Senior Security Engineer, Platform and IAM Support

The Senior Identity and Access Management (IAM) and Platform Engineer plays a critical role in designing, implementing, and maintaining secure, scalable, and user-centric identity and access solutions across the organization's technology ecosystem. This role sits at the intersection of security, infrastructure, and developer experience, ensuring that access controls are robust while enabling engineering teams to move quickly and safely.

As a senior member of the engineering team, this role collaborates with the Leads on overall strategy and architecture of IAM and platform services, helping to define best practices, drive automation, and help with the integration of identity systems across cloud and on-prem environments. The role also supports broader platform engineering efforts by contributing to tooling, infrastructure-as-code, CI/CD pipelines, and service orchestration.

Your Impact

Identity and Access Management (IAM)

• Design and implementation of identity and access management solutions, including federated identity, SSO, RBAC, and lifecycle management.
• Collaborate on the integration of IAM with cloud platforms (e.g., AWS, Azure), SaaS applications, and internal services.
• Partner with security, DevOps, and application teams to enforce least privilege access, auditability, and compliance.
• Build and maintain platform tooling to manage secrets, certificates, authentication, and authorization flows.
• Automate IAM provisioning and de-provisioning using infrastructure-as-code and CI/CD pipelines.
• Participate in incident response and root cause analysis related to identity or platform infrastructure.

Platform Security Engineering

• Collaborate with lead engineers on operational support of security tools (Email Security, SASE, EDR, SIEM, etc.)
• Collaborate with lead engineers to integrate security best practices into CI/CD pipelines and cloud infrastructure (Azure, GCP).
• Assist in securing container platforms (e.g., Kubernetes, Docker) and infrastructure as code (Terraform, CloudFormation, etc.).
• Participate in threat modeling and security reviews of new infrastructure components.

Security Operations & Monitoring

• Stay current with industry trends and threat landscapes related to identity security and platform resilience.
• Collaborate with SOC and security analysts to investigate IAM-related incidents.
• Develop scripts and automation (e.g., Python, PowerShell) to enhance identity workflows and platform security.
• Monitor system logs, access events, and security alerts from IAM and cloud platforms.
• Maintain documentation for IAM processes, security controls, and supported systems.

Do you have experience in Tooling?, Do you have a Bachelor's degree?, * 6+ years related cybersecurity experience

• Experience with SailPoint ISE, CyberArk, PingIdentity, Directory Services, EntraAD
• Understanding of networking applications and multiple platforms
• Demonstrated knowledge of security controls in relation to authentication, authorization, privilege access management, identity governance
• Customer Service orientation
• Understanding of security controls and how they are used to detect and respond
• Ability to communicate technical issues to non-technical audiences across functions
• Ability to assess/evaluate/prioritize risk
• Ability to lead small (sometimes cross functional) teams/projects/programs
• Demonstratable shell scripting abilities. Bash, python, Powershell, .Net, Java.

Required:

• Deep expertise in IAM technologies such as PingIdentity, Azure AD, GCP, or similar systems.
• Strong understanding of authentication protocols (OAuth2, OIDC, SAML) and access control models (RBAC, ABAC, PBAC).
• Proficiency in infrastructure-as-code (Terraform, Pulumi) and automation tooling.
• Experience with CI/CD systems (e.g., GitHub Actions, GitLab CI, Jenkins) and secrets management tools (e.g., CyberArk, HashiCorp Vault, Azure Secrets Manager).
• Solid background in cloud infrastructure (Azure, or GCP) and container orchestration (Kubernetes preferred).
• Familiarity with regulatory and compliance requirements (e.g., SOX, PCI) and how they relate to IAM.
• Experience prioritizing work and/or managing a queue

Education:

• Bachelor's degree in Information Technology/Information Security or equivalent experience

We will consider for employment all qualified applicants, including those with arrest records, conviction records, or other criminal histories, in a manner consistent with the requirements of any applicable state and local laws. Please see links: California Fair Chance Act, Los Angeles Fair Chance Initiative for Hiring Ordinance, Philadelphia Fair Chance Law, San Francisco Fair Chance Ordinance, Los Angeles County Fair Chance Ordinance

3.63.6 out of 5 stars Reynoldsburg, OH $99,400 - $134,715 a year - Full-time, Minimum Salary: $99,400.00 Maximum Salary: $134,715.00

VS&Co provides a range of compensation for this role as shown. Your actual salary will be determined by a number of factors, including: your specific skills and experience, geographic region, or other relevant factors.

At Victoria's Secret & Co, you'll join a world-leading specialty retail brand recognized globally for innovation and excellence in lingerie and fashion. You'll work alongside industry leaders to set the standard for what a retail brand can achieve, placing customers at the center of everything we do to create products and experiences that bring them joy. We believe everyone deserves a place where they truly belong. We celebrate individuality and know that your passion, experience, and unique perspective strengthen our team and business. Here, you'll be empowered to perform, grow, and engage through unmatched opportunities to develop your skills, gain real-world experience, and learn from the best in the business.