sr. Analyst - Digital Identity Engineer
The Estée Lauder Companies (ELC) Inc. is a Fortune 500, multinational manufacturer and marketer of
prestige skincare, makeup, fragrance and hair care products, headquartered in New York City. As the
global leader in prestige beauty, we touch over half a billion consumers a year. The company owns a
diverse portfolio of brands, distributed internationally through both digital commerce and retail
channels.
ELC prizes the confidentiality of its consumers and therefore places a premium on cybersecurity. As the
business world becomes increasingly digital and cyber threats grow in number and in sophistication, ELC
will continue to invest and develop a proactive people-centered, cybersecurity program. The Global
Enterprise Cybersecurity & Risk team spearheads these efforts.
The Digital Identity Engineer will join a team of Engineers, Product Owners, Enterprise & Security
Architects in IAM space for Estee Lauder Companies. This position will include hands-on engineering and
development of IAM solutions as well as integrate / support vendor products related to IAM. Operating
within DevOps and Agile frameworks as part of our Product Management Model, an ideal candidate will
have strong engineering skills as well as the ability to help manage a suite of products through
Continuous Improvement/Continuous Development strategies.
The Digital Identity Engineer will also serve as a technical and design advisor for new applications
integrated into ELC's Digital IAM landscape for Life Cycle Management (LCM), Identity Governance and
Single Sign
• On (SSO), as well as provide direct oversight of service providers to ensure the integrity of the implemented design.
This role necessarily deals with highly confidential and sensitive information, and the role is expected to adhere to best handling practices.
Responsibilities:
• Participate in new business initiatives and be responsible for deploying business focused IAM solutions adhering to ELC Policies & standards
• Support delivery of strategic IAM initiatives and solutions, including analysis, design, and implementation, to improve security posture
• Develop user journeys, document, implement, and manage an enterprise wide IAM framework, strategy, and roadmap that outlines and defines the tactical, operational, and strategic plans for IAM
• Responsible for working with the vendor partners, security & enterprise architecture, and business stakeholders to enable and integrate application.
• Provide IT sustenance, engineering & administration of IAM platform including development of various scripts, custom workflows for various identity JML process, connectors, UI web pages, Restful API & Web Services, Authentication, Authorization etc.
• Deploy and Install applications, develop and demonstrate high performance application software
• Perform security implementation, version upgrades, and rollouts, including user administration, role administration.
• Meet project budget, scope, schedule, and quality goals.
Make major contributions to assure deliverables meet objectives.
• Provide sustenance to mobile applications in IOS, Android & Chrome web Stores
• Maintain a high level of personal integrity, including the ability to professionally handle confidential matters by executing the appropriate level of judgment and maturity
• Handle competing priorities, seeking consensus when stakeholders have different/contradicting opinions
• Lead security discussion across multiple support organizations and review dashboards to ensure SLAs are met.
• Independently create written deliverables and participate in presentations.
• Mentor and provide guidance to other team members
Qualifications
• 3+ years of working experience of modern authentication and authorization paradigms such as
Digital identity & access management, Identity Federation, multi-factor authentication, single
sign-on, risk-based authentication, Identity governance and password management
• Excellent track record and proven ability to produce effective, innovative solutions on an
enterprise scale. Constantly evaluating the evolving IT industry to be on top of the latest
innovations in IT and performing fit-analysis of new technologies, sharing the same with key
stakeholders.
• Experience self-starting and independently completing complex security-related tasks, and
working within global teams.
• IAM domain knowledge with adequate experience integrating identity repositories such as
LDAP, Active Directory, Azure AD, Relational databases
• Expertise with B2B enterprise IAM and IGA use cases including Joiner, Mover, Leavers, Access
Review, Certification, Identity proofing, vetting etc.
• Strong experience working with B2B and B2C IAM Use Cases
• Expertise with security protocols such as SAML, OpenID, OAUTH, WS Fed/Trust, SCIM etc.
• Strong Expertise with few full stack developments with one or more technologies including Java/J2EE, JavaScript, Node JS, Vue JS, Shell scripts, groovy, python, power shell, SQL, or similar.
• Strong Experience with coding and possess strong analytical skills to debug code, build custom modules, create reports and customization of existing code deployed.
