CIAM Threat Engineer

About The Position

Requirements

• 3+ years of hands‑on experience in Cybersecurity, Fraud Prevention, or Threat Investigations
• 2+ years supporting complex environments and working with senior leaders
• Strong experience supporting Customer IAM (CIAM) security with understanding of industry best practices
• Hands‑on experience with: ThreatMetrix, Arkose Labs, Prove Identity, Transmit Security or similar orchestration platforms
• Experience operating modern threat and risk engines (e.g., ThreatMetrix, BioCatch)
• Strong service and delivery mindset with focus on customer experience
• Experience managing complex risk issues in large technology environments
• Understanding of regulatory requirements impacting financial services (GLBA, SOX, PCI)
• Familiarity with ITIL / IT Service Management frameworks
• Strong verbal and written communication skills
• Ability to manage multiple complex initiatives requiring rapid delivery
• BA/BS in Information Systems, Computer Science, or a related field or equivalent practical experience

Nice To Haves

• Experience working in an Agile delivery environment preferred
• Knowledge of ISO, NIST, and FFIEC guidance preferred

Responsibilities

• Assess existing customer application‑based threat and fraud controls, identify gaps, and deliver solutions to mitigate risk across: Login and enrollment, Credit card activation, Profile changes, Payments and high‑risk transactions
• Design and tune ThreatMetrix (TMX) policies supporting adaptive, risk‑based decisioning.
• Drive fraud policy configuration that enables orchestration, device trust, and multi‑factor authentication.
• Engineer and operate Arkose Labs bot‑defense and challenge strategies across web and mobile platforms.
• Partner with Fraud and Cybersecurity teams to evaluate automated attack patterns and reduce scripted abuse while minimizing customer friction.
• Use data and metrics to continuously improve challenge strategies and outcomes.
• Support and enhance identity verification and step‑up authentication using Prove Identity and Transmit Security.
• Contribute to Always‑On MFA, OTP, biometric, and orchestration-based authentication strategies.
• Ensure consistent identity and authentication behavior across digital, mobile, and contact center experiences.
• Collect, analyze, and interpret data from multiple sources (e.g., Splunk, event telemetry, vendor dashboards) to: Identify fraud trends, Validate profiling accuracy, Improve threat detection and response
• Work with partners to define threat monitoring and reporting requirements and identify enhancement opportunities.
• Assist in evaluating and implementing tools that support standard design patterns and best practices across the Digital Identity Services (DIS) platform.
• Assess emerging Digital Identity and fraud technologies to determine where they fill gaps, overlap with existing solutions, or extend capabilities.
• Support roadmap execution across CIAM initiatives and new integrations.
• Provide Level 4 support for day‑to‑day operations of the Digital Identity Services platform.
• Participate in complex customer and application escalations involving authentication, fraud, or identity issues.
• Ensure high availability and operational stability without compromising a strong risk posture.
• Provide identity and security services that enable the business while maintaining strong compliance with: NIST 800 series, FFIEC authentication guidance, GLBA, SOX, PCI
• Support audit, risk reviews, and control assessments in partnership with First Line Risk and Compliance.