Job Overview:

As a Senior Security Administrator you will play a critical role in shaping and evolving our Workday security strategy in support of enterprise financial and human capital management. Working within a fast-moving, iterative delivery environment, this role enables the organization to leverage Workday more effectively – driving operational efficiency, supporting informed strategic decision-making, and protecting the confidentiality, integrity, and availability of corporate data.

Job Responsibilities:

• Participate in all phases of the software development lifecycle, including requirements gathering, solution design, implementation, testing, release, and hypercare.
• Provide expertise in security architecture, ensuring appropriate access controls, data privacy, regulatory compliance, and operational efficiency across HCM, Financial, and Payroll modules.
• Maintain a strong business perspective to ensure systems are implemented in ways that support operational goals and user needs.
• Ensure solutions meet high standards of quality, with successful delivery driven by thorough testing and validation practices.
• Collaborate across multiple projects simultaneously, effectively balancing priorities, timelines, and stakeholder expectations.
• Provide technical guidance and mentorship to other engineering team members, fostering growth and knowledge sharing.
• Continuously evaluate new Workday features and third-party technologies, proposing enhancements that improve system functionality and performance.

Job Requirements:

• 5+ years of Workday security administration experience.
• Mastery of creating, maintaining, and auditing security groups (user-based, role-based, constrained, unconstrained, intersection, segmented, etc.)
• Proficient in configuring ISUs/ISSGs and their domain and business process security policies, including knowledge of how to secure Workday web services.
• Strong working knowledge of managing authentication policy, authenticated login with SAML SSO, Multi-Factor Authentication, OAuth 2.0, IP restriction, certificates and keys.
• Enterprise experience in ensuring consistent, scalable, and least-privileged access aligned with organizational policies and compliance requirements.
• Practiced in provisioning Implementer tenant access, Service Center Representative configuration, migration access, and proxy access policy.
• Skilled in supporting bi-annual Workday platform releases, including adoption planning, retirement of functionality, and regression testing of existing functionality.
• Versed in promoting deployments through formal change management and release management procedures.
• Experienced in gathering requirements from users and proposing alternative designs.
• Comfortable working with business stakeholders to diagnostically research and solve business process and access issues.
• Ability to develop a detailed implementation plan to monitor and track progress, and capable of adapting to change in project scope and schedule.
• Attentive to creation of documentation to support knowledge transfer and utilization of implemented solutions.
• Adept at supporting internal controls audits through report generation, stakeholder evaluation, and evidence production.
• Excellent interpersonal and communication (written and verbal) skills.
• Bachelor's Degree in Information Technology, Information Security, or equivalent professional experience.

Preferred Skills and Abilities:

• Workday Business Process configuration experience.
• Workday implementation tools experience (EIB, Customer Central Management, etc.)
• Workday experience building, modifying, and securing custom reports, dashboards, and calculated fields.
• Workday Pro Certified.
• Master’s Degree or equivalent or equivalent professional experience.

To learn more about our organization and the exciting work we do, visit  

Our Remote First approach gives employees the flexibility and trust they need to effectively balance work with life. It creates a culture in which all employees are valued and where success is measured in results. It allows us to work collaboratively, inclusively and for greater positive impact, regardless of our individual locations.

If you will be working remotely, either occasionally or on a permanent basis, you must have a reliable internet connection through a cable or fiber-optic broadband service with minimum speeds of 10 Mbps download and 5 Mbps upload.

The successful candidate will be expected to actively participate in video-based interviews during the recruiting process and ongoing virtual meetings with their camera on, as part of their role. To maintain confidentiality and ensure a fair evaluation process, the use of note-taking tools, reference materials, or AI-powered tools (including generative AI, language models, or similar technologies) during interviews or other selection activities is prohibited unless prior written approval has been obtained from the People Experience team. If you require an exception for medical, accessibility, or other reasons, please contact your Talent Acquisition team member to discuss accommodations in advance.

As part of our Remote-First benefits, Cambium offers reimbursement to help cover the cost of setting up your home or remote office.