Job Description

Are You Ready to Make It Happen at Mondelēz International?

Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.

About this Job 

Mondelez International is hiring a Senior Manager – IAM Platform Lead (Authentication & External Identity Management) 

Location: Fully remote within the United States

Role Overview 

We are seeking a Senior Manager – IAM Platform Lead (Authentication & External Identity Management) to lead the strategy, engineering, and lifecycle management of enterprise authentication platforms within our global Identity and Access Management (IAM) organization. 

Operating within a product operating model, this role owns the enterprise authentication, federation, and external identity platforms end-to-end, including strategy, roadmap, architecture, engineering delivery, resilience, and governance. The platform enables secure workforce, partner, and external access through SSO, MFA, passwordless authentication, identity federation, and adaptive authentication controls. 

The role leads authentication capabilities across Ping Identity platforms (PingID, PingFederate) and Microsoft Entra ID, implementing risk-based conditional access policies and scalable B2B and B2C identity access strategies across enterprise and cloud environments. The role also establishes secure authentication patterns for IT and OT personnel and industrial environments to protect access to critical systems. 

Key Responsibilities 

IAM Strategy & Platform Ownership 

Own the strategy, roadmap, and lifecycle for enterprise authentication, federation, and external identity platforms. 

Define enterprise standards for SSO, MFA, passwordless authentication, federation, adaptive authentication, and external identity access. 

Align authentication capabilities with Zero Trust architecture and enterprise identity security strategy. 

Drive adoption of modern authentication models, including passwordless authentication and risk-based access policies. 

 

Authentication Platform Engineering 

Lead engineering and operations of authentication platforms including Ping Identity (PingID, PingFederate) and Microsoft Entra ID. 

Enable secure application onboarding to enterprise SSO and authentication platforms. 

Deliver secure Single Sign-On (SSO) and Multi-Factor Authentication (MFA) across enterprise and cloud applications. 

Implement passwordless authentication and modern identity security standards. 

Design and enforce risk-based conditional access policies and adaptive authentication controls. 

Design and manage federation integrations using SAML, OAuth2, and OpenID Connect. 

Enable secure federation between enterprise identity providers, SaaS applications, and partner systems. 

Define standard authentication integration patterns for enterprise applications and digital platforms. 

 

External Identity (B2B & B2C) 

Establish end-to-end CIAM architecture, governance and secure authentication patterns for external identities accessing enterprise platforms. 

Define and implement B2B identity strategies supporting partners, suppliers, and third-party users. 

Support B2C authentication models where applicable for customer-facing digital services. 

 

Secure OT Authentication 

Define secure authentication patterns for Operational Technology (OT) personnel and industrial environments. 

Implement strong authentication controls protecting manufacturing systems, plant operations, and critical infrastructure access. 

Align OT authentication models with enterprise identity security and Zero Trust principles. 

 

Security Operations & Compliance Alignment 

Integrate authentication platforms with SOC and Cyber Defense monitoring capabilities. 

Enable visibility into authentication events, sign-in anomalies, and identity risk signals. 

Partner with Internal Audit and Risk teams to ensure authentication controls support SOX and regulatory compliance. 

 

Cross-Functional IAM Collaboration 

Collaborate with IAM platform teams responsible for Directory Services, PAM/NHI, and Identity Governance. 

Partner with cybersecurity, enterprise architecture, and application teams to enable secure authentication integration patterns. 

Provide subject matter expertise on authentication architecture and identity federation standards. 

More about this role

Required Qualifications 

Education & Experience 

Bachelor’s degree in Computer Science, Cybersecurity, or related field. 

15+ years of experience in Identity and Access Management or authentication platform engineering. 

10+ years leading IAM Authentication platform ownership role. 

Proven experience implementing enterprise authentication solutions using Ping Identity platforms and Microsoft Entra ID. 

Experience designing authentication integrations using SAML, OAuth2, and OpenID Connect. 

Experience implementing adaptive authentication, passwordless authentication, and conditional access policies. 

 

Leadership & Product Experience 

Experience operating within a product operating model, owning platform roadmaps and delivery outcomes. 

Ability to lead engineering teams while collaborating with security, infrastructure, and application stakeholders. 

Strong communication skills across technical teams and executive leadership. 

 

Certifications (Preferred) 

CISSP, CISM, or equivalent cybersecurity certifications 

Microsoft Identity / Azure security certifications 

Ping Identity certifications 

Travel: Periodic travel (up to 10%) may be necessary for key meetings, conferences, or team collaboration

Salary and Benefits:

The base salary range for this position is $140,300 to $192,940; the exact salary depends on several factors such as experience, skills, education and location. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results.

In addition, Mondelez International offers the following benefits: health insurance, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education related programs, paid holidays and vacation time. Some of these benefits have eligibility requirements. Many of these benefits are subsidized or fully paid for by the company.

No Relocation support available

Business Unit Summary

The United States is the largest market in the Mondelēz International family with a significant employee and manufacturing footprint. Here, we produce our well-loved household favorites to provide our consumers with the right snack, at the right moment, made the right way. We have corporate offices, sales, manufacturing and distribution locations throughout the U.S. to ensure our iconic brands—including Oreo and  Chips Ahoy! cookies, Ritz, Wheat Thins and Triscuit crackers, and Swedish Fish and Sour Patch Kids confectionery products —are close at hand for our consumers across the country.  

Mondelēz Global LLC is an Equal Opportunity Employer/Protected Veterans/Persons with Disabilities. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact 847-943-5460 for assistance.

For more information about your Federal rights, please see eeopost.pdf; EEO is the Law Poster Supplement; Pay Transparency Nondiscrimination Provision; Know Your Rights: Workplace Discrimination is Illegal

Job Type

Regular

Information Security

Technology & Digital