Cargill's size and scale allows us to make a positive impact in the world. Our purpose is to nourish the world in a safe, responsible and sustainable way. We are a family company providing food, ingredients, agricultural solutions and industrial products that are vital for living. We connect farmers with markets so they can prosper. We connect customers with ingredients so they can make meals people love. And we connect families with daily essentials - from eggs to edible oils, salt to skincare, feed to alternative fuel. Our 160,000 colleagues, operating in 70 countries, make essential products that touch billions of lives each day. Join us and reach your higher purpose at Cargill.

Job Purpose and Impact

The IAM Principal Engineer provides technical expertise on areas of authentication, authorization, access management, privileged access management, identity governance and administration, IAM modernization for humans and machines.

• Provides advanced architecture and engineering support to automate and administrator identity and compliance requirements into all enterprise information systems.
• Executes identity management roadmaps and technology enhancements.
• Creates and maintains standards surrounding documentation related to identity processes, procedure and infrastructure.
• Assesses current applications and architecture to ensure current implementations align with identity-first security strategies, industry guidelines, best practices and management approved standards.
• Architects and plans for implementing directives in secure and frictionless manner.
• Assists various IT departments with design, implementation and troubleshooting of security technologies. Provide security guidance and requirements to technology teams when no solution is currently available
• Other duties as assigned

• Bachelor's degree in computer science, information systems, cybersecurity, or a related field
• 6+ years of related work experience
• 6+ years of professional experience with identity technologies and concepts
• 6+ years of professional experience with directories, Single-Sign On (SSO), identity federation, privileged access management, automated life-cycle management
• Proven knowledge of security (preferred - CISSP, CISA, CISM)
• A deep understanding in application integration patterns and API-based access control

• Proven hands-on experience with developing/architecting solutions using two or more leading IAM Solution providers such as Azure Entra ID, Okta, Sailpoint, Saviynt, CyberArk, BeyondTrust
• Demonstrated experience with performance management and capacity planning for large scale enterprise applications
• Thorough understanding of modern enterprise architecture and hands-on experience with Enterprise Application frameworks
• Provide direction, delegating and removing obstacles to get work done
• Develop and deliver multimode communications that convey a clear understanding of the unique needs of different audiences
• Hold self and others accountable to meet commitments
• Excellent knowledge of MFA, risk based and adaptive access control and protocols such as OpenID Connect, SAML, OAuth 2.0 and SCIM
• Ability to translate business strategies and project portfolios into short and long-term architectural plans, detailed requirements, and models
• Strong understanding of risk management, disaster recovery, business continuity, IT security architecture, and IT regulatory compliance
• Ability to comprehend and leverage the functions and capabilities of new technologies
• Ability to create estimations of time and resource requirements for different activities and determine which activities can be completed in parallel and in sequence