Job Description Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. You provide software and applications expertise, and be responsible for implementation of the solutions. How you will contribute You will oversee the planning and execution of software and applications. To do so, you will manage an internal team and partner with external suppliers and use your deep technical and market knowledge and thorough understanding of our business goals find and deploy the right software and application solutions for the future. You will support programs to implement regional and global software and application strategies, offer input to financial planning and controls for software and applications on a regional and global level, collaborate with management and follow-up on requisitions, purchase orders, invoices, and payments, explores opportunities to leverage scale and drive savings, and ensure that support service level objectives and key performance indicators are accomplished. What you will bring A desire to drive your future and accelerate your career. You will bring experience and knowledge in : - Managing staff and line responsibilities - Managing large-scale software and application services - Service delivery, support and excellence - Program/Project management with experience managing multiple projects for budgets, resources, schedules and quality - General technical background - Understanding of integration and how different applications talk to each other - Process and service orientation - Business processes Are You Ready to Make It Happen at Mondelēz International? Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours. Serve as the subject matter expert (SME) for Active Directory and Microsoft Entra ID, providing deep technical leadership across design, operations, and continuous improvement of enterprise identity platforms. This role focuses on the long-term health, resilience, and security posture of AD and Entra ID by applying product- and platform-principles-treating identity as a scalable, reliable service that delivers consistent value to the business. You will design, optimize, and sustain global AD/Entra ID platforms, lead response to complex identity incidents, and drive modernization through automation, standardization, and Zero Trust alignment-while ensuring operational stability. How you will contribute You will collaborate with internal engineers, architects, and strategic partners to deliver secure, reliable IAM capabilities at enterprise scale. Operating within a product & platform model, you will help define technical standards, roadmaps, and reusable capabilities that improve service quality, reduce operational risk, and enable downstream applications and business teams. You will continuously identify opportunities to enhance the AD/Entra ID platforms through automation, design optimization, and process improvement, while supporting global deployments, changes, and incident response in alignment with security best practices and compliance requirements. What you will bring Job Description - Design, implement, and sustain enterprise-grade Active Directory and Microsoft Entra ID platforms using product and platform engineering principles. - Lead the evolution of AD forests, domains, trusts, and domain controller configurations with a focus on stability, scalability, and resilience rather than large-scale migrations. - Act as the technical authority during major incidents, providing Level 3 escalation support, deep root-cause analysis, and durable preventive controls. - Drive platform reliability and service quality, including SLA/OLA adherence across internal support tiers and external vendors. - Forecast platform capacity and infrastructure needs, supporting global expansions, consolidations, and targeted modernization initiatives when required. - Design, implement, and govern Conditional Access, Privileged Identity Management (PIM/PAM), Zero Trust controls, and high-risk identity protection policies. - Design, operate, and continuously optimize Entra Connect / Azure AD Connect topology, synchronization rules, upgrades, and identity lifecycle flows. - Build and maintain PowerShell and Microsoft Graph API automation to enforce standards, reduce manual effort, and improve operational efficiency. - Apply product mindset to platform capabilities-defining reusable patterns, technical guardrails, and reference architectures consumed by application and infrastructure teams. - Mentor and guide L2 engineers through design reviews, troubleshooting techniques, and operational best practices. - Partner with audit, risk, and compliance teams to produce actionable reporting and remediate AD/Entra ID-related findings. - Lead Problem Management activities to eliminate recurring production issues and strengthen platform maturity. - Prioritize work based on risk, impact, urgency, and cost, balancing operational demands with long-term platform improvements. - Present identity platform health, security posture, and architectural recommendations to technical and business stakeholders. - Make risk-based decisions when deviations from standards are required, including defining appropriate compensating controls. More about this role What you need to know about this position: Skills and Qualifications - 7+ years of experience designing, implementing, and operating Active Directory and Microsoft Entra ID at enterprise scale. - Expert knowledge of multi-domain and multi-forest environments, trusts, FSMO roles, schema management, and advanced AD operations. - Deep expertise in AD, Entra ID, PKI, Conditional Access, PIM/PAM, B2B/B2C, and integrations with platforms such as CyberArk, Ping, and Venafi. - Strong understanding of Zero Trust security principles and their practical application within identity and access management. - Solid background in systems architecture, networking, and virtualization across Microsoft and mixed-technology environments. - Experience operating within product, platform, or service-oriented models, emphasizing reliability, scalability, and consumer outcomes. - Proven ability to collaborate across engineering, security, infrastructure, and vendor teams in time-critical environments. - Strong analytical, organizational, and documentation skills. - Excellent written and verbal communication skills, with the ability to influence stakeholders through clear, data-driven recommendations. - Customer-centric mindset with the ability to communicate complex technical concepts with clarity and impact. - Experience with IAM governance and compliance frameworks (CIS, and NIST). - Working knowledge of Agile, and DevSecOps methodologies, as well as ITIL practices (Incident, Change, and Problem Management). - Demonstrated commitment to continuous learning and professional development. Bonus Points - CISSP - Microsoft Certifications - ITIL 4 