About the Position:

Reporting to Director Cybersecurity Architecture, the Cybersecurity Architect Principal is an Identity and Access Management domain subject matter expert responsible for Active Directory environment and supporting technologies and processes. This includes ensuring the IAM ecosystem complies with security policies and standards. This role serves as a subject matter expert across a broad range of global audiences, to include business leaders, Technology / Product teams.

The Cybersecurity Architect Principal is a member of the Blue team that focuses on securing and defending Ceridian information assets and intellectual property. The team consists of Cybersecurity Architects with expertise in multiple security domains to include Identity and Access Management, Messaging/Mobile Security, Network Security, and Cybersecurity Solutions.

Responsibilities

• Research, design, implement, and support the Identity and Access Management environment to include technology and process dependencies
• Research and evaluate additional security solutions or enhancements to existing security solutions to improve overall enterprise security lead effort in project development and/or operational support actives
• Design and support Privilege Access Management (PAM) systems, role-based access control models for domain, server, and application administration
• Review and recommend changes to any existing antiquated security architecture, processes, and standard operating procedures
• Develop and advise on best practices concerning Identity Access Management operations and automation
• Lead efforts to consolidate Active Directory domains and develop repeatable processes for integrating systems of acquired entities
• Partner with product management, product owners/architects to help identify opportunities for security improvements
• Work in close partnership and collaboration with Cybersecurity Operations and Cybersecurity Governance Assurance (Red) teams
• Lead strategic or special projects related to cybersecurity or other information technology opportunities
• Develop and maintain architectural diagrams, standard operating procedures, user guides, and documentation as needed
• Provide guidance throughout lifecycle of Technology projects and deliver assigned tasks on-time with attention to detail
• Respond in a timely manner to all compliance audit requests as needed
• Monitor and address ticket queues within SLAs

Qualifications:

Education & Certification:

• Bachelor's degree in Computer Science plus 7+ years related experience, or
• Master's degree plus 5+ years related experience, or
• Equivalent combination of education and related experience
• CISSP and GIAC certifications are highly desirable

Knowledge & Experience:

• 5-7 years Identity and Access Management technologies and processes
• 5-7 years designing, building, and supporting Active Directory services
• Deep understanding of Identity and Access Management functions and identity lifecycle management
• Proficiency in designing, deploying, and integrating a secure AD environment
• Demonstrated solution delivery incorporating security standards and emerging technologies to design, implement, enhance, and automate IAM ecosystem
• Experience with designing and supporting privilege access management systems, role-based access control models for domain, server, and application administration in both private and public cloud
• Technically proficient in Active Directory, Azure AD, Identity Governance & Administration Solutions, PowerShell, Visio, and Power BI
• Working knowledge of related security technologies including firewalls, IPS, WAF, SIEM, CASB, and Antivirus
• Working knowledge of public cloud-based technologies

Personal Attributes:

• Agile, reliable, and collaborative team member
• Extremely responsive and organized
• Highly self-motivated and driven
• Keen attention to detail
• Ability to present ideas to various audiences in user-friendly terms
• Ability to work well interpersonally across different teams and disciplines at various levels up through executives

Working Environment & Physical Demands:

• Regular, predictable attendance is required with on-call availability
• Planned evening and weekend hours may be required on occasion
• Sitting for extended periods of time