Product Lead - IAM Authentication

Are You Ready to Make It Happen at Mondelez International?

Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.

About this Job

Mondelez International is hiring a Senior Manager - IAM Platform Lead (Authentication & External Identity Management)

Location: Fully remote within the United States

Role Overview

We are seeking a Senior Manager - IAM Platform Lead (Authentication & External Identity Management) to lead the strategy, engineering, and lifecycle management of enterprise authentication platforms within our global Identity and Access Management (IAM) organization.

Operating within a product operating model , this role owns the enterprise authentication, federation, and external identity platforms end-to-end , including strategy, roadmap, architecture, engineering delivery, resilience, and governance. The platform enables secure workforce, partner, and external access through SSO, MFA, passwordless authentication, identity federation, and adaptive authentication controls .

The role leads authentication capabilities across Ping Identity platforms (PingID, PingFederate) and Microsoft Entra ID , implementing risk-based conditional access policies and scalable B2B and B2C identity access strategies across enterprise and cloud environments. The role also establishes secure authentication patterns for IT and OT personnel and industrial environmentsto protect access to critical systems.

Key Responsibilities

IAM Strategy & Platform Ownership

• Own thestrategy, roadmap, and lifecyclefor enterprise authentication, federation, and external identity platforms.

• Define enterprise standards forSSO, MFA, passwordless authentication, federation, adaptive authentication, and external identity access.

• Align authentication capabilities withZero Trust architecture and enterprise identity security strategy.

• Drive adoption ofmodern authentication models, including passwordless authentication and risk-based access policies.

Authentication Platform Engineering

• Lead engineering and operations of authentication platforms includingPing Identity (PingID, PingFederate) and Microsoft Entra ID.

• Enable secureapplication onboarding to enterprise SSO and authentication platforms.

• Deliver secureSingle Sign-On (SSO)andMulti-Factor Authentication (MFA)across enterprise and cloud applications.

• Implementpasswordless authenticationand modern identity security standards.

• Design and enforcerisk-based conditional access policiesand adaptive authentication controls.

• Design and manage federation integrations usingSAML, OAuth2, and OpenID Connect.

• Enable secure federation between enterprise identity providers,SaaS applications, and partner systems.

• Define standard authentication integration patterns forenterprise applications and digital platforms.

External Identity (B2B & B2C)

• Establish end-to-end CIAM architecture, governance and secure authentication patterns forexternal identities accessing enterprise platforms.

• Define and implementB2B identity strategiessupporting partners, suppliers, and third-party users.

• SupportB2C authentication modelswhere applicable for customer-facing digital services.

Secure OT Authentication

• Define secure authentication patterns forOperational Technology (OT) personnel and industrial environments.

• Implement strong authentication controls protectingmanufacturing systems, plant operations, and critical infrastructure access.

• Align OT authentication models withenterprise identity security and Zero Trust principles.

Security Operations & Compliance Alignment

• Integrate authentication platforms withSOC and Cyber Defense monitoring capabilities.

• Enable visibility intoauthentication events, sign-in anomalies, and identity risk signals.

• Partner withInternal Audit and Risk teamsto ensure authentication controls supportSOX and regulatory compliance.

Cross-Functional IAM Collaboration

• Collaborate with IAM platform teams responsible forDirectory Services, PAM/NHI, and Identity Governance.

• Partner withcybersecurity, enterprise architecture, and application teamsto enable secure authentication integration patterns.

• Provide subject matter expertise onauthentication architecture and identity federation standards.

More about this role

Required Qualifications

Education & Experience

• Bachelor's degree in Computer Science, Cybersecurity, or related field.

• 15+ years of experience inIdentity and Access Management or authentication platform engineering.

• 10+ years leadingIAM Authentication platform ownership role.

• Proven experience implementing enterprise authentication solutions usingPing Identity platforms and Microsoft Entra ID.

• Experience designing authentication integrations usingSAML, OAuth2, and OpenID Connect.

• Experience implementingadaptive authentication, passwordless authentication, and conditional access policies.

Leadership & Product Experience

• Experience operating within aproduct operating model, owning platform roadmaps and delivery outcomes.

• Ability to lead engineering teams while collaborating withsecurity, infrastructure, and application stakeholders.

• Strong communication skills acrosstechnical teams and executive leadership.

Certifications (Preferred)

• CISSP, CISM, or equivalent cybersecurity certifications

• Microsoft Identity / Azure security certifications

• Ping Identity certifications

Travel: Periodic travel (up to 10%) may be necessary for key meetings, conferences, or team collaboration

Salary and Benefits: The base salary range for this position is $140,300 to $192,940; the exact salary depends on several factors such as experience, skills, education and location. In addition to base salary, this position is eligible for participation in a highly competitive bonus program with possibility for overachievement based on performance and company results. In addition, Mondelez International offers the following benefits: health insurance, wellness and family support programs, life and disability insurance, retirement savings plans, paid leave programs, education related programs, paid holidays and vacation time. Some of these benefits have eligibility requirements. Many of these benefits are subsidized or fully paid for by the company. No Relocation support available Business Unit Summary

The United States is the largest market in the Mondelez International family with a significant employee and manufacturing footprint. Here, we produce our well-loved household favorites to provide our consumers with the right snack, at the right moment, made the right way. We have corporate offices, sales, manufacturing and distribution locations throughout the U.S. to ensure our iconic brands-including Oreo and Chips Ahoy! cookies, Ritz, Wheat Thins and Triscuit crackers, and Swedish Fish and Sour Patch Kids confectionery products -are close at hand for our consumers across the country.

Mondelez Global LLC is an Equal Opportunity Employer/Protected Veterans/Persons with Disabilities. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact ... for assistance.

For more information about your Federal rights, please see eeopost.pdf ; EEO is the Law Poster Supplement ; Pay Transparency Nondiscrimination Provision ; Know Your Rights: Workplace Discrimination is Illegal

Job Type RegularInformation SecurityTechnology & Digital