Foundations Certification (Incident, Change, and Problem Management) No Relocation support available Business Unit Summary At Mondelēz International, our purpose is to empower people to snack right by offering the right snack, for the right moment, made the right way. That means delivering a broad range of delicious, high-quality snacks that nourish life's moments, made with sustainable ingredients and packaging that consumers can feel good about. We have a rich portfolio of strong brands globally and locally including many household names such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. We are proud to hold the top position globally in biscuits, chocolate and candy and the second top position in gum. Our 80,000 makers and bakers are located in more than 80 countries and we sell our products in over 150 countries around the world. Our people are energized for growth and critical to us living our purpose and values. We are a diverse community that can make things happen-and happen fast. Mondelēz International is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation or preference, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law. Job Type Regular Software & Applications Technology & Digital

Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest. Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest. Affirm values information security as a critical part of the company’s continued success. Our mission is to make information security programmatic and cultural in Affirm, enabling the company to succeed in building honest financial products. The Security team posture increases security and reduces risk while securely enabling access to information for those who need it! The Staff Product Security Engineer candidate will have experience building and architecting software as part of a larger team. The ideal candidate will work effectively with product and engineering teams to evaluate and influence product requirements, design, and implementation to improve the security of Affirm’s products. What You'll Do - Partner with Affirm product teams to ensure that security is included in every phase of the product development lifecycle. - Conduct threat modeling and architecture reviews to ensure threats are understood, documented, and mitigated. - Review and analyze product source code to identify security vulnerabilities and provide recommendations for secure implementation. - Seek out opportunities to automate processes when appropriate. - Identify emerging classes of vulnerabilities and developing solutions for them before they’re a problem. - Assist product teams in the development of security focused test cases to enforce security requirements. - Advise product teams on business security requirements early in the product development lifecycle. - Decompose large, cross-team projects into individual tasks. Manage scope across teams and drive toward project closure. What We Look For - Deep understanding of web application architecture and design principles - Experience using modern software development and delivery techniques to develop cloud-based services. Python, Kotlin, Java, AWS, and Azure experience preferred. - Knowledge of common security flaws and resolution as published by OWASP, SANS, etc. - Experience with PCI or other regulated environments. - Experience conducting threat models for complex, distributed products using standard threat modeling techniques and methodologies. - Experience with standard authentication mechanisms, including SAML and OAuth2. - Understanding of continuous integration / continuous deployment processes and tools. - BS degree in related field or equivalent experience. MS degree in a related field or equivalent experience is a plus. Location - Remote U.S. Pay Grade - P Equity Grade - 13 Employees new to Affirm typically come in at the start of the pay range. Affirm focuses on providing a simple and transparent pay structure which is based on a variety of factors, including location, experience and job-related skills. Base pay is part of a total compensation package that may include equity rewards, monthly stipends for health, wellness and tech spending, and benefits (including 100% subsidized medical coverage, dental and vision for you and your dependents.) USA base pay range (CA, WA, NY, NJ, CT) per year: $225,000 - 275,000 USD USA base pay range (all other U.S. states) per year: $200,000 - 250,000 USD #LI-Remote Affirm is proud to be a remote-first company! The majority of our roles are remote and you can work almost anywhere within the country of employment. Affirmers in proximal roles have the flexibility to work remotely, but will occasionally be required to work out of their assigned Affirm office. A limited number of roles remain office-based due to the nature of their job responsibilities. We’re extremely proud to offer competitive benefits that are anchored to our core value of people come first. Some key highlights of our benefits package include: - Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents - Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses - Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge - ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount We believe It’s On Us to provide an inclusive interview experience for all, including people with disabilities. We are happy to provide reasonable accommodations to candidates in need of individualized support during the hiring process. [For U.S. positions that could be performed in Los Angeles or San Francisco] Pursuant to the San Francisco Fair Chance Ordinance and Los Angeles Fair Chance Initiative for Hiring Ordinance, Affirm will consider for employment qualified applicants with arrest and conviction records. By clicking "Submit Application," you acknowledge that you have read Affirm's Global Candidate Privacy Notice and hereby freely and unambiguously give informed consent to the collection, processing, use, and storage of your personal information as described therein.

• Partner with Affirm product teams to ensure that security is included in every phase of the product development lifecycle. • Conduct threat modeling and architecture reviews to ensure threats are understood, documented, and mitigated. • Review and analyze product source code to identify security vulnerabilities and provide recommendations for secure implementation. • Seek out opportunities to automate processes when appropriate. • Identify emerging classes of vulnerabilities and developing solutions for them before they’re a problem. • Assist product teams in the development of security focused test cases to enforce security requirements. • Advise product teams on business security requirements early in the product development lifecycle. • Decompose large, cross-team projects into individual tasks. Manage scope across teams and drive toward project closure.

