Enterprise Security Engineer III

Recorded Future

4d•$129,000 - $193,500•Remote

About The Position

With 1,000+ intelligence professionals serving over 1,900 clients worldwide, Recorded Future is the world’s most advanced, and largest, intelligence company! We're seeking a seasoned security professional to join our team as a Security Engineer specializing in Identity and Access Management (IAM). In this critical role, you'll act as the security team's subject matter expert for all identity-related matters, partnering directly with our dedicated Okta administration team. Your primary objective will be to drive the secure implementation of our IAM solutions, leveraging Okta Identity Governance (OIG) and ensuring our architecture aligns with Zero Trust principles. You'll provide expert guidance, define security requirements, and ensure our identity platforms are configured to protect against modern threats and meet compliance obligations.

Requirements

Deep technical expertise in the Okta platform and its security features (e.g., Adaptive MFA, API Access Management, ThreatInsight).
Hands-on experience with Okta Identity Governance (OIG), including access certification campaigns and access requests.
Demonstrable experience in designing, implementing, or auditing Zero Trust network and application access architectures.
Proven experience in a security-focused role, responsible for the governance and oversight of an enterprise IAM platform, including experience with other IAM platforms such as Microsoft Entra.
In-depth knowledge of modern authentication protocols such as SAML, SCIM, OAuth, and OpenID Connect (OIDC) and their security implications.
Strong collaborative skills and the ability to effectively influence technical teams and stakeholders.

Nice To Haves

Relevant industry certifications, such as Okta Certified Professional/Administrator, CISSP, or a Zero Trust certification.
Experience with other Identity Governance and Administration (IGA) platforms.
Proficiency in a scripting language (e.g., PowerShell, Python) to analyze data or test configurations.
Experience with Privileged Access Management (PAM) solutions (e.g., CyberArk, Keeper, Okta).
Familiarity with cloud identity providers and security concepts in AWS, Azure, or GCP.

Responsibilities

IAM Security Oversight & Consultation: Act as the security team's primary advisor for IAM. Provide security requirements and formal recommendations for changes to the Okta environment proposed by the administration team.
Access Governance with OIG: Lead access governance initiatives using Okta Identity Governance (OIG). Design and implement automated access requests, reviews, and certification campaigns to ensure privileges are appropriate and auditable.
Zero Trust Architecture: Drive the evolution of our Zero Trust security model, using identity as the core pillar. Design, document, and audit identity-centric security controls for network and application access that align with Zero Trust principles.
Secure Configuration & Policy: Define and maintain the security baseline for our Okta platform. Develop and enforce advanced security policies, including adaptive MFA, network zones, and device trust.
Threat Modeling and Feature Adoption: Proactively identify security risks within our IAM ecosystem. Champion the adoption and secure configuration of advanced Okta security features to mitigate threats.
Secure Application Integration: Establish the security requirements for integrating applications into our SSO/MFA platform. Review all new integrations, ensuring secure implementation of protocols like SAML, SCIM, and OIDC.
Incident Response: Serve as the IAM subject matter expert during security incidents, helping to investigate and respond to identity-based attacks.