSO, directory services, MFA, certificate services, privileged access management (PAM).
- Investigate, troubleshoot, and resolve identity and access-related issues across internal users, external partners, and contractor populations.
Requirements
- 3-5+ years' experience in cybersecurity and with IAM practitioner experience.
- Administration and familiarity with directory services, Entra ID, SSO, MFA and RBAC.
- Ability to conduct certifications/recertification campaigns and produce compliance reports for management.
- Ideally, familiar with one or more regulatory requirements and laws such as, but not limited to: PCI DSS, FFIEC, the Sarbanes-Oxley Act, HIPAA, GDPR and GLBA.
- Additionally, experience in one or more: ISO 27001, NIST, CIS.
- Preferable experience with one or more scripting languages: Python, PowerShell and Bash.
- Familiarity with SCIM, SAML, OAuth, OIDC and other identity federation protocols and standards.
- Experience with identity lifecycle management processes and workflows, access provisioning/deprovisioning and user account management across multiple systems.
- Strong written and oral communication skills across varying levels of the organization.
Benefits
- Premier health, prescription, dental, and vision benefits for you and your dependents.
- Low contributions to medical and prescription premiums.
- Pension.
- 401(k) with up to 4% contribution match.
- Paid time off.
- Career development.
- Additional benefits that include company-paid basic life insurance; short-and long-term disability insurance; orthodontic coverage for children and adults; adoption assistance; fertility and infertility coverage; well-being programs; paid volunteer hours for service to your community; and dollar-for-dollar matching of your charitable gifts each year.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Senior Security Engineer specializing in penetration testing and security strategies for fintech. Collaborating with teams to enhance security for AI applications and financial systems.
Principal Cyber Security Engineer for Identity Access Management at MSK managing identity solutions and advanced identity platforms. Partnering with stakeholders to align identity strategy and lead IAM initiatives.
Join The Missing Link as a Security Engineer, leveraging 3 - 4 years of IT Security experience. Lead projects in a collaborative environment with a focus on innovation and impact.
Engineer in Health, Safety and Environment for ArianeGroup focusing on industrial risk management. Involves audits, assessments, and safety training participation.
Senior Product Security Engineer at Red Hat focusing on security and compliance for digital sovereign products while collaborating across global teams and enhancing automation.
Security Engineer safeguarding K - 12 student data in several locations for EduTech startup. Designing secure software systems and ensuring data protection to comply with privacy standards.
Security Engineer focusing on data protection and privacy for Kira Learning's educational technology. Safeguarding K - 12 student data while collaborating with engineering teams on secure software development.
Senior Cybersecurity Engineer responsible for protecting Advansys and its clients' IT infrastructure. Designing, implementing, and managing security solutions, while mentoring junior engineers.
Security Engineer responsible for incident response and security protocol design at Sinch. Joining a global team to safeguard sensitive information and enhance cybersecurity measures.