CIAM Threat Engineer

CIAM Threat Engineer / Fraud & Digital Identity EngineerRole SummaryThe CIAM Threat Engineer is responsible for designing, engineering, and delivering customer identity, fraud prevention, and threat detection capabilities that protect both consumer and commercial customers across digital, mobile, and enterprise channels.This role will establish and drive standardized design and deployment patterns for identity security and fraud controls, partnering closely with Fraud, Risk, Cybersecurity, and Platform Engineering teams. The role also includes senior‑level operational support, policy governance, and participation in complex escalations related to identity and authentication services.As the CIAM footprint continues to expand across ThreatMetrix, Arkose Labs, Prove Identity, and Transmit Security, this role will be instrumental in scaling controls, reducing fraud risk, improving customer experience, and supporting regulatory expectations.Key ResponsibilitiesThreat Engineering & Fraud PreventionAssess existing customer application‑based threat and fraud controls, identify gaps, and deliver solutions to mitigate risk across: Login and enrollmentCredit card activationProfile changesPayments and high‑risk transactionsDesign and tune ThreatMetrix (TMX) policies supporting adaptive, risk‑based decisioningDrive fraud policy configuration that enables orchestration, device trust, and multi‑factor authenticationBot Defense & Abuse MitigationEngineer and operate Arkose Labs bot‑defense and challenge strategies across web and mobile platformsPartner with Fraud and Cybersecurity teams to evaluate automated attack patterns and reduce scripted abuse while minimizing customer frictionUse data and metrics to continuously improve challenge strategies and outcomesIdentity Proofing & AuthenticationSupport and enhance identity verification and step‑up authentication using Prove Identity and Transmit SecurityContribute to Always‑On MFA, OTP, biometric, and orchestration‑based authentication strategiesEnsure consistent identity and authentication behavior across digital, mobile, and contact center experiencesData Analytics & Threat IntelligenceCollect, analyze, and interpret data from multiple sources (e.g., Splunk, event telemetry, vendor dashboards) to: Identify fraud trendsValidate profiling accuracyImprove threat detection and responseWork with partners to define threat monitoring and reporting requirements and identify enhancement opportunitiesPlatform Standards & StrategyAssist in evaluating and implementing tools that support standard design patterns and best practices across the Digital Identity Services (DIS) platformAssess emerging Digital Identity and fraud technologies to determine where they fill gaps, overlap with existing solutions, or extend capabilitiesSupport roadmap execution across CIAM initiatives and new integrationsOperations & Escalation SupportProvide Level 4 support for day‑to‑day operations of the Digital Identity Services platformParticipate in complex customer and application escalations involving authentication, fraud, or identity issuesEnsure high availability and operational stability without compromising a strong risk postureRisk, Audit & Regulatory AlignmentProvide identity and security services that enable the business while maintaining strong compliance with: NIST 800 seriesFFIEC authentication guidanceGLBA, SOX, PCISupport audit, risk reviews, and control assessments in partnership with First Line Risk and CompliancePreferred Skills & Experience3+ years of hands‑on experience in Cybersecurity, Fraud Prevention, or Threat Investigations2+ years supporting complex environments and working with senior leadersStrong experience supporting Customer IAM (CIAM) security with understanding of industry best practicesHands‑on experience with: ThreatMetrixArkose LabsProve IdentityTransmit Security or similar orchestration platformsExperience operating modern threat and risk engines (e.g., ThreatMetrix, BioCatch)Strong service and delivery mindset with focus on customer experienceExperience managing complex risk issues in large technology environmentsUnderstanding of regulatory requirements impacting financial services (GLBA, SOX, PCI)Familiarity with ITIL / IT Service Management frameworksStrong verbal and written communication skillsAbility to manage multiple complex initiatives requiring rapid deliveryExperience working in an Agile delivery environment preferredKnowledge of ISO, NIST, and FFIEC guidance preferredEducation & CertificationsBA/BS in Information Systems, Computer Science, or a related field or equivalent practical experienceWhy This Role MattersThis role directly impacts:Reduction of account takeover, bot attacks, and identity‑based fraudDelivery of modern CIAM capabilities across consumer and commercial platformsRegulatory compliance and audit readinessCustomer experience through smarter, data‑driven security controls