CIAM Threat Engineer
New Jersey, United States of America
Full Time
5 days ago
No Visa Sponsorship
Key skills
Cyber SecurityITSMSplunkIAMAgileCommunication
About this role
Role Overview
- Assess existing customer application‑based threat and fraud controls, identify gaps, and deliver solutions to mitigate risk across:
- Login and enrollment
- Credit card activation
- Profile changes
- Payments and high‑risk transactions
- Design and tune ThreatMetrix (TMX) policies supporting adaptive, risk‑based decisioning.
- Drive fraud policy configuration that enables orchestration, device trust, and multi‑factor authentication.
- Engineer and operate Arkose Labs bot‑defense and challenge strategies across web and mobile platforms.
- Partner with Fraud and Cybersecurity teams to evaluate automated attack patterns and reduce scripted abuse while minimizing customer friction.
- Use data and metrics to continuously improve challenge strategies and outcomes.
- Support and enhance identity verification and step‑up authentication using Prove Identity and Transmit Security.
- Contribute to Always‑On MFA, OTP, biometric, and orchestration‑based authentication strategies.
- Ensure consistent identity and authentication behavior across digital, mobile, and contact center experiences.
- Collect, analyze, and interpret data from multiple sources (e.g., Splunk, event telemetry, vendor dashboards) to:
- Identify fraud trends
- Validate profiling accuracy
- Improve threat detection and response
- Work with partners to define threat monitoring and reporting requirements and identify enhancement opportunities.
- Assist in evaluating and implementing tools that support standard design patterns and best practices across the Digital Identity Services (DIS) platform.
- Assess emerging Digital Identity and fraud technologies to determine where they fill gaps, overlap with existing solutions, or extend capabilities.
- Support roadmap execution across CIAM initiatives and new integrations.
- Provide Level 4 support for day‑to‑day operations of the Digital Identity Services platform.
- Participate in complex customer and application escalations involving authentication, fraud, or identity issues.
- Ensure high availability and operational stability without compromising a strong risk posture.
- Provide identity and security services that enable the business while maintaining strong compliance with:
- NIST 800 series
- FFIEC authentication guidance
- GLBA, SOX, PCI
- Support audit, risk reviews, and control assessments in partnership with First Line Risk and Compliance.
Requirements
- 3+ years of hands‑on experience in Cybersecurity, Fraud Prevention, or Threat Investigations
- 2+ years supporting complex environments and working with senior leaders
- Strong experience supporting Customer IAM (CIAM) security with understanding of industry best practices
- Hands‑on experience with:
- ThreatMetrix
- Arkose Labs
- Prove Identity
- Transmit Security or similar orchestration platforms
- Experience operating modern threat and risk engines (e.g., ThreatMetrix, BioCatch)
- Strong service and delivery mindset with focus on customer experience
- Experience managing complex risk issues in large technology environments
- Understanding of regulatory requirements impacting financial services (GLBA, SOX, PCI)
- Familiarity with ITIL / IT Service Management frameworks
- Strong verbal and written communication skills
- Ability to manage multiple complex initiatives requiring rapid delivery
- Experience working in an Agile delivery environment preferred
- Knowledge of ISO, NIST, and FFIEC guidance preferred
Tech Stack
- Cyber Security
- ITSM
- Splunk