Mondelēz InternationalRemote
Product Lead - IAM Privileged Access & Non-Human Identity Management
United States
Full Time
3 hours ago
$140,000 - $193,000 USD
H1B Sponsor Likely
Key skills
IAMEntra IDSentrySaaSAgileLeadershipMentoringCommunicationCollaborationZero Trust
About this role
Mondelēz International is seeking a Senior Manager – IAM Platform Lead to oversee the strategy and engineering of privileged access and non-human identity security platforms within their global IAM organization. The role involves leading the development and management of enterprise privileged access management and machine identity security, ensuring alignment with security initiatives and governance frameworks.
Responsibilities:
- Own the strategic direction and roadmap for enterprise PAM and NHI platforms, aligned with enterprise Zero Trust, identity security, and cyber defense initiatives
- Drive adoption of PAM and NHI capabilities across infrastructure, applications, cloud platforms, and DevOps environments
- Manage platform backlog, engineering priorities, and delivery outcomes within the product operating model and agile delivery framework
- Lead engineering and operational oversight of the enterprise CyberArk PAM platform
- Implement modern privileged access controls including least privilege, just-in-time privilege elevation, and privileged session monitoring
- Oversee lifecycle management of the PAM platform including platform upgrades, security patching, monitoring, and disaster recovery capabilities
- Define enterprise standards for privileged role definitions, privilege boundaries, and administrative access models
- Eliminate shared credentials, unmanaged administrative accounts, and standing privileged access
- Support periodic privileged access reviews and certifications in collaboration with Identity Governance and Internal Audit teams
- Establish governance frameworks for non-human identities including service accounts, application identities, API credentials, workload identities, and automation accounts
- Secure machine identities used in automation frameworks, DevOps pipelines, and application integrations
- Implement automated credential rotation and secrets governance for non-human identities
- Identify and onboard unmanaged privileged accounts and credentials across infrastructure, applications, and cloud environments
- Implement automated discovery and onboarding of privileged identities into the CyberArk platform
- Continuously improve visibility of privileged accounts, service identities, and administrative access pathways
- Extend privileged and machine identity security across hybrid environments including on-premise infrastructure, cloud platforms, and SaaS services
- Integrate PAM and NHI capabilities with Microsoft Entra ID (PIM) and cloud identity platforms
- Implement secrets management capabilities and enable secure integration of privileged and machine identity controls within DevOps and automation workflows
- Partner with the Security Operations Center (SOC) and Cyber Defense teams to detect and respond to identity-based threats
- Lead investigations related to privileged credential misuse, identity compromise, or unauthorized administrative activity
- Partner with Internal Audit, Risk, and Compliance teams to ensure PAM and NHI controls align with enterprise governance frameworks
- Ensure platform capabilities support SOX compliance and regulatory requirements
- Maintain auditable privileged access governance and monitoring capabilities
- Drive automation initiatives across privileged access workflows, credential lifecycle management, and machine identity governance
- Enable DevSecOps teams to securely manage secrets, credentials, and elevated access used in development pipelines
- Improve platform resilience through proactive monitoring, reliability engineering, and disaster recovery planning
- Partner with cybersecurity, infrastructure engineering, cloud platform teams, and enterprise architecture to align privileged and machine identity controls with enterprise security architecture
- Support integration of PAM and NHI capabilities with identity governance platforms, authentication services, and security monitoring solutions
Requirements:
- Bachelor's degree in computer science, Cybersecurity, or related field
- 15+ years of experience in Identity and Access Management
- 10+ years of proven experience implementing and managing enterprise Privileged Access Management platforms such as CyberArk
- Experience managing non-human identities including service accounts, application identities, and machine credentials
- Experience securing privileged access across enterprise infrastructure, cloud platforms, and application environments
- Experience operating identity security platforms in global enterprise environments
- Experience operating within a product operating model, including ownership of platform roadmaps and engineering delivery outcomes
- Ability to lead engineering teams while collaborating effectively with security, infrastructure, and application engineering stakeholders
- Strong communication skills with the ability to engage both technical teams and executive leadership
- Experience mentoring and developing technical teams
- CyberArk certifications (Defender, Sentry, Guardian)
- CISSP, CISM, CCSP, or equivalent cybersecurity certifications
- Microsoft security or identity certifications