Get to Know Us: It's fun to work in a company where people truly believe in what they're doing! At BlackLine, we're committed to bringing passion and customer focus to the business of enterprise applications. Since being founded in 2001, BlackLine has become a leading provider of cloud software that automates and controls the entire financial close process. Our vision is to modernize the finance and accounting function to enable greater operational effectiveness and agility, and we are committed to delivering innovative solutions and services to empower accounting and finance leaders around the world to achieve Modern Finance. Being a best-in-class SaaS Company, we understand that bringing in new ideas and innovative technology is mission critical. At BlackLine we are always working with new, cutting edge technology that encourages our teams to learn something new and expand their creativity and technical skillset that will accelerate their careers. Work, Play and Grow at BlackLine! Make Your Mark: Reporting to the Senior Director of Information Security, the Sr. Information Security Engineer will play a lead role in executing security strategy and consulting on best-in-class security architecture and security posture for BlackLine. In this role you will provide on-call duties, manage/triage ticket queues, review access requests, review architecture, implement security solutions, collaborate with cross-functional teams, perform vulnerability management functions, and execute the evolution of Blackline's Enterprise Information Security components. You'll Get To: - Participate in a 'follow-the-sun' on-call schedule, acting as the primary responder during the India shift to monitor, triage, and manage the security alerts queue. - Bridge the gap between research and remediation by developing manual runbooks (SOPs) and automated playbooks needed to handle threats and eliminate noise. - Establish the operational scope and testing boundaries for security assessments and penetration tests, focusing on targeted risk discovery and impact. - Apply a research-first mindset to incident response, demonstrating the critical thinking needed to independently triage threats and figure out new tools across a varied security landscape. - Operationalize security infrastructure through Terraform, with the foundational knowledge to independently research and implement automation across various providers and platforms. - Manage the operation of key security technologies, including Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), and Web Application Firewalls (WAF). - Leverage AI and LLMs to accelerate security analysis, automate repetitive tasks, and drive operational efficiency across the security stack. - Flex into evolving security initiatives and technical projects as they arise, taking ownership of tasks that fall beyond the initial scope of this role. - Define effective information security standards applicable to specific environments. - Create and maintain operational reports and security metrics, translating raw data into the technical insights required for data-driven decision-making. - Serve as a technical leader and mentor, providing guidance to junior engineers and collaborating with cross-functional teams on security best practices. What You'll Bring: - 5+ years of hands-on information security experience, including 1 year of experience managing Web Application Firewalls (WAF). - Practical experience with cloud security platforms like SCCE, AWS Security Hub, or Azure Security Center, and the technical "scrappiness" to research and utilize new security services across a multi-cloud environment. - Strong problem-solving and analytical skills with the ability to identify security risks and propose effective solutions. - Highly autonomous and productive in performing activities, requiring minimal direction from management. - Proven ability to leverage scripting languages, such as Python, Bash, and PowerShell, to interface with applications and/or available APIs. - Expertise in Windows and with a working knowledge of Linux/Unix (advanced Linux skills are a big plus). - Working knowledge of network security-through understanding of the OSI model and comprehensive knowledge of common protocols and services for levels 3 through 7. - Advanced written and verbal communication skills including the ability to present technical subjects to non-technical audiences. - Maintain technical depth in common vulnerabilities and exploitation techniques to independently research, triage, and remediate complex security findings. We're Even More Excited If You Have: - Experience in securing Kubernetes and containers. - Hands-on experience with securing AI systems and LLMs. - Working knowledge of WMI and WSH in a modern security context. - Utilize outside the box thinking to define new and improved solutions or optimize current processes and tools. Thrive at BlackLine Because You Are Joining: - A technology-based company with a sense of adventure and a vision for the future. Every door at BlackLine is open. Just bring your brains, your problem-solving skills, and be part of a winning team at the world's most trusted name in Finance Automation! - A culture that is kind, open, and accepting. It's a place where people can embrace what makes them unique, and the mix of cultural backgrounds and varying interests cultivates diverse thought and perspectives. - A culture where BlackLiner's continued growth and learning is empowered. BlackLine offers a wide variety of professional development seminars and inclusive affinity groups to celebrate and support our diversity. BlackLine is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity or expression, race, ethnicity, age, religious creed, national origin, physical or mental disability, ancestry, color, marital status, sexual orientation, military or veteran status, status as a victim of domestic violence, sexual assault or stalking, medical condition, genetic information, or any other protected class or category recognized by applicable equal employment opportunity or other similar laws. BlackLine recognizes that the ways we work and the workplace itself have shifted. We innovate in a workplace that optimizes a combination of virtual and in-person interactions to maximize collaboration and nurture our culture. Candidates who live within a reasonable commute to one of our offices will work in the office at least 2 days a week.