IAM OKTA Analyst

The IAM Analyst will be part of our team of technology professionals responsible for the implementation and delivery of Identity and Access Management (IAM) projects.  The role will be responsible for the support and operations of IAM tools and will assist application teams with development and integration of role-based management and the implementation and operation of IAM tools.

• Provide Subject Matter Expertise (SME) for ForgeRock IAM and other IAM Tools. 
• Assists in managing a suite of ForgeRock IAM products and services used within the firm to secure identity and access to resources, sensitive data, applications, and services.
• Work closely with customers across and external to the firm using or looking to adopt these tools and/or services. 
• Support IAM becoming a product differentiator by providing best in class support and functionality.
• Assists in guiding project teams with the implementations consistent with company policies and practices.
• Interpret business requirements and functional specifications to deliver IAM solutions and sustain alignment with company policy’s and standards.
• Work with development and QA teams to ensure the use of secure coding practices and verification methods.
• Operate the Identity and Access Management (ForgeRock).
• Inform budgets and assist engineering and operations in resource planning.
• Develop engagement with architecture teams to align roadmaps with target state architecture.
• Provide detailed risk and remediation guidelines, as well as perform remediation activities where applicable.
• Collaborating with Product Management and Engineering to enhance products.
• Ensure new system builds entail appropriate security packages, tools, logging, and monitoring applications are configured properly.

EDUCATION 

• Bachelor’s Degree or greater in Computer Science, Engineering or another technical discipline preferred. 
• Relevant combination of education and experience may be considered in lieu of degree. 
• CISSP, CISA, GIAC, or related information security certifications are preferred. 
• Continuous learning, as defined by the Company’s learning philosophy, is required. 
• Certification or progress toward certification is highly preferred and encouraged.

EXPERIENCE

• 1-3 years of increasing responsibility within IT Security or related technical field required. 
• OKTA experience preferred.
• 1 year of experience working with at least one IAM product suite (ForgeRock Open IDM, Sun Identity Manager, Oracle Identity, or similar systems desired). 
• Java and .Net programming language experience required.

QUALIFICATIONS 

• Knowledge of modern Identity Management protocols and standards, frameworks, federation technologies and solutions.
• Knowledge of service-oriented architecture for cloud-based services; knowledge of Microsoft Azure is preferred.
• Knowledge of Identity Federation in the Cloud with experience working with SAML, OpenID, and OAuth technologies.
• Knowledge of Enterprise Authentication, Web Security, and Message level security desired. 
• Knowledge of building micro services.
• Knowledge of interfacing with multiple information technology application and infrastructure development and support areas within an enterprise.
• Knowledge of one or more of the following database environments: Oracle 11g/12c and MS SQL Server 2008/10/14/16.
• Knowledge of one or more of the following operating system environments: Microsoft Windows Server 2012/2016 and Redhat Linux ES 4/5/6/7.
• C#, ASP.NET and JAVA knowledge.
• Knowledge and familiarity with conducting security code reviews in one of more of the following languages: C#, ASP.NET, JAVA, WCF.
• Knowledge of Microsoft Development tools specifically Visual Studio Team Foundation Server.
• Hands-on knowledge of the following technologies: LDAP, ADAM, SSO, SAML, Active Directory, OAuth, OpenID.
• Familiarity with network architecture and topologies.
• Familiarity with APIs, web services (RESTful and SOAP), and SOA (Service Oriented Architecture).
• Familiarity with Internet Information Server (IIS).
• Proficiency with Apache.
• Proficiency with firewalls, iptables, whitelisting, and security groups.
• Proficiency with Cloud and hybrid Cloud/On-prem security models.
• Proficiency with release management (and DevOps) of custom software.
• Proficiency with Microsoft Office with experience with diagraming with Visio.
• Knowledge of secure software development concepts and methodologies.
• Knowledge of application security technical controls and common vulnerabilities; Experience conducting security code review, threat modeling, or application penetration assessments.
• Demonstrates the ability to work in a fast-paced environment where organizational skills are essential.
• Demonstrates strong problem solving, analytical, interpersonal, and ownership skills.
• Possess excellent collaboration skills with a wide variety of internal and external team members.
• Ability to interact with technical managers and development teams to articulate requirements and processes while collaborating on design options, implementation, testing and user acceptance.
• Competent in advanced communication skills including the ability to translate technical security concepts to business-oriented audiences.
• Experience in interfacing with multiple information technology application and infrastructure development and support areas within an enterprise.
• Demonstrated ability to develop metrics, perform critical analysis and develop executive decision support content.

WORKING CONDITIONS:  

Work is performed in an office setting with no unusual hazards.  Frequent travel is required with some overnight stays. 

PAY RANGE:  

Actual compensation decision relies on the consideration of internal equity, candidate’s skills and professional experience, geographic location, market and other potential factors. It is not standard practice for an offer to be at or near the top of the range, and therefore a reasonable estimate for this role is between $55,300 and $112,000

#AF-AD1