Key skills
Cyber SecurityJavaPythonAIAgenticIAMSAMLSSO
About this role
Role Overview
- Lead the design and development of strategy, architecture, and engineering of TIAA's CIAM platform.
- Provide hands-on solutions design and engineering for Identity Verification, Registration, Access Management, Integrations, and API Security.
- Ensure engineering designs conform to TIAA's cybersecurity and fraud management standards.
- Define patterns and build frameworks related to Agentic AI, Application, and API Security.
- Own Identity Security and Fraud prevention standards and act as the internal SME advisor for application teams.
- Drive operational excellence, automation, scalability, and observability for the CIAM platform.
- Lead cross-functional teams to triage and resolve complex production incidents.
- Bring an AI-first mindset and employ agentic development skills and tools to elevate engineering productivity, delivery velocity, feature documentation, and operational excellence.
Requirements
- 5+ Years Required; 7+ Years Preferred
- Minimum of 5+ years of demonstrated experience in designing and implementing CIAM solutions within a medium-to-large scale and complex environment with focus on Customer Identity.
- 5+ years of direct experience with Ping suite of products – Ping Federate, Ping Directory, Ping Access.
- 5+ years of engineering/development experience using Java/Python.
- Experience in implementing identity orchestration tools such as Transmit Security's FlexID platform.
- Experience in fraud detection and prevention using ThreatMetrix.
- Experience with IAM concepts (SSO, Federation, RBAC, ABAC, ReBAC and/or FIDO2) and IAM Protocols (OAuth2, OIDC, SAML, SCIM, and/or Kerberos).
- Experience creating architecture designs and roadmaps for security platforms.
Tech Stack
- Cyber Security
- Java
- Python
Benefits
- superior retirement program
- highly competitive health, wellness and work life offerings