Senior Identity and Security Operations Engineer

Senior Identity and Security Operations Engineer

We are seeking a Senior Identity and Security Operations Engineer to join our team. In this role, you will collaborate with diverse teams to design, implement, and manage our security and identity platforms. You will build, integrate, and manage account- and system-provisioning solutions as we continue our journey towards ‘Zero Trust’. Additionally, you will work directly with application owners and business users to provide security subject matter expertise and guidance for our security standards and policies, helping to protect customers and ensure a secure environment.

Responsabilities

• Administer Identity and Security operations platforms (e.g., Okta, Active Directory, Active Directory Certificate Services (ADCS), ADFS, Azure, Intune, AWS/IAM, certificate and secrets management).
• Manage Active Directory implementations and rebuild the ADCS environment.
• Work on various Okta projects and manage permissions effectively.
• Provide Tier 3 support for all Identity/Security Operations related issues.
• Develop policies and procedures for Identity and Security systems.
• Be a subject matter expert (SME) for SSO, SAML, and SCIM for application and business owners.
• Work closely with other security and infrastructure teams to proactively identify, protect, and defend the enterprise from cybersecurity threats and resolve complex issues.
• Mentor and educate other team members.
• Be available for on-call duties as required.

Basic Qualifications

• 4+ years of experience in at least 3 of the following:
• Automating cross-domain identity management (SCIM).
• Operating multi-factor authentication solutions.
• Managing integration APIs and web services (e.g., REST, SOAP, OAuth, OIDC).
• Role-based access control methods and systems, and privileged account management.
• Risk-based authentication and conditional access.
• Experience with enterprise access reviews and recertification.
• Advanced understanding of security principles (e.g., separation of duties, least privilege principle).
• Expert knowledge in core IAM Domains: Identity Governance and Administration, Privileged Access Management, Authentication, Authorization, Identity Lifecycle Management.
• Understanding of Change Management and Service Desk principles.
• Understanding of Agile frameworks like Kanban or Scrum.

Preferred Qualifications

• Expert in Okta Lifecycle Management and Active Directory Certificate Services (ADCS).
• Technical knowledge of PKI & API Security.
• Strong experience with Zero Trust Implementations.
• Demonstrated knowledge in three or more information technology related fields that include cloud services, authentication, PKI, system administration, software development, networking, or security architecture.
• Advanced knowledge of a range of security-related subjects such as threat hunting, threat modeling, digital forensics, reverse engineering, phishing, and penetration testing.
• Strong communication skills to interact with audiences that include customers, peers, and executive leadership.
• willingness to work on-call shifts