Risk Engineer

Role SummaryThe CIAM Threat Engineer is responsible for designing, engineering, and delivering customer identity, fraud prevention, and threat detection capabilities that protect both consumer and commercial customers across digital, mobile, and enterprise channels.This role will establish and drive standardized design and deployment patterns for identity security and fraud controls, partnering closely with Fraud, Risk, Cybersecurity, and Platform Engineering teams. The role also includes senior‑level operational support, policy governance, and participation in complex escalations related to identity and authentication services.As the CIAM footprint continues to expand across ThreatMetrix, Arkose Labs, Prove Identity, and Transmit Security, this role will be instrumental in scaling controls, reducing fraud risk, improving customer experience, and supporting regulatory expectations.Key ResponsibilitiesThreat Engineering & Fraud PreventionAssess existing customer application‑based threat and fraud controls, identify gaps, and deliver solutions to mitigate risk across: Login and enrollmentCredit card activationProfile changesPayments and high‑risk transactionsDesign and tune ThreatMetrix (TMX) policies supporting adaptive, risk‑based decisioning.Drive fraud policy configuration that enables orchestration, device trust, and multi‑factor authentication.Bot Defense & Abuse MitigationEngineer and operate Arkose Labs bot‑defense and challenge strategies across web and mobile platforms.Partner with Fraud and Cybersecurity teams to evaluate automated attack patterns and reduce scripted abuse while minimizing customer friction.Use data and metrics to continuously improve challenge strategies and outcomes.Identity Proofing & AuthenticationSupport and enhance identity verification and step‑up authentication using Prove Identity and Transmit Security.Contribute to Always‑On MFA, OTP, biometric, and orchestration‑based authentication strategies.Ensure consistent identity and authentication behavior across digital, mobile, and contact center experiences.Data Analytics & Threat IntelligenceCollect, analyze, and interpret data from multiple sources (e.g., Splunk, event telemetry, vendor dashboards) to: Identify fraud trendsValidate profiling accuracyImprove threat detection and responseWork with partners to define threat monitoring and reporting requirements and identify enhancement opportunities.Platform Standards & StrategyAssist in evaluating and implementing tools that support standard design patterns and best practices across the Digital Identity Services (DIS) platform.Assess emerging Digital Identity and fraud technologies to determine where they fill gaps, overlap with existing solutions, or extend capabilities.Support roadmap execution across CIAM initiatives and new integrations.Operations & Escalation SupportProvide Level 4 support for day‑to‑day operations of the Digital Identity Services platform.Participate in complex customer and application escalations involving authentication, fraud, or identity issues.Ensure high availability and operational stability without compromising a strong risk posture.Risk, Audit & Regulatory AlignmentProvide identity and security services that enable the business while maintaining strong compliance with: NIST 800 seriesFFIEC authentication guidanceGLBA, SOX, PCISupport audit, risk reviews, and control assessments in partnership with First Line Risk and Compliance.Preferred Skills & Experience3+ years of hands‑on experience in Cybersecurity, Fraud Prevention, or Threat Investigations2+ years supporting complex environments and working with senior leadersStrong experience supporting Customer IAM (CIAM) security with understanding of industry best practicesHands‑on experience with: ThreatMetrixArkose LabsProve IdentityTransmit Security or similar orchestration platformsExperience operating modern threat and risk engines (e.g., ThreatMetrix, BioCatch)Strong service and delivery mindset with focus on customer experienceExperience managing complex risk issues in large technology environmentsUnderstanding of regulatory requirements impacting financial services (GLBA, SOX, PCI)Familiarity with ITIL / IT Service Management frameworksStrong verbal and written communication skillsAbility to manage multiple complex initiatives requiring rapid deliveryExperience working in an Agile delivery environment preferredKnowledge of ISO, NIST, and FFIEC guidance preferredEducation & CertificationsBA/BS in Information Systems, Computer Science, or a related field or equivalent practical experienceWhy This Role MattersThis role directly impacts:Reduction of account takeover, bot attacks, and identity‑based fraudDelivery of modern CIAM capabilities across consumer and commercial platformsRegulatory compliance and audit readinessCustomer experience through smarter, data‑driven security controls