Senior Technical Program Manager @ Peloton

Senior Technical Program Manager

Iam

Posted on 3/28/2023

INACTIVE

1,001-5,000 employees

Website

Live and on-demand boutique studio classes

Company Overview

Peloton uses technology and design to connect the world through fitness, empowering people to be the best version of themselves anywhere, anytime. The company offers a suite of fitness products and services.

Locations

New York, NY, USA

Experience Level

Entry

Junior

Mid

Senior

Expert

Desired Skills

Management

Communications

Requirements

6+ years of relevant experience
Working knowledge of:
Access management tools, processes, and procedures
User access administration, role and policy-based access controls, including identity management, provisioning and deprovisioning access
Privileged access management (PAM) tools
Identity and Access Management (IAM) tools
Access reviews for appropriateness and authorization
Interpretation of numeric data and statistical principles
Excellent communication skills (verbal and written), ability to influence without authority
Works well under pressure, within time and budget constraints, to solve problems, adjust quickly to shifting priorities, and make decisions with limited information
Ability to balance risks in ambiguous and complex situations
Demonstrated teamwork and collaboration skills, in particular contributing to global and cross-functional teams
Ability to communicate technical concepts to a broad range of technical and non-technical staff
Be able to deliver both detailed technical reports to enable access remediation and business friendly reports to demonstrate progress and track risk
Highly organized, motivated, and detail-oriented with the ability to work independently in a fast-paced environment
Excellent problem-solving skills and ability to manage competing priorities and deadlines
One or more of the following certifications is preferred: CISA, CISM, CISSP

Responsibilities

Design and implement access management and assurance programs (people, process, and technology) to mitigate security threats and risks related to access through a holistic global program-oriented approach
Develop and maintain identity access requirements and controls as necessitated by business needs, security compliance requirements and security industry best practices
Reduce the number of privileged accounts to better align with principle of least privilege and role based access controls
Design and implement the identity review process, ensuring that identities and access is reviewed regularly both for appropriateness of access as well as privilege levels for all users
Develop and maintain policies and procedures that support identity management (e.g., access assurance, access monitoring and reporting, authentication requirements, authorization requirements)
Work closely with partner teams to implement and enforce mechanism to proactively monitor, respond and report on inappropriate data access events
Standardize how we harden and secure access via interactive (human) and non-interactive (service) accounts
Maintains updated knowledge in the field of risk management and compliance to efficiently work on frameworks including NIST CSF, CIS Controls, PCI-DSS, SOX 404, etc

ABOUT THE ROLE

Peloton inspires and motivates millions of people every day. A key part of delivering on that mission is not only an outstanding experience that our instructors and platforms provide, but alsothe data, telemetry, and insights that empower our members to be the best version ofthemselves anywhere, anytime. Earning and maintaining our members’ trust and safeguardingtheir data is key to everything we do.

The Security Technical Program Manager, IAM is a critical position within the team, and has risk and compliance responsibilities from a technology and security perspective across the organizationglobally. The main objective of the Security GRC team is to deliver best in class SecurityGovernance, Risk and Compliance, services to ensure that Peloton operates in a risk mitigated,security managed environment and that Peloton’s security compliance objectives are being met.Their responsibilities span Peloton’s products and services and the internal applications, tools,and infrastructure that support them.

YOUR DAILY IMPACT AT PELOTON

Design and implement access management and assurance programs (people, process, and technology) to mitigate security threats and risks related to access through a holistic global program-oriented approach
Develop and maintain identity access requirements and controls as necessitated by business needs, security compliance requirements and security industry best practices
Reduce the number of privileged accounts to better align with principle of least privilege and role based access controls
Design and implement the identity review process, ensuring that identities and access is reviewed regularly both for appropriateness of access as well as privilege levels for all users
Develop and maintain policies and procedures that support identity management (e.g., access assurance, access monitoring and reporting, authentication requirements, authorization requirements)
Work closely with partner teams to implement and enforce mechanism to proactively monitor, respond and report on inappropriate data access events
Standardize how we harden and secure access via interactive (human) and non-interactive (service) accounts.
Maintains updated knowledge in the field of risk management and compliance to efficiently work on frameworks including NIST CSF, CIS Controls, PCI-DSS, SOX 404, etc.

