Security Engineer Threat & Fraud Protection

Overview

Remote
Depends on Experience
Contract - W2

Skills

Threat
Fraud protection
CIAM
Mircosoft Entra
Threat Intelligence
Retail

Job Details

Security Engineer Threat & Fraud Protection (Online Retail and eCommerce) / Security Engineer CIAM (customer identity access management

REMOTE

Responsibilities:

  • Leverage Microsoft Entra identity and access management suite (IAM/CIAM), Dynamics 365 Dynamic Fraud Protection, Graph APIs and other 3rd party threat intelligence products to build solutions for preventing identity, account, payment, API, and Bot based threats and fraud.
  • Research, investigate, and disrupt fraud on customer s online, ecommerce, and omni-channel web applications.
  • Drive research into technical fraud problems, automation of manual processes, and tooling that improves team capabilities, and enables the threat protection program to scale.
  • Produce actionable threat intelligence to support investigations by product, security, or legal teams.
  • Build capabilities to collect and analyze intelligence to do detect behaviors, anomalies, and patterns. Enable proactive hunting and detection across online channels.
  • Identify, connect, and analyze new internal, external, or 3rd party data sources and adapt them for use by the team. Optimize data processing and analysis pipelines to work at scale.
  • Contribute to overall engineering efforts, including supporting design and development for capturing, storing, processing, analyzing, and disseminating threat intelligence for detection, automating, and action.

Requirements:

  • Bachelor s Degree in computer science, computer security, networking, information systems, computer engineering, systems engineering (or similar field) is preferred.
  • 8 10 years of total experience
  • Minimum 3+ years of experience with identity and access management (IAM) and customer identity access management (CIAM) technologies, preferably with Microsoft Entra & Entra External ID (formerly Azure AD, Azure AD B2C).
  • Deep understanding of identity and access management concepts and standards mutual TLS, OAuth, LDAP, JWT, and authorization models such ABAC, RBAC, Risk-based Access Control etc.
  • Deep understanding of Microsoft Graph, Graph APIs & Connectors, and data ingestion from APIs. Any experience with Dynamics 365 Dynamic Fraud Protection is highly desirable.

3+ years of advanced expertise in in at least three of the following areas:

  • Single Sign-on
  • Multi Factor Authentication
  • Domain & Directory Services
  • Identity Lifecycle Management
  • API Access Management
  • Device & App Access
  • Privileged Access
  • Access Gateway
  • Identity Governance
  • Customer Identity & Access

3+ years' advanced expertise in at least three of the following areas:

  • Threat Intelligence / Analytics
  • Behavioral Intelligence / Analytics
  • Fraud Detection / Fraud Protection / Fraud Defense
  • Account Protection / Account Takeover Prevention
  • Bot Detection / Bot Protection / Fraud Defense
  • API Protection
  • Payment / Checkout Protection
  • Device Fingerprinting
  • Anomaly Detection
  • Cyber-crime or financial crime investigations or intelligence
  • Active Threat Hunting
  • Proficiency using programming languages: PowerShell and Python required. Other languages are a plus (Go, Ruby, Shell/Bash scripting, Java, JavaScript/TypeScript, Rust, etc.).
  • Proficiency using SQL or any other query languages.
  • Ability to conduct technical research across several layers of the tech stack, platforms, and automating tools.
  • Any experience with Online Retail, eCommerce, Fintech, Online Banking, Digital Marketplaces, or Payments will be a huge plus.