CREATIVITY IS OUR SUPERPOWER. It’s our heritage and it’s also our future. Because we don’t just make toys. We create innovative products and experiences that inspire fans, entertain audiences and develop children through play. Mattel is at its best when every member of our team feels respected, included, and heard—when everyone can show up as themselves and do their best work every day. We value and share an infinite range of ideas and voices that evolve and broaden our perspectives with a reach that extends into all our brands, partners, and suppliers.

The Senior IAM Engineer will play a critical role in delivering secure and reliable identity services across Mattel’s enterprise. This position is responsible for implementing, supporting, and enhancing IAM and PAM solutions, including identity lifecycle automation, access controls, privileged account management, and integration with enterprise applications.

As a senior engineer, this role will act as an escalation point for complex IAM and PAM issues, lead troubleshooting and remediation efforts, and contribute to operational stability and compliance initiatives such as User Access Reviews (UARs) and audit reporting. The Sr. IAM Engineer will collaborate with IAM Architects, PAM Engineers, ITDR Analysts, and security teams to ensure secure, seamless, and compliant identity services while driving automation to reduce manual processes.

Objectives of this Role

• Implement and support enterprise IAM and PAM platforms, ensuring high availability, security, and compliance.
• Deliver identity lifecycle automation (Joiner-Mover-Leaver) and support integrations across Workday, Okta, AD/Entra ID, and other cloud or on-prem applications.
• Administer and maintain Privileged Access Management solutions (e.g. CyberArk, Okta OPA, BeyondTrust, Delinea, Cerby).
• Provide escalation support for complex IAM/PAM issues, integrations, and API troubleshooting.
• Lead threat detection and incident response activities in collaboration with ITDR Analysts, using tools such as CrowdStrike ITP, Semperis DSP (or similar), with proven risk remediation capabilities.
• Support compliance initiatives including User Access Reviews (UARs), audit reporting, and evidence gathering for SOX, PCI, and other frameworks.
• Participate in disaster recovery planning, incident management, and risk remediation efforts.
• Develop and maintain runbooks, workflows, and documentation for operational consistency and knowledge sharing.
• Experience developing operational dashboards, metrics, and reporting using Security Information and Event Management (SIEM) and other tools (e.g. Grafana, Sumo Logic, CrowdStrike ITP etc.) to track IAM/PAM/ITDR effectiveness and risk.
• Collaborate with cross-functional teams to deliver IAM services aligned with business and security objectives.
• Additional duties may be assigned as necessary to meet the ongoing needs of the organization.
• Work hours may vary, and the position may require availability during off-business hours as dictated by project needs, system changes, or security events.

Skills and Qualifications

Required:

• 5+ years of hands-on experience in Identity and Access Management or cybersecurity operations.
• Strong expertise with Okta Identity Cloud (SSO, MFA, Workflows, IGA, OPA, ODA) including lifecycle management and integrations.
• Practical expertise with Privileged Access Management (CyberArk, Okta OPA, BeyondTrust, Delinea, Cerby) and secrets management.
• Administration-level experience with Active Directory/LDAP, Entra ID (Azure AD), and cloud IAM solutions (e.g. AWS Cognito, Azure AD, GCP IAM).
• Proven experience with authentication and federation standards (SAML, OAuth, OIDC, SCIM).
• Experience in threat detection and incident response using tools such as CrowdStrike ITP, Semperis DSP and others, with proven risk remediation capabilities.
• Familiarity with UAR (User Access Reviews), compliance reporting, and audit evidence collection to support regulatory frameworks (SOX, NIST CSF, PCI, etc.).
• Strong background in scripting and automation with PowerShell, VBScript, Python, and REST APIs.
• Hands-on expertise with monitoring and analytics platforms (e.g. Grafana, Sumo Logic, CrowdStrike ITP etc) for IAM/PAM service health and metrics.
• Strong troubleshooting skills across Windows/Linux platforms, SSL certs, and cloud components.
• Advanced Microsoft Excel, including pivot tables, formulas, and data analysis.
• Participate in after-hours rotations or on-call duties to support critical incident response as needed.
• Excellent communication, collaboration, and problem-solving skills.
• Minimum Okta Certified Administrator.

Preferred:

• Bachelor’s degree in technology or applicable experience.
• Okta Certified Administrator, Okta Consultant, or equivalent IAM certification.
• CISSP, CISMP certification, or other security certifications.
• Certification in CyberArk or comparable PAM technologies, with demonstrated ability to design, implement, and maintain secure privileged access environments.
• Experience with endpoint privilege management (Windows/macOS) and server privilege management (Windows/Linux).
• Experience with automation tools (Ansible, Terraform, CI/CD pipelines in AWS/Azure).
• Experience contributing to disaster recovery and business continuity planning.

• Knowledge of modern identity security principles including Zero Trust, passwordless authentication, and Just-in-Time access.