Senior IAM Technologist
Bana Solutions
·
Posted:
July 31, 2023
·
Hybrid
About the position
The job overview for this position is that Bana Solutions is seeking a skilled Okta engineer to assist in the installation, integration, and deployment of Okta solutions in client environments. The engineer should have a strong understanding of Identity Access Management (IAM) and Access/Governance suites of products. They should be a self-starter with problem-solving abilities and the capability to effectively communicate and collaborate with customers, vendor partners, and colleagues. The engineer will play a technical role in implementing and supporting authentication, Single Sign On (SSO), federation, and cloud infrastructure.
Responsibilities
- Lead the implementations and deployments of Okta solutions in client environments
- Cooperate with system and application teams to develop and/or create Enterprise Architecture integration strategies that enable secure access across programs and applications
- Detect opportunities to develop intellectual property, such as a connector or proprietary integrations, to support Okta engagements
- Experience with implementing, evolving, and supporting authentication, Single Sign On (SSO), federation, and cloud infrastructure
- Experience with secure authentication, access management systems, and Identity as a Service (IDaaS) technologies, specifically deployment and operations
- Communicate to clients and partners aspects of both the product and the implementation at the technical and functional level appropriate for the situation
- Advanced understanding of business processes, internal control risk management, IT controls and related standards
- Understand complex business and information technology management processes
- Experience with strong authentication technologies and protocols (e.g., PKI, S/Mime, SSL)
- Experience with Security Assertion Markup Language (SAML) and associated Single Sign On (SSO) technologies
- Experience with Active Directory, LDAP, Radius, and NTLM
- Experience with wireless authentication, One-time Password (OTP), and multi-factor authentication platforms
- Experience performing server administration, either Windows and/or Linux/Unix
- Experience with network security architecture concepts, including topology, protocols, components, and principles (e.g., application of defense-in-depth)
- Experience demonstrating knowledge of defense-in-depth principles and network security architecture
- Experience with communication methods, principles, and concepts that support network infrastructure
- Experience implementing the methods, standards, and approaches for describing, analyzing, and documenting an organization's enterprise IT architecture
- Excellent communication skills and extensive experience working with clients and partners
- Experience with Project Management duties (project planning, resource management, scope, schedule and status, documentation)
- Experience with QA duties is a plus (usability testing, performance testing, automated testing, test scripts, test cases and test plans)
- Experience with SCIM and JIT provisioning
- Experience integrating on-premise applications with a SSO solution
- Experience standing up a new Okta organization
- Experience integrating multiple IdPs using SAML
- Understanding of legacy authentication methods such as Kerberos and Header authentication
- Experience making API calls to the Okta API or another Identity Provider API
- Ability to effectively present SSO concepts to clients with various levels of technical understanding
- Okta Certified Administrator or greater certification preferred
- Experience with Okta CIAM preferred
- Experience integrating an IdP such as Okta with an IGA system such as SailPoint preferred
- Experience configuring proof-of-concept demo environments preferred
- Experience customizing authentication UI using authentication SDK preferred
Requirements
- Strong understanding of Identity Access Management (IAM) and Access/Governance suites of products
- Experience with implementing, evolving, and supporting authentication, Single Sign On (SSO), federation, and cloud infrastructure
- Experience with secure authentication, access management systems, and Identity as a Service (IDaaS) technologies
- Advanced understanding of business processes, internal control risk management, IT controls, and related standards
- Experience with strong authentication technologies and protocols (e.g., PKI, S/Mime, SSL)
- Experience with Security Assertion Markup Language (SAML) and associated Single Sign On (SSO) technologies
- Experience with Active Directory, LDAP, Radius, and NTLM
- Experience with wireless authentication, One-time Password (OTP), and multi-factor authentication platforms
- Experience performing server administration, either Windows and/or Linux/Unix
- Experience with network security architecture concepts and principles
- Experience with communication methods, principles, and concepts that support network infrastructure
- Experience implementing enterprise IT architecture methods, standards, and approaches
- Excellent communication skills and extensive experience working with clients and partners
- Experience with Project Management duties
- Experience with QA duties (usability testing, performance testing, automated testing, test scripts, test cases, and test plans)
- Experience with SCIM and JIT provisioning
- Experience integrating on-premise applications with a SSO solution
- Experience standing up a new Okta organization
- Experience integrating multiple IdPs using SAML
- Understanding of legacy authentication methods such as Kerberos and Header authentication
- Experience making API calls to the Okta API or another Identity Provider API
- Ability to effectively present SSO concepts to clients with various levels of technical understanding
- Okta Certified Administrator or greater certification preferred
- Experience with Okta CIAM preferred
- Experience integrating an IdP such as Okta with an IGA system such as SailPoint preferred
- Experience configuring proof-of-concept demo environments preferred
- Experience customizing authentication UI using authentication SDK preferred
Benefits
- Medical insurance plans for domestic partners and domestic children
- Health Savings Accounts (HSA) and Flexible Spending Account (FSA) options
- Dental insurance and vision coverage
- Gym membership discounts
- 24/7 Employee Assistance program (EAP) for mental health, stress management, dependent/elder care, nutrition, fitness, legal, financial, smoking/diabetic cessation support
- Income protection through life insurance, accidental death and dismemberment insurance, and short- and long-term disability insurance
- Optional dependent life insurance, hospital indemnity plan, critical illness plan, LifeLock/Norton, college tuition benefit plan, and pet discount plan
- Paid Time Off (PTO) for vacation, personal time, and short-term illnesses
- Paid parental leave for maternity/paternity/adoption
- Nine paid holidays per year
- Additional leave for bereavement, jury duty, election day, and military reservist leave
- 401(K) retirement plan with company match
- Development opportunities such as conferences/training/certifications, personal coaching, performance management, and R&D opportunities
- Bonus potential and rewards & recognition programs
- Team building activities and company events
- IT/computer equipment resources
- Commitment to diversity and equal employment opportunity
- COVID-19 vaccination requirement with exemptions and testing options