YOU BRING TO PELOTON:

6+ years of relevant experience
Working knowledge of:
- Access management tools, processes, and procedures
- User access administration, role and policy-based access controls, including identity management, provisioning and deprovisioning access
- Privileged access management (PAM) tools
- Identity and Access Management (IAM) tools
- Access reviews for appropriateness and authorization
- Interpretation of numeric data and statistical principles
Excellent communication skills (verbal and written), ability to influence without authority
Works well under pressure, within time and budget constraints, to solve problems, adjust quickly to shifting priorities, and make decisions with limited information
Ability to balance risks in ambiguous and complex situations
Demonstrated teamwork and collaboration skills, in particular contributing to global and cross-functional teams
Ability to communicate technical concepts to a broad range of technical and non-technical staff
Be able to deliver both detailed technical reports to enable access remediation and business friendly reports to demonstrate progress and track risk
Highly organized, motivated, and detail-oriented with the ability to work independently in a fast-paced environment
Excellent problem-solving skills and ability to manage competing priorities and deadlines
One or more of the following certifications is preferred: CISA, CISM, CISSP

Base Salary: $172,000 to $223,000

The base salary range represents the low and high end of the anticipated salary range for this position based at our New York City headquarters. The actual base salary offered for this position will depend on numerous factors including individual performance, business objectives, and if the location for the job changes. Our base salary is just one component of Peloton’s competitive total rewards strategy that also includes annual equity awards and an Employee Stock Purchase Plan as well as other region-specific health and welfare benefits.

As an organization, one of our top priorities is to maintain the health and wellbeing for our employees and their family. To achieve this goal, we offer robust and comprehensive benefits including:

Medical, dental and vision insurance
Generous paid time off policy
Short-term and long-term disability
Access to mental health services
401k, tuition reimbursement and student loan paydown plans
Employee Stock Purchase Plan
Fertility and adoption support and up to 18 weeks of paid parental leave
Child care and family care discounts
Free access to Peloton Digital App and apparel and product discounts
Commuter benefits and Citi Bike Discount
Pet insurance and so much more!

#LI-SW1

#LI-Hybrid

ABOUT PELOTON:

Peloton is the leading interactive fitness platform globally, with a passionate community of nearly 7 million Members in the US, UK, Canada, Germany, and Australia. Peloton makes fitness entertaining, approachable, effective, and convenient, while fostering social connections that motivate its Members to commit to their fitness journeys. An innovator at the nexus of fitness, technology, and media, Peloton reinvented the fitness industry by developing a first-of-its-kind subscription platform that seamlessly combines the best equipment, proprietary networked software, world-class streaming digital fitness and wellness content, and best-in-class fitness experts and Instructors.

Peloton is an equal opportunity employer and committed to creating an inclusive environment for all of our applicants. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. If you would like to request any accommodations from application through to interview, please email: [email protected]

Please be aware that fictitious job openings, consulting engagements, solicitations, or employment offers may be circulated on the Internet in an attempt to obtain privileged information, or to induce you to pay a fee for services related to recruitment or training. Peloton does NOT charge any application, processing, or training fee at any stage of the recruitment or hiring process. All genuine job openings will be posted here on our careers page and all communications from the Peloton recruiting team and/or hiring managers will be from an @onepeloton.com email address.

If you have any doubts about the authenticity of an email, letter or telephone communication purportedly from, for, or on behalf of Peloton, please email [email protected] before taking any further action in relation to the correspondence.

Peloton does not accept unsolicited agency resumes. Agencies should not forward resumes to our jobs alias, Peloton employees or any other organization location. Peloton is not responsible for any agency fees related to unsolicited resumes.