Senior Lead Information Security Engineer (Identity and Access Management)

S&P Global Corporate

About the Role: Senior Lead Information Security Engineer (Identity and Access Management)

The Team: Our Identity Security Engineering team is at the forefront of protecting S&P Global's digital infrastructure through innovative identity verification and access management solutions. We operate in a collaborative, fast-paced environment where technical excellence meets strategic security thinking, working closely with cross-functional teams to implement cutting-edge authentication technologies. The team values continuous learning, proactive problem-solving, and building scalable security solutions that protect our global workforce and contractor ecosystem.

Responsibilities and Impact:

• Architect and maintain comprehensive identity verification workflows for workforce and third-party integrations across enterprise systems
• Design and implement secure identity verification solutions for high-assurance use cases including MFA resets, password recovery, and contractor lifecycle management
• Integrate identity verification APIs and biometric technologies with enterprise identity platforms such as Entra ID, Ping, Okta, and IGA/IAM systems
• Automate manual verification processes through workflow engines, API integrations, and event-driven pipelines to improve operational efficiency
• Develop monitoring, alerting, and dashboard solutions to track verification failures, fraud attempts, and maintain SLA compliance
• Lead the implementation of passwordless authentication strategies and secure credential enrollment/revocation flows at enterprise scale

What Were Looking For:

Basic Required Qualifications:

• Bachelor's degree in Computer Science, Information Security, Engineering, or equivalent technical experience
• 10+ years of experience in identity and access management with strong understanding of identity protocols such as SAML, OAuth 2.0, OIDC, WebAuthn/FIDO2, and SCIM provisioning
• Proven experience integrating identity verification APIs and SDKs with enterprise systems including IDP/SSO platforms such as Entra ID, Ping, or Okta
• Hands-on experience with identity lifecycle automation (JML) and workflow orchestration tools such as SailPoint, ServiceNow, or similar platforms
• Strong analytical and problem-solving skills with ability to interpret security logs and integrate with SIEM/SOAR frameworks
• Excellent communication skills and ability to collaborate effectively with cross-functional teams in a fast-paced environment

Additional Preferred Qualifications:

• Experience with identity proofing vendors and implementing passwordless authentication strategies at enterprise scale
• Knowledge of SaaS security platforms, threat detection systems, and experience protecting contractor ecosystems at volume
• Familiarity with cryptographic technologies including signing, hashing, key rotation, and certificate management workflows
• Experience with risk engines, adaptive authentication models, and fraud detection mechanisms