IAM Security Engineer

DRW is a diversified trading firm with over 3 decades of experience bringing sophisticated technology and exceptional people together to operate in markets around the world.  We value autonomy and the ability to quickly pivot to capture opportunities, so we operate using our own capital and trading at our own risk. 

Headquartered in Chicago with offices throughout the U.S., Canada, Europe, and Asia, we trade a variety of asset classes including Fixed Income, ETFs, Equities, FX, Commodities and Energy across all major global markets. We have also leveraged our expertise and technology to expand into three non-traditional strategies: real estate, venture capital and cryptoassets. 

We operate with respect, curiosity and open minds. The people who thrive here share our belief that it’s not just what we do that matters–it's how we do it. DRW is a place of high expectations, integrity, innovation and a willingness to challenge consensus.  

What you’ll be doing: 

• Design, engineer, and maintain IAM security policies and solutions that align with company and security program objectives.
• Collaborate with security, technology, and trading teams to design and deploy effective Identity and Access Management (IAM) solutions.
• Develop and manage processes for entitlement reviews, running regular campaigns to ensure appropriate access levels and adherence to security policies across the organization.
• Implement and manage Privileged Access Management (PAM) solutions to ensure secure and controlled access to critical systems and data.
• Enhance our user behavior analytics and insider risk programs by deploying and managing tools that improve the detection and mitigation of insider threats and anomalous identity-related activities.
• Advance the implementation of cutting-edge authentication methods, including Passwordless Authentication, FIDO2, and Multi-Factor Authentication (MFA), to strengthen security and improve user experience.
• Ensure compliance with regulatory requirements (e.g., NYDFS, MAS, DORA) and alignment with our overall cybersecurity program by continuously refining IAM practices and policies.
• Serve as the primary point of contact for identity security incidents, providing real-time guidance and support.
• Leverage automation and innovative technologies to optimize identity security processes and improve efficiencies in detecting and responding to identity-related security events. 

What we’re looking for: 

• You are passionate about identity security and understand its critical role in a comprehensive cybersecurity program.
• You have hands-on experience designing, implementing, and managing both on-premises and cloud-based IAM solutions.
• You have experience with federated identity solutions.
• You have expertise in Privileged Access Management (PAM), Passwordless Authentication, JSON Web Tokens (JWT), and Multi-Factor Authentication (MFA) solutions.
• You possess in-depth knowledge of authentication and authorization standards such as SAML, OAuth, SCIM, Kerberos, and LDAP.
• You have experience with identity platforms such as Active Directory, EntraID, Okta, Duo, or Ping Identity.
• You are proficient in conducting entitlement reviews and managing identity governance processes to ensure comprehensive visibility and control over user access.
• You enjoy leveraging automation, AI, and emerging technologies to solve complex problems.
• You are proficient in one or more scripting languages.
• You are proactive and responsive in managing identity security incidents and continuously improving overall IAM practices.
• You are an effective communicator, capable of articulating complex IAM concepts and strategies to cross-functional teams and stakeholders. 

The annual base salary range for this position is $150,000 to $200,000, depending on the candidate’s experience, qualifications, and relevant skill set. The position is also eligible for an annual discretionary bonus.  In addition, DRW offers a comprehensive suite of employee benefits including group medical, pharmacy, dental and vision insurance, 401k (with discretionary employer match), short and long-term disability, life and AD&D insurance, health savings accounts, and flexible spending accounts.

For more information about DRW's processing activities and our use of job applicants' data, please view our Privacy Notice at https://drw.com/privacy-notice.

California residents, please review the California Privacy Notice for information about certain legal rights at https://drw.com/california-privacy-notice.

#LI-BL1