5-10+ years of relevant practical experience in Identity and Access Management production support of large-scale, global environments
Azure Workspace experience a must have; ex: Active Directory (AD) and working knowledge of tools currently available to support AD, etc.
An understanding of architecture is a must have; understanding syncing from one direction (syncing from on-prem to Azure)
Okta Identity Management Solutions experience and/or comparable industry solutions
Expertise with the following network protocols: LDAP, DNS, DHCP, RADIUS, TCP/IP
Expertise with Office 365 integration and provisioning including Azure AD and AD Connect
Scripting skills: VBScript and PowerShell
Expertise with multi-factor or other extended authentication platforms
Job Description:
The Identity and Access Management Architect will be responsible for the service design, build and documentation all key elements of the Federation and Single Sign On infrastructure together with Active Directory, and other services participating in the authentication and authorization infrastructure of the company.
It is incumbent upon the Identity and Access Management Architect to ensure uniformity of services, adherence to standards, and consistency of infrastructure delivery. The Architect works with external partners to deliver quality services to Internal and External Customers.
The Identity and Access Management Architect is also responsible for providing daily support and maintenance for our Global Identity and Access Management Infrastructure. Responsibilities include but are not limited to maintenance of key services such as; Group Policies, Login Scripts, DNS, DHCP, DFS, PKI, SSL, Domain Controllers, MFA, Azure AD, and the on-boarding/off-boarding of employees, contractors, and consultants. The position also provides support for Federation Services, Single Sign-On (SSO), and Multi-Factor Authentication (MFA) between Partners, Cloud Providers and on-premise applications.
ESSENTIAL FUNCTIONS:
Follow the Architecting process, which includes Service Design, Build and Transition of all new initiatives, which includes phase gates reviews for key stakeholders
Maintains an understanding of all current and emerging Identity and Access Management technologies, open system standards, management technologies as they relate to the support of our infrastructure
Identifies and assumes an ownership role of Identity and Access Management Infrastructure, project delivery and security management
Provide leadership and act as a senior level mentor and provide support to technical personnel for any/all issues regarding service design, implementation, education and support of Identity and Access Management infrastructure and availability
Stays current on regional application and infrastructure projects to maintain effective availability and global consistency amongst regional infrastructure, integration, and configuration
Gathers project/application requirements from customers and stakeholders
Help define implementation roadmaps, support requirements and management infrastructure
Develops, documents, and supports scripts required to deliver a variety of Identity synchronization solutions.
Ensures that third party solutions follow all company standards
Provides senior management and general staff with accurate and complete status information
Sponsors, orchestrates, and implements technology pilots in order to evaluate emerging technologies and their applicability in support of company business requirements and strategic goals.
Acts as an internal consultant to all areas of IT in relation to Identity and Access Management
Adheres to all current Change and Problem management policies and procedures
Additional responsibilities include participation in global 7x24 support model, planning and organization of projects, tasks, and support initiatives that are assigned
ADDITIONAL RESPONSIBILITIES:
Participate as assigned on governance committees to develop policies and procedures for Identity and Access Management systems and services.
Participate in the creation of policies and procedures related to the overall Identity and Access Management program.
Core Technical Skills Required:
Minimum 5 to 10 years of relevant practical experience in Identity and Access Management production support of large-scale, global environments supporting over 20,000 users and globally diversified application authentication requirements.
Expertise in Okta Identity Management Solutions and/or comparable industry solutions
Possess a working knowledge and experience with Privilege Access Management solutions
Possess a working knowledge and experience implementing role-based access
Knowledge of Windows Server version 2012 and above, as well as Microsoft client operating systems
Expertise in Active Directory (AD) and working knowledge of tools currently available to support AD
Expertise with the following network protocols: LDAP, DNS, DHCP, RADIUS, TCP/IP
Expertise with Office 365 integration and provisioning including Azure AD and AD Connect
Scripting skills: VBScript and PowerShell
Expertise with multi-factor or other extended authentication platforms
Understanding of security concepts related to Public Key Infrastructures including Active Directory Certificate Services (AD CS)
Understanding of Active Directory Group Policy Objects (GPO)
General Skills and Competencies Required:
Bachelor's degree in computer science or related field and/or equivalent experience
Excellent English written and verbal communication skills
5+ years of experience supporting Identity and Access Management solutions
Strong project management skills and global experience
Strong technical and non-technical communication skills
Ability to establish and maintain high levels of client trust and confidence
A proven track record of driving the delivery of large, complex IAM projects
Experience with the application of problem-solving methodologies to understand and solve challenging problem
Ability to mentor staff in the use of analytical techniques
Empathetic perspective on the customer point of view