L brands

Senior Security Engineer, Platform and IAM Support

L brands$100K — $130K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 6+ years of cybersecurity experience
  • Expertise in IAM technologies like PingIdentity and Azure AD
  • Strong understanding of authentication protocols (OAuth2, SAML)
  • Proficiency in infrastructure-as-code tools like Terraform
  • Experience with CI/CD systems and secrets management tools
  • Solid background in cloud infrastructure, especially Azure or GCP
  • Bachelor's degree in Information Technology or related field

Responsibilities

  • Design and implement IAM solutions including SSO, RBAC, and lifecycle management
  • Integrate IAM with cloud platforms and internal services
  • Enforce least privilege access and compliance in collaboration with security teams
  • Automate IAM provisioning using infrastructure-as-code and CI/CD pipelines
  • Contribute to securing container platforms and infrastructure as code
  • Participate in incident response and monitoring IAM-related events
  • Develop automation scripts to enhance identity workflows and platform security

Benefits

  • Health and wellness programs
  • Flexible working hours
  • Professional development opportunities
  • Access to cutting-edge technology and tools
  • Collaborative team environment
  • Diverse and inclusive workplace culture
Full Job Description
The Senior Identity and Access Management (IAM) and Platform Engineer plays a critical role in designing, implementing, and maintaining secure, scalable, and user-centric identity and access solutions across the organization's technology ecosystem. This role sits at the intersection of security, infrastructure, and developer experience, ensuring that access controls are robust while enabling engineering teams to move quickly and safely.

As a senior member of the engineering team, this role collaborates with the Leads on overall strategy and architecture of IAM and platform services, helping to define best practices, drive automation, and help with the integration of identity systems across cloud and on-prem environments. The role also supports broader platform engineering efforts by contributing to tooling, infrastructure-as-code, CI/CD pipelines, and service orchestration.

Your Impact

Identity and Access Management (IAM)

  • Design and implementation of identity and access management solutions, including federated identity, SSO, RBAC, and lifecycle management.
  • Collaborate on the integration of IAM with cloud platforms (e.g., AWS, Azure), SaaS applications, and internal services.
  • Partner with security, DevOps, and application teams to enforce least privilege access, auditability, and compliance.
  • Build and maintain platform tooling to manage secrets, certificates, authentication, and authorization flows.
  • Automate IAM provisioning and de-provisioning using infrastructure-as-code and CI/CD pipelines.
  • Participate in incident response and root cause analysis related to identity or platform infrastructure.


Platform Security Engineering

  • Collaborate with lead engineers on operational support of security tools (Email Security, SASE, EDR, SIEM, etc.)
  • Collaborate with lead engineers to integrate security best practices into CI/CD pipelines and cloud infrastructure (Azure, GCP).
  • Assist in securing container platforms (e.g., Kubernetes, Docker) and infrastructure as code (Terraform, CloudFormation, etc.).
  • Participate in threat modeling and security reviews of new infrastructure components.


Security Operations & Monitoring

  • Stay current with industry trends and threat landscapes related to identity security and platform resilience.
  • Collaborate with SOC and security analysts to investigate IAM-related incidents.
  • Develop scripts and automation (e.g., Python, PowerShell) to enhance identity workflows and platform security.
  • Monitor system logs, access events, and security alerts from IAM and cloud platforms.
  • Maintain documentation for IAM processes, security controls, and supported systems.


Click here for benefit details related to this position.
• 6+ years related cybersecurity experience
• Experience with SailPoint ISE, CyberArk, PingIdentity, Directory Services, EntraAD
• Understanding of networking applications and multiple platforms
• Demonstrated knowledge of security controls in relation to authentication, authorization, privilege access management, identity governance
• Customer Service orientation
• Understanding of security controls and how they are used to detect and respond
• Ability to communicate technical issues to non-technical audiences across functions
• Ability to assess/evaluate/prioritize risk
• Ability to lead small (sometimes cross functional) teams/projects/programs
• Demonstratable shell scripting abilities. Bash, python, Powershell, .Net, Java.

Required:
• Deep expertise in IAM technologies such as PingIdentity, Azure AD, GCP, or similar systems.
• Strong understanding of authentication protocols (OAuth2, OIDC, SAML) and access control models (RBAC, ABAC, PBAC).
• Proficiency in infrastructure-as-code (Terraform, Pulumi) and automation tooling.
• Experience with CI/CD systems (e.g., GitHub Actions, GitLab CI, Jenkins) and secrets management tools (e.g., CyberArk, HashiCorp Vault, Azure Secrets Manager).
• Solid background in cloud infrastructure (Azure, or GCP) and container orchestration (Kubernetes preferred).
• Familiarity with regulatory and compliance requirements (e.g., SOX, PCI) and how they relate to IAM.
• Experience prioritizing work and/or managing a queue

Education:
• Bachelor's degree in Information Technology/Information Security or equivalent experience

About L brands

Bath & Body Works, Inc. is an American specialty retailer based in Columbus, Ohio. It owns Bath & Body Works, posted $11.9 billion in revenue in 2021, and was listed as 248 on the 2020 Fortune 500 list of largest United States companies by revenue. In February 2020, L Brands announced the planned sale of its Victoria's Secret division to Sycamore Partners, a private equity firm. Under the agreement, Sycamore Partners would gain a 55% controlling stake in Victoria's Secret while L Brands would keep a 45% stake, leaving Bath & Body Works to become L Brand's sole business. The sale fell through in May 2020, although Wexner did step down as CEO as planned, replaced by Andrew Meslow. In March 2021, L Brands announced it would spin off Victoria’s Secret as a stand-alone publicly traded company, and then change its name to Bath & Body Works, Inc.
Learn more about L brands
Size
2,800 employees
Market Cap
$22.2 billion
Industry
Net Income
$845.3 million
Founded
1963
5 Year Trend
-0.5%
Revenue
$11.8 billion
NASDAQ

Similar Jobs

More Jobs at L brands

More Information Technology Jobs

Find similar Senior Security Engineer, Platform and IAM Support jobs: