Brown-Forman Jobs


Job Information

Brown-Forman Lead IT Security Engineer - Identity and Access Management (Remote or Hybrid Work Opportunity) in Atlanta, Georgia

We are open to candidates based in Louisville, KY, or within 4 hours driving distance. Remote or hybrid office/home options available.

Meaningful Work From Day One:

The Lead IT Security Engineer will become an integral part of Brown-Forman’s Identity & Access Management (IAM) team guiding the implementation and administration of information security policies, practices, procedures, and technologies to ensure the protection of systems, applications, users, and data. Key responsibilities will be the lifecycle management of all Brown-Forman identities and affiliated user accounts, authentication to systems/applications via single sign-on and multifactor authentication, provisioning/deprovisioning of access (i.e., roles, groups, permissions), as well as privileged access management (PAM). The key security systems you will be interacting with are Active Directory, Google, Okta, Saviynt Cloud PAM, Saviynt Identity Governance and Access (IGA), SAP, Workday, including multiple Brown-Forman business applications. This position will partner with both business and IT personnel to deliver security solutions consistent with the IAM strategy.

What You Can Expect:

Identity & Access Management (IAM) Design and Administration – 70%

  • Advanced understanding of information security principles, identity & access management, privileged access management, application security, & role-based access

  • Responsible and accountable for the design of security automation to address the organization’s user lifecycle management processes (e.g., new hires, position changes, and terminations) as well as access provisioning/deprovisioning

  • Experienced in role-based methodologies to automate and expedite user access

  • Advanced knowledgeable in privileged access management processes and automation

  • Develop and lead the identity governance & administration (IGA), privileged access management (PAM), and user authentication (SSO & MFA) programs based upon defined strategies and roadmaps

  • Plan, build and run the identity governance & administration (IGA), privileged access management (PAM) tools and processes as well as other IAM tools

  • Master the flow of data through organizations security integrations and be able to identify, diagnose and correct issues/design flaws

  • Lead and execute IAM system enhancements and upgrades

  • Setup & support of single sign-on (SSO) & multifactor authentication (MFA)

  • Design and develop IAM solutions that meet both security and business requirements

  • Partnership with cross-functional teams to influence a security

  • Ensure security policies, standards, & methodologies are consistently applied

  • Develop attestation and certification programs to validate the functionality of IAM processes and ensure compliance

  • Prepare reports and presentations to management specific to identity metrics & analytics

Projects & Process Improvement – 25%

  • Manage and lead both technical and business security projects using formal project management techniques including business justification and funding requirements

  • Identify risks associated with business processes, operations, information security programs and technology projects. Provide suggestions and options for remediation of the identified risks

  • Participate in the overall ranking and prioritization of organizational security risks

  • Identify and communicate current and emerging security threats including reasonable estimates for the remediation of emerging security threats

  • Ensure projects are fully delivered on-time and within budget

  • Responsible for identifying and justifying security related process improvements

  • Lead, communicate & collaborate with cross functional teams on security related processes, systems, and methodologies

  • Improve and streamline existing security processes (e.g., automation of manual tasks, employee/manager self-service, optimization of workflows)

  • Develop security documentation – including presentations, flowcharts, procedures, etc.

Security Awareness and Production Support – 5%

  • Promote security awareness throughout all levels of organizations

  • Ensure the delivery of excellent customer service as it relates to security issues, questions, or concerns

  • Perform 3rd+ level support, by investigating & resolving escalated production support issues

  • Provide guidance, direction, and mentoring to 2nd level support as it relates to user and access management issues

  • Provide periodic on-call security support

We Are Looking For People Who:

  • Bachelor’s or Master's degree in Computer Science or a related area of study. Work experience accepted in lieu of education

  • Minimum of 12 years in an IT role including a minimum of 5 years specific to IAM functions (e.g. IGA, PAM, role based access, user & access provisioning deprovisioning)

  • Experience with Saviynt or Okta (or related IAM vendors)

  • Technical IAM expertise with regards to API interfaces (SOAP/REST), data interchanges (JSON/XML) and programming languages (SQL/Powershell/VBS)

  • Advanced application of governance & risk management security practices

  • Ability to work in a self-managed environment with a high degree of initiative and inquisitiveness

  • Tasks, assignments, and projects require little to no instructions as work can be self-managed via organization, prioritization, and project management experience

  • Experienced in the application of a governance and risk-based security approach

  • Ability to plan, coordinate, and execute multiple assignments to meet deadlines

  • Excellent interpersonal skills with the ability to maintain effective working relationships with all levels of management and the ability to excel in a team environment with internal and external contacts including vendor management

  • Excellent written and verbal communication skills

  • Ability to analyze security activities, identify process strengths and weaknesses, and develop creative solutions to improve efficiency and effectiveness. Includes the ability to understand and describe process flows

  • Ability to adhere to a strict code of ethics in handling confidential information

What Sets You Apart:

  • Master of Business Administration (MBA) or Master in an IT related field

  • Security Certifications (CompTIA Security+, CISA, CISM, CISSP, CRISC)

  • Experience with Active Directory or SAP security administration

  • Advanced knowledge of IT security frameworks like NIST, ISO/IEC 27001 & 27002

  • Advanced knowledge of IT security regulations like GDPR, FISMA, PCI, SOX

  • Experience in the beverage alcohol or consumer products industry

Nothing Better in the Market:

Total Rewards at Brown-Forman is designed to engage our people to ensure sustainable and profitable growth for generations to come. As a premium spirits company, we offer premium and equitable pay. We offer a range of premium benefits that reflect our company values and meet the needs of our diverse workforce​. We are dedicated to creating a responsible drinking culture, providing a safe, inclusive, and engaging workplace, protecting the environment, and making a positive contribution to our communities.

Locations considered for this opening:

  • B-F Headquarters office in Louisville, KY

  • B-F Regional office in Atlanta, GA or Dallas, TX or Irvine, CA

  • Locations across the US for a remote work from home set-up, preferably within 4 driving hours from Louisville, KY

This position is posted with multiple locations, you only need to apply to one of the postings to be considered for all locations and/or the remote work option.

B-F can employ a remote worker in the majority of the states in the US, however if you are located in one of the following states, relocation would be required. VT, RI ,CT ,NJ ,DE ,WI ,MN, ND, SD, NE, KS, OK, LA, MS, NM, AZ, UT, OR, AK, HI

Brown-Forman Corporation is committed to equality of opportunity in all aspects of employment. It is the policy of Brown-Forman Corporation to provide full and equal employment opportunities to all employees and potential employees without regard to race, color, religion, national or ethnic origin, veteran status, age, gender, gender identity or expression, sexual orientation, genetic information, physical or mental disability or any other legally protected status.

Business Area: Global Information Technology

City: Louisville

State: Kentucky

Country: USA

Req ID: JR-00003835