Senior IAM Technologist
Bana Solutions
·
Posted:
July 31, 2023
·
Remote
About the position
The job overview for this position is that Bana Solutions is seeking a skilled Okta engineer to assist in the installation, integration, and deployment of Okta solutions in client environments. The engineer should have a strong understanding of Identity Access Management (IAM) and Access/Governance suites of products. They should be able to work collaboratively with system and application teams, communicate effectively with clients and partners, and have experience with authentication, Single Sign On (SSO), federation, and cloud infrastructure. The engineer should also have knowledge of business processes, IT controls, and network security architecture.
Responsibilities
- Lead the implementations and deployments of Okta solutions in client environments
- Cooperate with system and application teams to develop and/or create Enterprise Architecture integration strategies that enable secure access across programs and applications
- Detect opportunities to develop intellectual property, such as a connector or proprietary integrations, to support Okta engagements
- Experience with implementing, evolving, and supporting authentication, Single Sign On (SSO), federation, and cloud infrastructure
- Experience with secure authentication, access management systems, and Identity as a Service (IDaaS) technologies, specifically deployment and operations
- Communicate to clients and partners aspects of both the product and the implementation at the technical and functional level appropriate for the situation
- Advanced understanding of business processes, internal control risk management, IT controls and related standards
- Understand complex business and information technology management processes
- Experience with strong authentication technologies and protocols (e.g., PKI, S/Mime, SSL)
- Experience with Security Assertion Markup Language (SAML) and associated Single Sign On (SSO) technologies
- Experience with Active Directory, LDAP, Radius, and NTLM
- Experience with wireless authentication, One-time Password (OTP), and multi-factor authentication platforms
- Experience performing server administration, either Windows and/or Linux/Unix
- Experience with network security architecture concepts, including topology, protocols, components, and principles (e.g., application of defense-in-depth)
- Experience demonstrating knowledge of defense-in-depth principles and network security architecture
- Experience with communication methods, principles, and concepts that support network infrastructure
- Experience implementing the methods, standards, and approaches for describing, analyzing, and documenting an organization's enterprise IT architecture
- Excellent communication skills and extensive experience working with clients and partners
- Experience with Project Management duties (project planning, resource management, scope, schedule and status, documentation)
- Experience with QA duties is a plus (usability testing, performance testing, automated testing, test scripts, test cases and test plans)
- Experience with SCIM and JIT provisioning
- Experience integrating on-premise applications with a SSO solution
- Experience standing up a new Okta organization
- Experience integrating multiple IdPs using SAML
- Understanding of legacy authentication methods such as Kerberos and Header authentication
- Experience making API calls to the Okta API or another Identity Provider API
- Ability to effectively present SSO concepts to clients with various levels of technical understanding
- Okta Certified Administrator or greater certification preferred
- Experience with Okta CIAM preferred
- Experience integrating an IdP such as Okta with an IGA system such as SailPoint preferred
- Experience configuring proof-of-concept demo environments preferred
- Experience customizing authentication UI using authentication SDK preferred
Requirements
- Strong understanding of Identity Access Management (IAM) and Access/Governance suites of products
- Experience with implementing, evolving, and supporting authentication, Single Sign On (SSO), federation, and cloud infrastructure
- Experience with secure authentication, access management systems, and Identity as a Service (IDaaS) technologies
- Advanced understanding of business processes, internal control risk management, IT controls, and related standards
- Experience with strong authentication technologies and protocols (e.g., PKI, S/Mime, SSL)
- Experience with Security Assertion Markup Language (SAML) and associated Single Sign On (SSO) technologies
- Experience with Active Directory, LDAP, Radius, and NTLM
- Experience with wireless authentication, One-time Password (OTP), and multi-factor authentication platforms
- Experience performing server administration, either Windows and/or Linux/Unix
- Experience with network security architecture concepts and principles
- Experience with communication methods, principles, and concepts that support network infrastructure
- Experience implementing enterprise IT architecture
- Excellent communication skills and extensive experience working with clients and partners
- Experience with Project Management duties
- Experience with QA duties is a plus
- Experience with SCIM and JIT provisioning
- Experience integrating on-premise applications with a SSO solution
- Experience standing up a new Okta organization
- Experience integrating multiple IdPs using SAML
- Understanding of legacy authentication methods such as Kerberos and Header authentication
- Experience making API calls to the Okta API or another Identity Provider API
- Ability to effectively present SSO concepts to clients with various levels of technical understanding
- Okta Certified Administrator or greater certification preferred
- Experience with Okta CIAM preferred
- Experience integrating an IdP such as Okta with an IGA system such as SailPoint preferred
- Experience configuring proof-of-concept demo environments preferred
- Experience customizing authentication UI using authentication SDK preferred
Benefits
- Medical insurance plans for domestic partners and domestic children
- Health Savings Accounts (HSA) and Flexible Spending Account (FSA) options
- Dental insurance and vision coverage
- Gym membership discounts
- 24/7 Employee Assistance program (EAP) for mental health, stress management, dependent/elder care, nutrition, fitness, legal, financial issues, smoking/diabetic cessation
- Income protection through company-paid Term Basic Life insurance, Accidental Death and Dismemberment insurance, and Short- and Long-Term Disability insurance
- Optional Dependent Life Insurance
- Optional Hospital Indemnity Plan, Critical Illness Plan, LifeLock/Norton, College Tuition Benefit plan, Pet Discount Plan, and Legal Plan
- Paid Time Off (PTO) for vacation, personal time, and short-term illnesses
- Paid Parental Leave for maternity/paternity/adoption
- Nine paid holidays per year
- Additional leave for bereavement, jury duty, election day, and military reservist leave
- Eligibility for Bana Solutions 401(K) Retirement plan after 90-day period with company match
- Development opportunities including conferences/training/certifications, personal coaching, performance management, and R&D opportunities
- Bonus potential and rewards & recognition programs
- Team building activities and company events
- IT/Computer Equipment resources
- Commitment to diversity and equal employment opportunity
- COVID-19 vaccination requirement for newly hired employees with exemptions available