• Experience building and deploying applications in CI/CD framework with tools like Dockers, Kubernetes, GitHub, Jenkins, Spinnaker
• Experience building and deploying mobile apps in IOS, Android and chrome web stores
• Understanding of compliance requirements such as SOX, PCI, FDA, E-compliance, Records Management, Privacy
• Understanding of Web applications architecture, Web APIs (REST/JSON), web protocols, methods (i.e.
http/s, JavaScript, CSS, SSL, DNS, proxies/caches, firewalls, etc.)
• Strong oral and written communication skills, influence/negotiation skills, analytical skills, and conflict management experience.
Ability to problem-solve, think creatively, ability to work under pressure, meet strict deadlines, challenge the status quo, and manage ambiguity
• Ability to work during evenings or on weekends to support special tasks or projects.
Adaptability to work in a global culture that includes a 24/7 support model
• Potentially need to travel to support critical projects
• Experience with IT project management concepts and reporting.
Proficient (oral and written) in English as a business language
• Experience handling, securing, and communicating highly confidential and sensitive information.
The anticipated base salary range for this position is $83,500 to $125,500. Exact salary depends on several factors such as experience, skills, education, and budget. Salary range may vary based on geographic location. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results as well as participation in the share incentive plan.
In addition, The Estée Lauder Companies offers a variety of benefits to eligible employees, including health insurance coverage, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education-related programs, paid holidays and vacation time, and many others.
Many of these benefits are subsidized or fully paid for by the company.
Job: Information Technology
Primary Location: Americas-US-NY-Long Island City
Job Type: Standard
Schedule: Full-time
Shift: 1st (Day) Shift
Job Number: 240087
We are an equal opportunity employer. Minorities, women, veterans, and individuals with disabilities are encouraged to apply. It is Company's policy not to discriminate against any employee or applicant for employment on the basis of race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, marital status, military service and veteran status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, or any other characteristic protected by applicable federal, state, or local laws and ordinances.
The Company will endeavor to provide a reasonable accommodation consistent with the law to otherwise qualified employees and prospective employees with a disability and to employees and prospective employees with needs related to their religious observance or practices.
Should you wish to apply for this position or any other position with the Company and you believe you require assistance to complete an application or participate in an interview, please contact USApplicantAccommodations@Estee.com.
prestige skincare, makeup, fragrance and hair care products, headquartered in New York City. As the
global leader in prestige beauty, we touch over half a billion consumers a year. The company owns a
diverse portfolio of brands, distributed internationally through both digital commerce and retail
channels.
ELC prizes the confidentiality of its consumers and therefore places a premium on cybersecurity. As the
business world becomes increasingly digital and cyber threats grow in number and in sophistication, ELC
will continue to invest and develop a proactive people-centered, cybersecurity program. The Global
Enterprise Cybersecurity & Risk team spearheads these efforts.
The Digital Identity Engineer will join a team of Engineers, Product Owners, Enterprise & Security
Architects in IAM space for Estee Lauder Companies. This position will include hands-on engineering and
development of IAM solutions as well as integrate / support vendor products related to IAM. Operating
within DevOps and Agile frameworks as part of our Product Management Model, an ideal candidate will
have strong engineering skills as well as the ability to help manage a suite of products through
Continuous Improvement/Continuous Development strategies.
The Digital Identity Engineer will also serve as a technical and design advisor for new applications
integrated into ELC's Digital IAM landscape for Life Cycle Management (LCM), Identity Governance and
Single Sign
• On (SSO), as well as provide direct oversight of service providers to ensure the integrity of the implemented design.
This role necessarily deals with highly confidential and sensitive information, and the role is expected to adhere to best handling practices.
Responsibilities:
• Participate in new business initiatives and be responsible for deploying business focused IAM solutions adhering to ELC Policies & standards
• Support delivery of strategic IAM initiatives and solutions, including analysis, design, and implementation, to improve security posture
• Develop user journeys, document, implement, and manage an enterprise wide IAM framework, strategy, and roadmap that outlines and defines the tactical, operational, and strategic plans for IAM
• Responsible for working with the vendor partners, security & enterprise architecture, and business stakeholders to enable and integrate application.
• Provide IT sustenance, engineering & administration of IAM platform including development of various scripts, custom workflows for various identity JML process, connectors, UI web pages, Restful API & Web Services, Authentication, Authorization etc.
• Deploy and Install applications, develop and demonstrate high performance application software
• Perform security implementation, version upgrades, and rollouts, including user administration, role administration.
• Meet project budget, scope, schedule, and quality goals.
