Senior Security Engineer

TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses. Our full-service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers' compensation insurance. 

TriNet has a nationwide presence and an experienced executive team. Our stock is publicly traded on the NYSE under the ticker symbol TNET. If you're passionate about innovation and making an impact on the large SMB market, come join us as we power our clients' business success with extraordinary HR.

Don't meet every single requirement? Studies have shown that many potential applicants discourage themselves from applying to jobs unless they meet every single requirement. TriNet always strives to hire the most qualified candidate for a particular role, ensuring we deliver outstanding results for our small and medium-size customers. So if you're excited about this role but your past experience doesn't align perfectly with every single qualification in the job description, nobody's perfect – and we encourage you to apply. You may just be the right candidate for this or other roles. 

Job Description

As a Senior Cybersecurity Engineer, you will be instrumental in collaborating with business, technology, and security stakeholders to implement, enhance, and manage security practices, capabilities, and technical solutions across the enterprise. This position will oversee the design, implementation, and optimization of Identity and Access Management (IAM) solutions and processes enterprise wide. The IAM domain encompasses authentication, authorization, privileged access management, and identity governance and administration.

Essential Duties/Responsibilities

• Work closely with IAM architect and other key stakeholders in the evaluation and selection of new IAM tools based on latest industry trends and emerging threats.
• Implement and manage IAM solutions and systems.
• Integrate IAM solutions with existing systems and applications to ensure seamless access control and authentication processes across the enterprise.
• Tailor and optimize IAM tools and processes to meet the needs and challenges of the organization's infrastructure and security landscape
• Design and support federation and SSO integration with internal and third-party applications (e.g. SAML, OIDC).
• Manage and enhance privileged access management (PAM) processes and tooling. 
• Oversee the lifecycle of IAM tools, including deployment, maintenance, and upgrades, to ensure optimal performance.
• Collaborate with cross-functional teams and provide security guidance and support, including but not limited to establishing role-based access control.
• Perform health check monitoring on various IAM tools and components to ensure consistent quality of service and availability to end users and meet SLAs.
• Create and maintain security configuration documents, and standard operating procedures.
• Provide support for end user IAM issues including troubleshooting and performing root cause analysis.
• Stay current on IAM tools capabilities and features and maintain awareness of emerging threats related to IAM and propose changes to mitigate them.

JOB REQUIRMENTS AND QUALIFICATIONS

Education

• Bachelor's degree in computer science, cybersecurity, or related field

Training Requirements (Licenses, Programs, Or Certificates)

• Possess current certifications related to IAM domain.

Experience

• Minimum of 5 years of work experience in an IAM engineering role.
• Experience with IAM related concepts and standards such as Privileged Access Management, Single Sign-on, Multifactor Authentication, Identity Threat Detection and Response (ITDR), 
• Experience with several of the following products: Microsoft Entra ID, CyberArk, BeyondTrust, Microsoft Defender for Identity (formerly Azure ATP).
• Experience using a change management solution, ServiceNow preferred.
• Experience in security beyond the IAM domain strongly preferred.

Other Knowledge, Skills, and Abilities

• Strong understanding of IAM domain, including Privileged Access Management (PAM) and Identity Governance and Administration (IGA), Role-Based Access Control (RBAC), Single Sign-On (SSO)
• Familiarity with security compliance frameworks and regulations, such as SOX, SOC 2, GDPR, HIPAA
• Strong understanding of cybersecurity principles and best practices
• Familiar with Information Technology Infrastructure Library (ITIL) framework
• Excellent problem solving and analytical skills.
• Ability to communicate with employees at all levels of the organization.
• Ability to work with multi-disciplinary and cross-functional teams.
• Ability to communicate technical concepts to nontechnical teams.
• Ability to employ professional skepticism.
• Excellent interpersonal, presentation, negotiation, communication, and facilitation skills
• A demonstrated commitment to high professional ethical standards and a diverse workplace

Work Environment

• Work in a clean, pleasant, and comfortable office work setting. The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable persons with disabilities to perform the essential functions.
• This position is 100% in office.

Please Note: TriNet reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing. Position functions and qualifications may vary depending on business necessity.

TriNet is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics. Any applicant with a mental or physical disability who requires an accommodation during the application process should contact to request such an accommodation.