Mondelēz InternationalRemote
Product Lead - IAM Privileged Access & Non-Human Identity Management
United States
Full Time
2 hours ago
$140,000 - $193,000 USD
H1B Sponsor Likely
Key skills
IAMEntra IDSentrySaaSAgileLeadershipMentoringCommunicationCollaborationZero Trust
About this role
Mondelēz International is hiring a Senior Manager – IAM Platform Lead to lead the strategy, engineering, and lifecycle management of enterprise privileged access and machine identity security platforms. This role involves managing the Privileged Access Management and Non-Human Identity security platforms, driving adoption across various environments, and ensuring compliance with governance frameworks.
Responsibilities:
- Own the strategic direction and roadmap for enterprise PAM and NHI platforms, aligned with enterprise Zero Trust, identity security, and cyber defense initiatives
- Drive adoption of PAM and NHI capabilities across infrastructure, applications, cloud platforms, and DevOps environments
- Manage platform backlog, engineering priorities, and delivery outcomes within the product operating model and agile delivery framework
- Lead engineering and operational oversight of the enterprise CyberArk PAM platform
- Implement modern privileged access controls including least privilege, just-in-time privilege elevation, and privileged session monitoring
- Oversee lifecycle management of the PAM platform including platform upgrades, security patching, monitoring, and disaster recovery capabilities
- Define enterprise standards for privileged role definitions, privilege boundaries, and administrative access models
- Eliminate shared credentials, unmanaged administrative accounts, and standing privileged access
- Support periodic privileged access reviews and certifications in collaboration with Identity Governance and Internal Audit teams
- Establish governance frameworks for non-human identities including service accounts, application identities, API credentials, workload identities, and automation accounts
- Secure machine identities used in automation frameworks, DevOps pipelines, and application integrations
- Implement automated credential rotation and secrets governance for non-human identities
- Identify and onboard unmanaged privileged accounts and credentials across infrastructure, applications, and cloud environments
- Implement automated discovery and onboarding of privileged identities into the CyberArk platform
- Continuously improve visibility of privileged accounts, service identities, and administrative access pathways
- Extend privileged and machine identity security across hybrid environments including on-premise infrastructure, cloud platforms, and SaaS services
- Integrate PAM and NHI capabilities with Microsoft Entra ID (PIM) and cloud identity platforms
- Implement secrets management capabilities and enable secure integration of privileged and machine identity controls within DevOps and automation workflows
- Partner with the Security Operations Center (SOC) and Cyber Defense teams to detect and respond to identity-based threats
- Lead investigations related to privileged credential misuse, identity compromise, or unauthorized administrative activity
- Partner with Internal Audit, Risk, and Compliance teams to ensure PAM and NHI controls align with enterprise governance frameworks
- Ensure platform capabilities support SOX compliance and regulatory requirements
- Maintain auditable privileged access governance and monitoring capabilities
- Drive automation initiatives across privileged access workflows, credential lifecycle management, and machine identity governance
- Enable DevSecOps teams to securely manage secrets, credentials, and elevated access used in development pipelines
- Improve platform resilience through proactive monitoring, reliability engineering, and disaster recovery planning
- Partner with cybersecurity, infrastructure engineering, cloud platform teams, and enterprise architecture to align privileged and machine identity controls with enterprise security architecture
- Support integration of PAM and NHI capabilities with identity governance platforms, authentication services, and security monitoring solutions
Requirements:
- Bachelor's degree in computer science, Cybersecurity, or related field
- 15+ years of experience in Identity and Access Management
- 10+ years of proven experience implementing and managing enterprise Privileged Access Management platforms such as CyberArk
- Experience managing non-human identities including service accounts, application identities, and machine credentials
- Experience securing privileged access across enterprise infrastructure, cloud platforms, and application environments
- Experience operating identity security platforms in global enterprise environments
- Experience operating within a product operating model, including ownership of platform roadmaps and engineering delivery outcomes
- Ability to lead engineering teams while collaborating effectively with security, infrastructure, and application engineering stakeholders
- Strong communication skills with the ability to engage both technical teams and executive leadership
- Experience mentoring and developing technical teams
- CyberArk certifications (Defender, Sentry, Guardian)
- CISSP, CISM, CCSP, or equivalent cybersecurity certifications
- Microsoft security or identity certifications