We are Athene. At Athene, we are driven to do more. We are a leading retirement services company that issues, reinsures and acquires retirement savings products designed for the increasing number of individuals and institutions seeking to fund retirement needs. We see every day as a new opportunity to measure ourselves against the best - and then we don't stop until we've set the bar even higher. We're ready to help you achieve more.

　　Purpose:

　　As a Sr Cloud Identity Engineer Lead, you will work closely with Cloud Platform, Information Security, and Application Development teams to support Athene’s Cloud Identity and Access Management posture. In this role, you will influence application and cloud security by working with development teams to design, implement, and maintain least privileged identities and achieve low risk deployments through policy-as-code in the Software Development Process.

　　Accountabilities:

　　Responsible for the management of cloud identities, facilitate secure use of secrets, and the secure deployment of users, roles, and policies for cloud platforms and applications.

　　Review security relevant changes (pull requests, build/deploy steps) as part of the SDLC.

　　Develop security policies defined as code to implement preventative and detective guardrails.

　　Further relationships with developers and other partners to incorporate security principles into engineering design and deployments.

　　Provision, configure and maintain AWS and Azure cloud infrastructure defined as code.

　　Regularly audit and review users, roles, and policies to minimize identity risk.

　　Build metrics and reports that track the progress and efficiency of the Cloud Identity program.

　　Drive a culture of security in cloud engineering and application development.

　　Experience with Infrastructure as Code and CI/CD technologies such as CloudFormation, Terraform, GitHub Actions and Jenkins.

　　Qualifications and Experience:

　　Bachelor's degree or equivalent professional work experience.

　　7+ years of strong foundational knowledge of identity and access management methodologies, strategies, and design patterns, especially as they relate to cloud technology.

　　Strong foundational knowledge across Amazon Web Services and/or Microsoft Azure technology stack with special emphasis on AWS IAM, cloud secrets management, privileged access management, and AWS Config best practices, processes, and procedures.

　　Experience with Enterprise Identity tooling such as Okta, SailPoint and CyberArk

　　Experience with identity federation and common application authentication and authorization frameworks including SAML, OIDC and OAuth2.0

　　Proven proficiency developing in Python.

　　Drive. Discipline. Confidence. Focus. Commitment. Learn more about working at Athene (https://www.athene.com/about/usa-careers) .

　　Athene is a Military Friendly Employer! Learn more about how we support our Veterans (https://www.athene.com/our-veterans) .

　　Athene celebrates diversity, is committed to inclusion and is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, color, religion, sex, national origin, age, disability, marital status, sexual orientation, veteran status or any other status protected by federal, state or local law.

　　We are driven to do more. More for our customers and the financial professionals who offer our products. If you are driven to do more and love the challenge of pursuing more, Athene is your kind of company. You will find we offer more than the basics to create a diverse, inclusive and dynamic work environment at our various locations.