Senior Security Engineer - Identity & Access Management at Afterpay

Information Security, Permanent Full-time, Melbourne melbourne engineering full-time
Posted 19 days ago

About Us
We started a movement in which everyone can win – shoppers, retailers, society and every person on our team.
To play fair, trust people and reward them for doing the right thing. We are obsessed with our product. We see and feel the impact of our work as more and more people gain financial freedom and retailers grow across the globe. 

Afterpay is offered by more than 55,000 of the world’s best retailers and has more than 10 million active customers globally. Afterpay is offered by top fashion and beauty retailers across the globe - including E-bay, The Iconic, Myer, Foot Locker, Adore Beauty, Mac Cosmetics, Kathmandu and many others. We are currently available in Australia, New Zealand, the United States and the United Kingdom where we are Clearpay. 

The Opportunity
In order to be successful, Afterpay must operate a wide range of different technology solutions including collaboration tooling, financial platforms and data warehouses. Our Enterprise Security team works with our partners in IT, Finance, HR, Legal and Operations to ensure that our enabling technology is safe.

We’re ready to take our Identity platforms and services to the next level of maturity and commence a number of new projects to consolidate and modernise Identity and Access management at Afterpay. We have some big goals like transitioning to a state with no Active Directory, automating access requests and automating user lifecycle management throughout the organisation.

Our new Senior Security Engineer will have a strong Identity focus and work with the Enterprise Security team to:

1.Collaborate with our internal partners in Product, Detection & Response, GRC and Community security streams to develop solutions that align with our security and organisational goals

2.Operate and continually improve our Identity and Access Management platforms

3.Lead projects to integrate all SaaS, Cloud and on-prem applications and infrastructure with our Identity services

4.Design and implement Enterprise Identity services covering Identity Governance, Access certification, Provisioning, Privileged Access Management, Device Trust

5.Develop self-service patterns and guidance for our technical and non-technical business partners to easily integrate and adopt our Enterprise Identity services

6.Consult and collaborate with our business partners on projects, processes and technology changes to ensure Enterprise Identity and Security is considered and integrated into their plans

We’re big believers that the best way to scale an information security team is to focus on self-service and automation. You will also help us to improve by finding ways to enable our partners to self-serve as much as possible through the creation of process, documentation, visibility and tooling.

Doing all of the above will require you to have experience in both enterprise systems security engineering and automation. You will have a good understanding of cybersecurity risk and help our partners to map a path that manages their risk whilst enabling them to achieve their business objectives.

As a member of our team, we will also look to you to help us build a great team culture, enjoy the ride and have a laugh along the way. 

Who are you?

Like us, you’ll get a kick out of seeing and feeling the impact of your work. You will be a naturally curious and self-driven individual who has: 

-Experience designing and implementing identity management solutions in mid-large enterprises

-Hands-on experience with Identity tools such as Sailpoint IdentityNow, Okta, AWS IAM, Active Directory

-Knowledge of federation standards including SAML, OAuth, OpenID Connect

-Knowledge of identity provisioning and lifecycle management protocols including SCIM, JIT

-Knowledge of modern Enterprise Technologies and security controls

-Good understanding of security architecture models and principles such as Zero Trust, Role Based Access Control and Least privilege

-Experience working with Web APIs and scripting languages such as Python, Javascript, Powershell or Bash

-Experience implementing security solutions using modern DevOps practices (config and infrastructure as code, CI/CD) 

You will have a humble and passionate approach to security and engineering, where you will be familiar with enterprise IT architecture, infrastructure automation, enterprise security tools and collaboration. 

We play fair and reward you for doing the right thing. Once we are back in the office you will enjoy working from one of our beautiful offices and feel trusted to work flexibly, remaining connected to smart people in all our locations. We put opportunity before optimism and plan our careers quarterly not annually. We are proud to support working parents of all genders in every country with a market-leading, equitable parental leave program including access to up to 26 weeks paid leave. 

When you’re built from the ground up, there’s always room for growth. To challenge each other and shape a legacy built on real purpose, talent, and grit. 

How to Apply: We don’t know what the future holds. That’s the exciting part; we show up and make it happen. If you’re excited by this opportunity, click apply now! 

Afterpay is continuing to hire for all open roles with all interviewing and on-boarding done virtually due to COVID-19. All new team members, in addition to current staff, will temporarily work from home until it is safe to return to our offices