IAM Architect or Principle Architect with OKTA and IAM || Chicago, IL

Hello.,
 
I am hiring for below role, Please share resume asap.
 

Title – OKTA – Identity and Access Management||Principal Architect SSO Engineering 

Location – Chicago, IL  

 

Job Description – 

Basically client perspective they are looking at Identity, authentication, authorization Architect with some application development and Cloud background or vice versa. 

Cloud architects/Application architects with security skills can also be interviewed

 

Principal, Security Engg

 

Job Description

 

We are seeking a highly skilled Identity, Authentication and Authorization Architect(IAA) with deeper expertise in various security products, authentication, authorization, access management, governance, controls, regulatory requirements etc. As a key member of Workforce Identity, Authentication and Authorization(IAA) you will play a vital role in ensuring the secure and compliant implementation of various solutions (Hybrid and Cloud). 

Requirements/Responsibilities

 

  • Design Identity centric Workforce Security solutions to ensure secure and efficient authentication and access management aligned with the industry frameworks and standards (NIST CSF, COBIT, SOC, GDPR etc)
  • Guides the architectural development of identity solutionsaccess patternsmodern security protocolspracticing Zero trust, least privileged, defense in depth principles 
  • Review and provide feedback on Identity, Authentication and Access management related security solutions proposed by stakeholders and can provide consultation to the partners and IT Management
  • Acts as cybersecurity expert to participate in solutions from IAA perspective spanning end user computing, proxy solutions, MFASSOconditional accessesdevice based authentication, VPN solutions, Desktop virtualization solutions, Passwordless, Yubikey, bio-metric solutions, identity and governance scenarios, network segmentations, Secrets Management, Certificates Management, Automation, role based access control, Privileged identity management, end user computing, Just in time accesses, data protection solutions etc.
  • Thoroughly understands and provides solutions considering Security technology choices, such as design, protocols support, secrets managementdata security, client server communication, token handlingSession managementcredential vaulting, OIDCOAuth flows, authorization patterns, identity federation, cloud architecturescryptograpgycloud native services, cloud security etc.
  • Good understanding of Cloud Infrastructure Entitlement Management solution (CIEM) to ensure continuous improvement in Security Posture by providing consultations to application teams
  • Design target architectures and roadmaps considering IAM security control frameworks and audit requirements
  • Awareness of Cyber Security Risk management principles and frameworks, supply chain risk and third party risk assessment controls
  • Understanding and application of threat modeling concepts and methodologies
  • Displays a balanced, cross-functional perspective under information security, liaising with other towers and business to help improve Security centric designs
  • In-depth knowledge and experience on Entra IDEPM, SentinelAzure, M365, AWS Security
  • Knowledge on Okta, PingFederate, Entitlement management solutions
  • In-depth knowledge of various cybersecurity frameworks, standards, and identity governance and administration
  • Strong knowledge on Identities management on Azure AD with OAuth, OIDC, SAML, SSO, MFA, Conditional access policiesMFAKerberos, LDAP, Identity Federationsetc.
  • Experience in providing security solutions for Java based Micro servicesReact based frontends and Android/iOS based mobile applications on the Azure
  • Hands-of experience in JWT, session handlingCode signing, Certificate authentication, TLS/SSL, API Security, Application registration, application integration scenarios etc.
  • Exposure to API ManagementFirewalls, DLP, VPNs, DNS, Azure Defender, MCAS, Sentinel, WAFs, Application Gateways, NSGs, App Proxy, Radius clusters, CDN etc.
  • Deeper understanding of Applications security, OWASP standards, security best practices, browser compatibilities/storages/cookies
  • Deeper understanding on Cloud Security areas such as Policies, RBAC, activities, identities, privileged access management etc
  • Authentication/Authorization/Auditing/Accounting frameworks and hands-on experience, Privilege Identity/access management on the cloud
  • Ability to support operations in troubleshooting complex identity scenarios with hands-on experience on Sentinel/KQL/Audit logs etc.
  • Understanding of IaC, CI/CD pipeline, automationand vulnerability scanning tools, Terraform, Powershell, bash script, Azure CLI
  • Very good understanding of concepts related to docker Security, container orchestartions/KubernetesmTLS, Dapper, Service Mesh and security scenarios

 

Qualifications

  • Bachelor's degree in computer science or a related discipline and experience in information security, or an equivalent combination of education and work experience.
  • Deep knowledge of application or infrastructure systems architecture, usually having experience with multiple system technologies.
  • Excellent consultative and communication skills, and the ability to work effectively with client, partner, and IT management and staff.
  • Fifteen years of experience in the Information Security role. Seven years of experience as an IAM Architect
  • CISSP, CSSP, or Cloud security certification preferred
  • Strong collaboration skills and a analytical ability
  • Certifications on Azure, AWS security will be preferred

 

Green colored text indicates – Good to have skills

Blue colored text indicated – Must to have skills

 
 
 

To unsubscribe from future emails or to update your email preferences click here

0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Most Voted
Newest Oldest
Inline Feedbacks
View all comments