Identity Security Engineer

Ford Motor Company is seeking an Identity Security Engineer to contribute to the engineering, development, and support of identity and access management solutions for the customer identity platform. The role involves collaborating with various teams to enhance the CIAM platform's security and user experience, while also ensuring operational excellence through continuous improvement and technical development.

Responsibilities:

• Collaborate with the Technical Anchor to design, engineer, develop, deploy, and support new Azure AD B2C and EEID software and platform features that adhere to Ford security, architecture, and IAM standards
• Support delivery of tactical and strategic IAM solutions, including analysis, design, and implementation to improve security posture
• Contribute to the development and implementation of IAM strategies and roadmap
• Develop and maintain metric dashboards and monitoring/alerting systems
• Provide day-to-day operations of requests, incidents, and problems
• Create and maintain technical documentation for team and integrating applications (e.g., architecture diagrams, API documentation, coding standards, operational processes, procedures, configurations, application onboarding tips, etc.)
• Use modern software development Agile methodologies to deliver high-quality software on time and on budget
• Use modern software delivery pipelines to automate the deployment and testing of software and platform features
• Maintain and update Ford custom policies using the Identity Experience Framework
• Maintain and update UI (visual presentation of user journeys) in accordance with the Ford UI Design Team provided specifications
• Write clean, efficient, and maintainable code in C#, .NET Core, or other relevant languages that can integrate with Azure Graph APIs

Requirements:

• Bachelor's Degree or a Combination of Education/Employment
• 3 to 5 years of experience with demonstrated understanding and the application/implementation of IAM principles, multi-factor authentication, and conditional access
• 3 to 5 years of experience working collaboratively to identify and solve problems with a globally dispersed and diverse team
• 3 to 5 years of experience designing, engineering, developing, deploying, and supporting features for a large, complex enterprise organization
• 3 to 5 years of demonstrated strong problem-solving skills
• 3 to 5 years of demonstrated ability to explain complex technical concepts to a variety of audiences (e.g., team members, business partners, senior management)
• 3 to 5 years of demonstrated strong verbal, interpersonal, and written skills with the ability to work directly with business owners and application teams for gathering information and troubleshooting
• 3 to 5 years of demonstrated ability to work under pressure, meet strict deadlines, challenge the status quo, and manage ambiguity
• 1 to 2 years of experience with dedication to delivering a secure, always-on customer identity platform
• 1 to 2 years of demonstrated understanding of Azure AD B2C or EEID
• 1 to 2 years of understanding of Application Insights, Log Analytics, Azure App Services, Azure API Management
• 1 to 2 years of demonstrated experience with Dev Enablement Tools (e.g., Jira, GitHub, Postman, etc.)
• 1 to 2 years of demonstrated experience with PowerShell
• Ability to support 24/7 coverage (rotational on-call support)
• 3-5 years of experience managing Azure AD B2C
• 2-5 years of experience with PowerShell, C#, .NET Core, or other relevant languages
• Experience designing, engineering, developing, deploying, and supporting features for a large, complex enterprise organization
• Understanding of Site Reliability Engineering (SRE) principles
• Industry recognized certifications a plus (e.g., AZ-900: Azure Fundamentals, Certified Information Systems Security Professional (CISSP))