Product Lead - IAM Authentication

Job Description
Are You Ready to Make It Happen at Mondelēz International?
Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.
About this Job
Mondelez International is hiring a Senior Manager - IAM Platform Lead (Authentication & External Identity Management)
Location: Fully remote within the United States
Role Overview
We are seeking a Senior Manager - IAM Platform Lead (Authentication & External Identity Management) to lead the strategy, engineering, and lifecycle management of enterprise authentication platforms within our global Identity and Access Management (IAM) organization.
Operating within a product operating model, this role owns the enterprise authentication, federation, and external identity platforms end-to-end, including strategy, roadmap, architecture, engineering delivery, resilience, and governance. The platform enables secure workforce, partner, and external access through SSO, MFA, passwordless authentication, identity federation, and adaptive authentication controls.
The role leads authentication capabilities across Ping Identity platforms (PingID, PingFederate) and Microsoft Entra ID, implementing risk-based conditional access policies and scalable B2B and B2C identity access strategies across enterprise and cloud environments. The role also establishes secure authentication patterns for IT and OT personnel and industrial environments to protect access to critical systems.
Key Responsibilities
IAM Strategy & Platform Ownership

• Own the strategy, roadmap, and lifecycle for enterprise authentication, federation, and external identity platforms.

• Define enterprise standards for SSO, MFA, passwordless authentication, federation, adaptive authentication, and external identity access.

• Align authentication capabilities with Zero Trust architecture and enterprise identity security strategy.

• Drive adoption of modern authentication models, including passwordless authentication and risk-based access policies.

Authentication Platform Engineering

• Lead engineering and operations of authentication platforms including Ping Identity (PingID, PingFederate) and Microsoft Entra ID.

• Enable secure application onboarding to enterprise SSO and authentication platforms.

• Deliver secure Single Sign-On (SSO) and Multi-Factor Authentication (MFA) across enterprise and cloud applications.

• Implement passwordless authentication and modern identity security standards.

• Design and enforce risk-based conditional access policies and adaptive authentication controls.

• Design and manage federation integrations using SAML, OAuth2, and OpenID Connect.

• Enable secure federation between enterprise identity providers, SaaS applications, and partner systems.

• Define standard authentication integration patterns for enterprise applications and digital platforms.

External Identity (B2B & B2C)

• Establish end-to-end CIAM architecture, governance and secure authentication patterns for external identities accessing enterprise platforms.

• Define and implement B2B identity strategies supporting partners, suppliers, and third-party users.

• Support B2C authentication models where applicable for customer-facing digital services.

Secure OT Authentication

• Define secure authentication patterns for Operational Technology (OT) personnel and industrial environments.

• Implement strong authentication controls protecting manufacturing systems, plant operations, and critical infrastructure access.

• Align OT authentication models with enterprise identity security and Zero Trust principles.

Security Operations & Compliance Alignment

• Integrate authentication platforms with SOC and Cyber Defense monitoring capabilities.

• Enable visibility into authentication events, sign-in anomalies, and identity risk signals.

• Partner with Internal Audit and Risk teams to ensure authentication controls support SOX and regulatory compliance.

Cross-Functional IAM Collaboration

• Collaborate with IAM platform teams responsible for Directory Services, PAM/NHI, and Identity Governance.

• Partner with cybersecurity, enterprise architecture, and application teams to enable secure authentication integration patterns.

• Provide subject matter expertise on authentication architecture and identity federation standards.

More about this role
Required Qualifications
Education & Experience

• Bachelor's degree in Computer Science, Cybersecurity, or related field.

• 15+ years of experience in Identity and Access Management or authentication platform engineering.

• 10+ years leading IAM Authentication platform ownership role.

• Proven experience implementing enterprise authentication solutions using Ping Identity platforms and Microsoft Entra ID.

• Experience designing authentication integrations using SAML, OAuth2, and OpenID Connect.

• Experience implementing adaptive authentication, passwordless authentication, and conditional access policies.

Leadership & Product Experience

• Experience operating within a product operating model, owning platform roadmaps and delivery outcomes.

• Ability to lead engineering teams while collaborating with security, infrastructure, and application stakeholders.

• Strong communication skills across technical teams and executive leadership.

Certifications (Preferred)

• CISSP, CISM, or equivalent cybersecurity certifications

• Microsoft Identity / Azure security certifications

• Ping Identity certifications

Travel: Periodic travel (up to 10%) may be necessary for key meetings, conferences, or team collaboration
Salary and Benefits:
The base salary range for this position is $140,300 to $192,940; the exact salary depends on several factors such as experience, skills, education and location. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results. In addition, Mondelez International offers the following benefits: health insurance, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education related programs, paid holidays and vacation time. Some of these benefits have eligibility requirements. Many of these benefits are subsidized or fully paid for by the company.
No Relocation support available
Business Unit Summary
The United States is the largest market in the Mondelēz International family with a significant employee and manufacturing footprint. Here, weproduce our well-loved household favorites to provide our consumers with the right snack, at the right moment, made the right way. We have corporate offices, sales, manufacturing and distribution locations throughout the U.S. to ensure our iconic brands-including Oreo and Chips Ahoy! cookies, Ritz, Wheat Thins and Triscuit crackers, and Swedish Fish and Sour Patch Kids confectionery products -are close at hand for our consumers across the country.
Mondelēz Global LLC is an Equal Opportunity Employer/Protected Veterans/Persons with Disabilities. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact 847-943-5460 for assistance.
For more information about your Federal rights, please see eeopost.pdf; EEO is the Law Poster Supplement; Pay Transparency Nondiscrimination Provision; Know Your Rights: Workplace Discrimination is Illegal
Job Type
Regular
Information Security
Technology & Digital