Identity Information Systems Security Engineer

Sun Life U.S. is one of the largest providers of employee and government benefits, helping approximately 50 million Americans access the care and coverage they need. Through employers, industry partners and government programs, Sun Life U.S. offers a portfolio of benefits and services, including dental, vision, disability, absence management, life, supplemental health, medical stop-loss insurance, and healthcare navigation. We have more than 6,400 employees and associates in our partner dental practices and operate nationwide.

Visit our website to discover how Sun Life is making life brighter for our customers, partners and communities.

Sun Life embraces a hybrid work model that balances in-office collaboration with the flexibility of virtual work.

The Identity Information Security Engineer will report to the AVP, Information Security and will be the individual responsible for security configurations and engineering for all information security systems, for on-premise and cloud-based security systems but most critically Identity and Access Management systems for workforce and customer identity. This role is for an expert who will provide solutions and figure out ways to make technology work.

Preferred skills

• Significant expertise and knowledge of configuration of Identity systems, including creation of password policies, configuration of Multifactor Authentication policies, both for workforce and customer identity
• Security certifications preferred (CISSP, OSCP, CISM, GIAC) or with a requirement of obtaining within 12 months upon hire
• Knowledge of scripting languages Python, Regex, PowerShell, SQL, JSON, and XML and at least some experience in an object-oriented programming language is desirable but not required
• Knowledge of automation platforms such as Terraform and Cloud Formation
• Proficient at working on a fully Agile team or willing to become an Agile expert with a focus on delivery and execution.
• An engineering leader requiring little supervision and guidance to reverse engineer and figure technology solutions out and take reasonable steps to troubleshoot and document due diligence
• Effective organization, prioritization, negotiation and influencing skills

Qualifications

• BS and the equivalent of 4+ years working in Information Security or equivalent 5 years of work experience, in a highly regulated environment, preferably in Healthcare or Fintech, in which there are demonstrated progressive levels of responsibility, experience, and leadership and hands-on experience with the implementation and configuration of security controls
• Extensive experience with Identity and Access Management, knowledge of SAML, OIDC, and other identity protocols, experience converting legacy authentication platforms to modern authentication tools
• Working knowledge of Firewalls, Switches, Routers, Network Sensors, Endpoint Controls, Server Controls, Web Application Firewalls, and Data Loss Prevention is required

Responsibilities

• Lead configuration, implementation of all information security systems, most notably authentication systems, cloud based and on-premise
• Implement authentication policies for customer and workforce identity initiatives
• Manage all information security systems and ensure proper patching levels of all such systems
• Act as backup or lead Scrum Master for Security Engineering team as assigned by Security team leadership
• Configure and engineer all Endpoint Security controls
• Configure and engineer all Network Security controls
• Configure and engineer all Server Security controls
• Configure and engineer all Database Security controls
• Configure and engineer all identities and permissions and single sign-on for contractors and employees
• Develops peers and staff by providing direction, support, and mentoring in areas of expertise

Salary Range: $88,500 - $132,800

At our company, we are committed to pay transparency and equity. The salary range for this role is competitive nationwide, and we strive to ensure that compensation is fair and equitable. Your actual base salary will be determined based on your unique skills, qualifications, experience, education, and geographic location. In addition to your base salary, this position is eligible for a discretionary annual incentive award based on your individual performance as well as the overall performance of the business. We are dedicated to creating a work environment where everyone is rewarded for their contributions.

Not ready to apply yet but want to stay in touch? Join our talent community to stay connected until the time is right for you!

We are committed to fostering an inclusive environment where all employees feel they belong, are supported and empowered to thrive. We are dedicated to building teams with varied experiences, backgrounds, perspectives and ideas that benefit our colleagues, clients, and the communities where we operate. We encourage applications from qualified individuals from all backgrounds.

Life is brighter when you work at Sun Life

At Sun Life, we prioritize your well-being with comprehensive benefits, including generous vacation and sick time, market-leading paid family, parental and adoption leave, medical coverage, company paid life and AD&D insurance, disability programs and a partially paid sabbatical program. Plan for your future with our 401(k) employer match, stock purchase options and an employer-funded retirement account. Enjoy a flexible, inclusive and collaborative work environment that supports career growth. We're proud to be recognized in our communities as a top employer. Proudly Great Place to Work Certified in Canada and the U.S., we've also been recognized as a "Top 10" employer by the Boston Globe's "Top Places to Work" for two years in a row. Visit our website to learn more about our benefits and recognition within our communities.

We will make reasonable accommodations to the known physical or mental limitations of otherwise-qualified individuals with disabilities or special disabled veterans, unless the accommodation would impose an undue hardship on the operation of our business. Please email thebrightside@sunlife.comto request an accommodation.

For applicants residing in California, please read our employee California Privacy Policy and Notice.

We do not require or administer lie detector tests as a condition of employment or continued employment.

Sun Life will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including applicable fair chance ordinances.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.