IAM Security Engineer (remote)

ARE YOU A CURRENT US FOODS EMPLOYEE? PLEASE APPLY DIRECTLY THROUGH OUR INTERNAL WORKDAY CAREER SITE

Join Our Community of Food People!

At US Foods®, innovation and technology is our superpower. By expanding our digital ecosystem and leading with a customer-first mindset, we’re delivering technology that empowers our customers and simplifies business. As we transform the digital landscape of the foodservice industry, we’re outpacing our competitors faster than ever before. ​

 We believe diversity is the cornerstone of creativity and innovation—and we foster an open, inclusive, flexible work environment that supports our transformation.
Join a dynamic and growing Identity and Access Management team, implementing the latest technologies to drive excellent experiences for our customers and internal workforce clients. In this position, you will research, evaluate, develop, and implement solutions that continually enhance identity management across all of US Foods value-streams. You will work with business teams, audit, technologists, and vendors to deliver enterprise-class IAM services while supporting the goals and objectives of the organization.

The ideal engineer will be well versed in IAM processes and lead efforts to eliminate technical debt, promote efficiency through process improvements, maintain system availability, and provide engineering support. The engineer will have a desire to work in a dynamic environment and have an excellent work ethic, great communication skills, and be a self-starter. The engineer must also be a team player with a positive attitude, who is motivated to work towards common goals and responsibilities.

Flexible Work Policy: The work for the IAM Security Engineer position is completely 100% remote anywhere in the United States except Hawaii or United States Territories.  This position may have the potential to travel up to 20% dependent on business needs.

RESPONSIBILITIES  

• Serve as a subject matter expert and trusted advisor in support of the implementation of the Identity & Access Management program.
• Work with application teams to integrate IAM solutions into our applications and systems.
• Play a critical role in implementing and supporting Identity Governance & Administration functions (account and access provisioning, access reviews/certifications, RBAC, SOD).
• Provide support and guidance for Privileged Access Management tools and processes.
• Support key SSO initiatives and the business-as-usual operations related to SSO, including adding, modifying, and removing applications from our SSO solutions.
• Engages in information security projects that evaluate existing security controls and propose changes based on guidance from security leadership and architects.
• Provides security expertise for incident response and system stability issues as they occur. This may include involvement outside of regular work hours. Responsiveness is required.
• Provide input and guidance to security and enterprise architects related to the design and implementation of security solutions.
• Implements solutions as designed and architected by security and enterprise architects.
• Responds to service alerts and ticket escalations within SLA expectations.
• Researches, validates, and deploys solutions that meet security and business needs.
• Analyzes trends, news, and changes to relevant threats and compliance.
• Focuses on driving security efficiencies that allow security team members to work on value-added tasks.
• Performs other duties as assigned.

RELATIONSHIPS

• Internal: Key internal functional relationships Security Engineering, Security Strategy, Security Operations, Governance Risk and Compliance Team, Security Architecture, Risk Management, Cloud and Application Security, Cloud, Compliance, Enterprise Architecture, Product Owners, Business Relationship Managers, Business Architects and Analysts, Solutions Architects, Business Owners, and Technical Resources (IT Infrastructure, Network Engineers, Client Engineering, System Administrators, Developers, etc.) 
• External: This role will interact frequently with third party security vendors

WORK ENVIRONMENT

This role has been segmented as "Remote " meaning works remotely. Can live anywhere in continental US and Alaska. Travel as needed for business.

MINIMUM QUALIFICATIONS

• 5+ years’ experience in cybersecurity, including compliance and risk management with a system and network security engineering background
• Highly technical and analytical expertise, with a proven background (preferred 5+ years’ IT experience in addition to cybersecurity) in technology design, implementation, and delivery
• Demonstratable experience in one or more of the following IAM domains:
  • Identity Governance & Administration tools such as SailPoint, One Identity, or Forge Rock IDM.
  • Privileged Access Management technologies such as CyberArk, Delinea, or BeyondTrust.
  • Access Management technologies such as Azure SSO & MFA, Okta, or Ping.
• Excellence in communicating business risk from cybersecurity issues
• Record of accomplishment of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively
• Highly trustworthy; leads by example
• Role is remote with approximately 5% travel required

Education

• Bachelor’s degree in computer science, information assurance, MIS or related field, OR equivalent work experience required.

Certifications/Training

• CISSP (preferred); CISM and/or SANS certification or CIAM a plus

PREFERRED QUALIFICATIONS

• Experience with CyberArk Privileged Cloud, EPM, and Conjur
• Experience with a leading IGA solution such as SailPoint IdentityNow or One Identity’s Identity Governance.
• Demonstrated experience supporting Azure AD and Azure AD SSO.
• Experience with cloud services – preferably, Amazon Web Services (AWS) or Microsoft Azure 
• Experience with scripting in one or more of the following: Python, JavaScript, PowerShell, PHP, or Ruby
• Ability to work independently with effective decision-making skills.

Compensation depends on relevant experience and/or education, specific skills, function, geographic location, and other factors as applicable by law.  The expected base rate for this role is between $85,000 - $140,000.

This role will also receive annual incentive plan bonus.

​Benefits for this role may include health insurance, pre-tax spending accounts, retirement benefits, paid time off, short-term and long-term disability, employee stock purchase plan, and life insurance. To review available benefits, please click here: https://www.usfoods.com/careers/benefits.html.

#LI-SK1

#remote

***EOE Race/Color/Religion/Sex/Sexual Orientation/Gender Identity/National Origin/Protected Veteran/Disability Status***