Engineer II, Cybersecurity

CarMax, Inc.

$80K — $110K *
Richmond, VA 23238In-Person
Information Technology
Less than 5 years of experience
1 month ago
Job Overview by Ladders

Qualifications

  • 1-5 years experience in information security or related field.
  • Bachelor's in Computer Science, Cybersecurity, or related discipline.
  • Proficiency in a coding or scripting language such as Java, PowerShell, Python, or TypeScript.
  • Strong knowledge of IAM concepts including access governance and SSO.
  • Familiarity with industry protocol standards like LDAP, SAML, and OAuth.
  • Excellent analytical and troubleshooting skills, especially under pressure.
  • Strong communication skills for diverse audience engagement.

Responsibilities

  • Stay updated with current technology and industry trends.
  • Implement and improve Identity Management solutions.
  • Provide expertise for projects requiring IAM services.
  • Evaluate IAM policies for authorization and authentication.
  • Review and govern IAM platforms and processes.
  • Develop security processes based on business and IT input.
  • Lead projects to completion with effective management.
  • Participate in a 24x7 on-call rotation and provide after-hours support as needed.

Benefits

  • Hybrid work arrangement: in-office Monday to Thursday.
  • Opportunities for hands-on operation and leadership in IAM.
  • Exposure to a broad range of security capabilities beyond IAM.
  • Supportive work environment catering to skill development.
Full Job Description
8901 - Corp Office West Crk - 12800 Tuckahoe Creek Parkway, Richmond, Virginia, 23238

This position will be the subject matter expert on all platforms that fall into category of CarMax's® assets to ensure the protection, integrity and confidentiality of customer, vendor, employee, and business information in compliance with organization policies and standards utilizing current information security technology disciplines and industry standards. This is a unique opportunity at a Fortune 200 company and national brand to expand and develop skills beyond current IAM focus to a broader skill and toolset in the security program. This opportunity provides the ability to both lead implementation and improvements while also providing the opportunity for hands-on operation across the full suite of Identity security capabilities. The Cybersecurity Identity and Access Management (IAM) Engineer performs all activities necessary to ensure we provide the right people and systems, the right access to the right systems for the right reasons. This role interfaces with application, infrastructure, and network operations teams and develops the necessary procedures to maintain security and educates the user community. The Cybersecurity Engineer also provides metrics, status reports, and audit results for key stakeholders while driving improvements and program maturity.

Essential Responsibilities:
  • Desire to keep up with current technology and client industry
  • Implement, develop, operate, and improve Identity Management solutions
  • Provide functional and technical expertise on projects that require IAM services
  • Evaluate authorization and authentication policies
  • Perform evaluation and governance of IAM platforms and processes
  • Gather information from the business and IT department to develop security-related processes and procedures to continuously improve the security posture of CarMax
  • Assist in driving tasks and projects to successful completion through effective project management, customer interaction, and IT coordination
  • Effectively triage support problems and respond with the appropriate level of urgency
  • Participate in a 24x7 on-call rotation as scheduled, and the ability to perform after hours support as needed


Qualifications

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Technical Qualifications:
  • Functional proficiency with at least one coding or scripting language: Java, PowerShell, Python, TypeScript
  • User administration, authentication methods, groups, and domain concepts
  • Industry protocol standards such as: LDAP, SAML, WS-Federation, OAuth, SCIM
  • Experience with user provisioning, Access Management, Access Governance/Access Recertification (IGA), Single Sign-On (SSO), Multi-Factor Authentication (MFA), Privilege Access Management (PAM)
  • Excellent analytical, troubleshooting, and problem-solving skills and performs well in high pressure or stressful situations
  • Excellent organization and time management skills
  • Excellent communication skills to include, but not limited to, verbal and written communication; delivering organized presentations; able to tailor message to the audience; and facilitate group discussions with diplomacy and seek diverse opinions
  • Ability to effectively estimate the efforts of others and the impact required to accomplish requested tasks/projects
  • Windows server and Red Hat Enterprise Linux Operating Systems
  • Cloud technology (SaaS, IaaS, PaaS)


Education and/or Experience:
  • 1-5 years of experience in information security or related field.
  • Bachelor's Degree in Computer Science, Engineering, Cybersecurity, or a related field or equivalent alternative education, skills, and/or practical experience is required.
  • Certifications: CISSP, CISA, or Security+ preferred


Work Location and Arrangement: This role will be based out of the Richmond, VA Home Office and have a Hybrid work arrangement (in office Mon-Thurs).

Work Authorization: Applicants must be currently authorized to work in the United States on a full-time basis.
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at CarMax, Inc.

More Information Technology Jobs

Find similar Engineer II, Cybersecurity jobs:

NationwideRichmond, VA