Cybersecurity Fraud Staff Engineer (Remote)

Req134261

Position Purpose:

We are seeking a Staff Engineer – Identity Fraud Prevention to serve as the senior technical resource supporting our fraud prevention team. This role will own the technology design and strategy to combat identity-related fraud, including Account Origination (AO) and Account Takeover (ATO) attacks. You will play a pivotal role in building resilient, scalable, and intelligent fraud prevention solutions by leveraging modern CIAM (Customer Identity and Access Management) and fraud detection platforms.

This is a highly technical leadership role that requires deep expertise in identity security, fraud prevention, authentication technologies, and risk-based decisioning. You will collaborate closely with fraud analysts, data scientists, engineering teams, and security teams to design, implement, and optimize fraud defenses that protect millions of users.

Key Responsibilities:

• Own the technology strategy and architecture for fraud prevention related to AO and ATO across the enterprise.
• Design and implement risk-based authentication (RBA), step-up verification, and identity proofing solutions to mitigate fraudulent access attempts.
• Partner with fraud operations, cybersecurity, data science, and engineering teams to develop and deploy real-time fraud detection and prevention controls.
• Evaluate, select, and integrate best-in-class CIAM, fraud detection, and identity verification technologies (e.g., risk-based authentication, device intelligence, behavioral biometrics, bot mitigation).
• Develop machine learning-driven fraud models and signals to detect anomalies in identity-related behaviors.
• Collaborate with security and IAM teams to enhance MFA, passwordless authentication, and adaptive access policies.
• Build automated fraud orchestration capabilities that adapt in real time to emerging threats.
• Stay ahead of the latest fraud trends, including synthetic identity fraud, credential stuffing, and bot-driven ATO attempts.
• Guide engineering teams on secure coding practices to prevent vulnerabilities that could be exploited for fraud.
• Partner with external vendors and industry leaders to continuously enhance fraud defenses.
  
  

Required Qualifications:

• 8+ years of experience in identity fraud prevention, IAM/CIAM, security engineering, or fraud technology development.
• Strong expertise in Account Origination (AO) and Account Takeover (ATO) fraud prevention strategies.
• Hands-on experience with fraud prevention platforms, such as ThreatMetrix or similar.
• Deep knowledge of CIAM solutions like ForgeRock, Ping Identity, Microsoft Entra, or similar.
• Strong understanding of risk-based authentication, step-up authentication, and identity proofing technologies.
• Proficiency in anti-fraud techniques, including behavioral biometrics, device fingerprinting, bot mitigation, and anomaly detection.
• Experience implementing real-time fraud detection and risk scoring models using machine learning and behavioral analytics.
• Hands-on experience with APIs, microservices, and cloud-based architectures (AWS, GCP, or Azure).
• Strong programming/scripting skills in Python, Java, or similar languages for building fraud-related automation.
• Familiarity with industry standards and frameworks, such as NIST 800-63, PSD2, FIDO, and OpenID Connect.
• Ability to troubleshoot complex fraud patterns and lead engineering teams in designing effective countermeasures.
• Strong problem-solving, analytical, and communication skills with a passion for fighting fraud.
  
  

Preferred Qualifications:

• Experience with fraud signal aggregation and orchestration using tools like SAS, Feedzai, or custom ML models.
• Knowledge of synthetic identity fraud detection techniques.
• Experience designing and implementing zero-trust identity architectures.
• Hands-on experience with bot mitigation solutions, such as PerimeterX, Cloudflare Bot Management, or Akamai Bot Manager.
  
  

Protecting what matters most to our associates and consumers by securing our sensitive data and critical assests from current and emerging threats. At The Home Depot, Cybersecurity consists of Architecture, Governance, Identity & Access Management, Internal Threat Operations, Issue and Compliance Management, Risk Assessment/Advisory, Security Consulting, Security Operations, Service Optimization and Strategic Planning.

Key Responsibilities:

• 100% Deliver Execution, Plans & Aligns, Develop Others - Design, review and execute solutions to protect the enterprise; Lead, mentor and provide guidance; Facilitate vulnerability management programs across systems, networking and engineering teams; Develop, test, deply and operationalize security monitoring, assessment and response solutions
  
  

Direct Manager/Direct Reports:

• This position typically reports to Manager or Sr. Manager
• This position has 0 Direct Reports
  
  

Travel Requirements:

• No travel required.
  
  

Physical Requirements:

• Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles.
  
  

Working Conditions:

• Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.
  
  

Minimum Qualifications:

• Must be eighteen years of age or older.
• Must be legally permitted to work in the United States.
  
  

Minimum Education:

• The knowledge, skills and abilities typically acquired through the completion of a bachelor's degree program or equivalent degree in a field of study related to the job.
  
  

Minimum Years Of Work Experience:

• 8
  
  

Competencies:

• Action Oriented
• Collaborates
• Drives Engagement
• Communicates Effectively
• Customer Focus
• Drives Results
• Manages Conflict