Product Owner & Head of IAM Directory Services

• Own the strategic direction and roadmap for enterprise Directory Services and Certificate Lifecycle Management platforms within the IAM product portfolio.

• Define and drive multi-year platform strategy aligned with enterprise Zero Trust identity security and hybrid cloud transformation initiatives.

• Translate enterprise IAM policies and security standards into directory machine identity and certificate governance frameworks.

• Lead platform lifecycle management including modernization initiatives such as directory consolidation hybrid identity adoption and machine identity governance improvements.

• Manage platform backlog priorities and engineering delivery in alignment with the product operating model and agile delivery practices.

• Partner with IAM leadership to ensure directory and certificate platforms support broader identity governance authentication and privileged access strategies.

• Lead engineering and operational oversight of the enterprise directory services infrastructure including Active Directory multi-domain and multi-forest environments.

• Ensure reliability scalability and security of enterprise directory infrastructure including domain controllers replication topology DNS integration and group policy architecture.

• Establish engineering standards for directory architecture operational stability and platform resilience.

• Oversee platform lifecycle management including patching upgrades monitoring and disaster recovery planning.

• Manage the enterprise PKI ecosystem ensuring secure certificate issuance validation renewal and revocation processes.

• Lead hybrid identity architecture integrating Active Directory with Microsoft Entra ID and cloud identity services.

• Oversee identity synchronization federation and identity lifecycle processes across on-premise and cloud environments.

• Partner with cloud engineering teams to enable secure identity integration for enterprise applications SaaS platforms and cloud infrastructure.

• Enable application and DevOps teams with secure identity and certificate services required for modern development pipelines.

• Lead the enterprise machine identity and certificate lifecycle management program including governance of Venafi or equivalent CLM platforms.

• Maintain centralized governance and inventory of machine identities and certificates across infrastructure applications APIs and network devices.

• Reduce operational and security risks related to certificate expiration unmanaged certificates and machine identity sprawl.

• Integrate certificate lifecycle management capabilities into enterprise infrastructure and DevOps pipelines.

• Oversee integration and secure operation of Hardware Security Modules (HSMs) used for certificate authority and cryptographic key protection.

• Strengthen the security posture of identity infrastructure platforms including Active Directory Entra ID and PKI services.

• Partner with the Security Operations Center (SOC) and cyber defense teams to monitor and respond to identity-related threats and anomalies.

• Establish monitoring and alerting for identity infrastructure anomalies suspicious authentication activity and potential directory compromise scenarios.

• Respond to and lead investigations involving identity compromise privilege escalation and misconfiguration.

• Drive automation initiatives across directory services identity infrastructure and certificate lifecycle management platforms.

• Implement Infrastructure as Code (IaC) scripting frameworks and API-driven automation for identity infrastructure provisioning and management.

• Lead the adoption of DevSecOps practices to improve operational efficiency and platform security.

• Improve platform resilience through proactive monitoring reliability engineering and disaster recovery planning.

• Partner with enterprise architecture cybersecurity infrastructure and cloud engineering teams to align identity services with enterprise technology strategy.

• Support integration of directory and certificate services with enterprise IAM platforms and identity governance solutions.

• Provide subject matter expertise to application teams on identity infrastructure certificate management and secure authentication integrations.

• Represent directory services and machine identity platforms in enterprise security reviews architecture boards and transformation initiatives.

• Bachelor's degree in Computer Science Cybersecurity or a related field

• 15+ years of experience in Identity and Access Management Directory Services Identity Infrastructure

• 10+ years of experience leading engineering teams or platform ownership roles in IAM or identity infrastructure domains.

• Proven experience operating and modernizing large-scale Active Directory environments including multi-domain and multi-forest architectures.

• Experience managing hybrid identity platforms integrating Active Directory and Microsoft Entra ID.

• Hands-on experience implementing Certificate Lifecycle Management (CLM) or PKI platforms such as Venafi or equivalent solutions.

• Experience supporting identity platforms in global enterprise environments.

• Experience operating within a product operating model including ownership of platform roadmaps and delivery outcomes.

• Ability to lead engineering teams while collaborating effectively with security infrastructure and application engineering stakeholders.

• Ability to communicate effectively with both technical teams and senior leadership.

• Ability to drive complex identity transformations in large enterprise environments.

• Passionate about automation security and operational excellence.

• Self-driven organized and comfortable operating in a hybrid fast-paced environment.

• Microsoft Identity and Azure certifications

• CISSP CISM CCSP or equivalent security certifications

• PKI or certificate management related certifications (Venafi preferred)

What We Do

Mondelēz International Inc. (NASDAQ: MDLZ) is an American multinational confectionery food and beverage company based in Illinois which employs approximately 90000 individuals around the world. Our Purpose Our purpose is to empower people to snack right. We will lead the future of snacking around the world by offering the right snack for the right moment made the right way. Our Brands We’re leading the future of snacking with iconic brands such as Oreo belVita and LU biscuits; Cadbury Dairy Milk Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. Our People Our 90000+ colleagues around the world are key to the success of our business. Our Values and Leadership Commitments of Love our Consumers and Brands Grow Every Day and Do What's Right shapes our culture – what we believe in stand for and what guides our actions and decisions. Great people and great brands. That’s who we are. Our Strategies We are uniquely positioned to lead the future of snacking with strong leadership in our categories an unparalleled portfolio of global and local brands and a solid footprint in fast-growing markets. Aimed at delivering sustainable growth our strategic plan is centered around three strategic priorities: • Growth: accelerate consumer-centric growth • Execution: drive operational excellence • Culture: build a winning growth culture

Why Work With Us

We offer passionate energetic and curious people a huge choice of careers in our fun fast-paced global business. We operate in four regions: Asia Middle East & Africa; Europe; Latin America; and North America. And in over 80 countries our people are united in a common purpose to empower people to snack right.

Gallery