Make major contributions to assure deliverables meet objectives.
• Provide sustenance to mobile applications in IOS, Android & Chrome web Stores
• Maintain a high level of personal integrity, including the ability to professionally handle confidential matters by executing the appropriate level of judgment and maturity
• Handle competing priorities, seeking consensus when stakeholders have different/contradicting opinions
• Lead security discussion across multiple support organizations and review dashboards to ensure SLAs are met.
• Independently create written deliverables and participate in presentations.
• Mentor and provide guidance to other team members
Qualifications
• 3+ years of working experience of modern authentication and authorization paradigms such as
Digital identity & access management, Identity Federation, multi-factor authentication, single
sign-on, risk-based authentication, Identity governance and password management
• Excellent track record and proven ability to produce effective, innovative solutions on an
enterprise scale. Constantly evaluating the evolving IT industry to be on top of the latest
innovations in IT and performing fit-analysis of new technologies, sharing the same with key
stakeholders.
• Experience self-starting and independently completing complex security-related tasks, and
working within global teams.
• IAM domain knowledge with adequate experience integrating identity repositories such as
LDAP, Active Directory, Azure AD, Relational databases
• Expertise with B2B enterprise IAM and IGA use cases including Joiner, Mover, Leavers, Access
Review, Certification, Identity proofing, vetting etc.
• Strong experience working with B2B and B2C IAM Use Cases
• Expertise with security protocols such as SAML, OpenID, OAUTH, WS Fed/Trust, SCIM etc.
• Strong Expertise with few full stack developments with one or more technologies including Java/J2EE, JavaScript, Node JS, Vue JS, Shell scripts, groovy, python, power shell, SQL, or similar.
• Strong Experience with coding and possess strong analytical skills to debug code, build custom modules, create reports and customization of existing code deployed.
• Experience building and deploying applications in CI/CD framework with tools like Dockers, Kubernetes, GitHub, Jenkins, Spinnaker
• Experience building and deploying mobile apps in IOS, Android and chrome web stores
• Understanding of compliance requirements such as SOX, PCI, FDA, E-compliance, Records Management, Privacy
• Understanding of Web applications architecture, Web APIs (REST/JSON), web protocols, methods (i.e.
http/s, JavaScript, CSS, SSL, DNS, proxies/caches, firewalls, etc.)
• Strong oral and written communication skills, influence/negotiation skills, analytical skills, and conflict management experience.
Ability to problem-solve, think creatively, ability to work under pressure, meet strict deadlines, challenge the status quo, and manage ambiguity
• Ability to work during evenings or on weekends to support special tasks or projects.
Adaptability to work in a global culture that includes a 24/7 support model
• Potentially need to travel to support critical projects
• Experience with IT project management concepts and reporting.
Proficient (oral and written) in English as a business language
• Experience handling, securing, and communicating highly confidential and sensitive information.
The anticipated base salary range for this position is $83,500 to $125,500. Exact salary depends on several factors such as experience, skills, education, and budget. Salary range may vary based on geographic location. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results as well as participation in the share incentive plan.
In addition, The Estée Lauder Companies offers a variety of benefits to eligible employees, including health insurance coverage, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education-related programs, paid holidays and vacation time, and many others.
Many of these benefits are subsidized or fully paid for by the company.
Job: Information Technology
Primary Location: Americas-US-NY-Long Island City
Job Type: Standard
Schedule: Full-time
Shift: 1st (Day) Shift
Job Number: 240087
We are an equal opportunity employer. Minorities, women, veterans, and individuals with disabilities are encouraged to apply. It is Company's policy not to discriminate against any employee or applicant for employment on the basis of race, color, creed, religion, national origin, ancestry, citizenship status, age, sex or gender (including pregnancy, childbirth and related medical conditions), gender identity or gender expression (including transgender status), sexual orientation, marital status, military service and veteran status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, or any other characteristic protected by applicable federal, state, or local laws and ordinances.
The Company will endeavor to provide a reasonable accommodation consistent with the law to otherwise qualified employees and prospective employees with a disability and to employees and prospective employees with needs related to their religious observance or practices.
Should you wish to apply for this position or any other position with the Company and you believe you require assistance to complete an application or participate in an interview, please contact USApplicantAccommodations@Estee.com.
Don’t miss out on new job openings!
Create a job alert for: Security Architect, New York State
It's free, and you can cancel email updates at any time