PepsiCo
Overview
The OKTA Identity Access Management (IAM) Engineer is the senior technical SME / Architect in the IAM organization, responsible for architecting, designing, implementing, and supporting access management solutions in distributed on-premises and cloud infrastructure. Role requires troubleshooting complex technical issues, working closely with enterprise architects to ensure security solutions mitigate identified risks while meeting business objectives and regulatory requirements. Provides technical leadership and delivers complex projects. This role can be based out of Plano, Texas or Purchase, NY and requires coming into the office. Responsibilities
Provides subject matter expertise in architecting, solutioning and implementing access management requirements. Provides advanced architecture and engineering expertise to automate and administer identity and compliance requirements. Drives planning and execution of identity management roadmaps and technology enhancements. Creates and maintains standards surrounding documentation related to identity processes, procedures, and infrastructure. Assesses current applications and architecture to ensure current implementations align with industry guidelines, best practices, and management-approved standards. Contributes to the development of the workforce and customer identity and access management strategy. Collaborates with Enterprise Architects, application development teams, Cybersecurity staff, and the infrastructure team to define the enterprise IAM strategy. Provides level 3 production support to diagnose and troubleshoot production issues. Adapts the architecture to evolving security conditions and supports security guidelines. Develops and delivers documentation, training, and knowledge transfer to internal and external stakeholders. Champions and fosters an Agile DevOps culture by promoting cross-functional collaboration, continuous integration, and continuous delivery practices. Compensation and Benefits
The expected compensation range for this position is between $106,400 - $178,100. Location, confirmed job-related skills, experience, and education will be considered in setting actual starting salary. Your recruiter can share more about the specific salary range during the hiring process. Bonus based on performance with target payout of 12% of annual salary. Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement. Comprehensive benefits package to support employees and families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan. Qualifications
10+ years of overall IT experience. 8+ years of hands-on experience in authentication architecture, solutioning and design roles. 8+ years of hands-on experience with Okta and/or relevant access management tools. 7+ years of scripting (PowerShell, Python) and development (Java, J2EE, JavaScript, React, REST API) experience. 5+ years working with Agile and DevOps tools and methodologies. Minimum Okta Certified Administrator: Okta Certified Consultant and/or Okta Certified Developer preferred. BS/BA degree or equivalent experience. CISSP / CIAM Certification is a plus. Preferred Qualifications
Extensive experience in architecting, designing and solutioning authentication services. Broader IAM domain experience with focus on information security. Strong expertise in designing solutions with standard IAM platforms like Okta, PingFederate for enabling single sign-on for cloud and on-prem apps. Hands-on experience building SSO solutions with protocols like SAML, OAuth, OIDC, and headers-based applications; experience with Azure AD, Ping, SiteMinder. Strong hands-on experience in designing and architecting Consumer identity and access management solutions. Understanding of security principles such as zero trust and passwordless authentication. Working knowledge of Okta Lifecycle Management and Administrative APIs. Experience with solutions like CyberArk, BeyondTrust, RSA or comparable products. REST integration concepts. Experience in directory services such as Oracle LDAP and AD. Experience with cloud-based authentication solutions (e.g., AWS Cognito, Azure AD, Okta). Strong development experience - Java, Node.js, React, Spring Boot, REST API, JavaScript. Experience with scripting languages such as JavaScript, Python, Ruby, PowerShell. Experience building CI/CD pipelines in Azure or AWS. Automation of deployment and CI/CD pipelines using Ansible and Terraform. Experience with monitoring tools like Splunk, ELK, Prometheus, or similar. Experience with Docker, Kubernetes; Linux and Windows platforms, middleware, Apache, and load balancers. Experience developing workflows, custom connectors, and troubleshooting complex issues. Strong troubleshooting of infrastructure issues spanning network, web servers, SSL certificates, middleware, cloud components, etc. Experience with Agile and DevOps tools and methodologies. CISSP / CIAM Certification is a plus. Experience in SiteMinder is preferred. Non-Technical skills
Exceptional communication and interpersonal skills with the ability to influence and collaborate with diverse stakeholders. Deliver outcomes with minimal supervision; self-starter and self-motivated. Strong analytical, problem-solving, and decision-making skills, with the ability to manage complex and competing priorities. Strong project management and organizational skills, with the ability to deliver high-quality results. Ability to think strategically and propose creative solutions. Ability to synthesize complex requirements into simple business practices. Flexible and adaptable to changing priorities. Seniority level : Not Applicable Employment type : Full-time Job function : Information Technology Industries : Manufacturing and Food and Beverage Services
#J-18808-Ljbffr
The OKTA Identity Access Management (IAM) Engineer is the senior technical SME / Architect in the IAM organization, responsible for architecting, designing, implementing, and supporting access management solutions in distributed on-premises and cloud infrastructure. Role requires troubleshooting complex technical issues, working closely with enterprise architects to ensure security solutions mitigate identified risks while meeting business objectives and regulatory requirements. Provides technical leadership and delivers complex projects. This role can be based out of Plano, Texas or Purchase, NY and requires coming into the office. Responsibilities
Provides subject matter expertise in architecting, solutioning and implementing access management requirements. Provides advanced architecture and engineering expertise to automate and administer identity and compliance requirements. Drives planning and execution of identity management roadmaps and technology enhancements. Creates and maintains standards surrounding documentation related to identity processes, procedures, and infrastructure. Assesses current applications and architecture to ensure current implementations align with industry guidelines, best practices, and management-approved standards. Contributes to the development of the workforce and customer identity and access management strategy. Collaborates with Enterprise Architects, application development teams, Cybersecurity staff, and the infrastructure team to define the enterprise IAM strategy. Provides level 3 production support to diagnose and troubleshoot production issues. Adapts the architecture to evolving security conditions and supports security guidelines. Develops and delivers documentation, training, and knowledge transfer to internal and external stakeholders. Champions and fosters an Agile DevOps culture by promoting cross-functional collaboration, continuous integration, and continuous delivery practices. Compensation and Benefits
The expected compensation range for this position is between $106,400 - $178,100. Location, confirmed job-related skills, experience, and education will be considered in setting actual starting salary. Your recruiter can share more about the specific salary range during the hiring process. Bonus based on performance with target payout of 12% of annual salary. Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement. Comprehensive benefits package to support employees and families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan. Qualifications
10+ years of overall IT experience. 8+ years of hands-on experience in authentication architecture, solutioning and design roles. 8+ years of hands-on experience with Okta and/or relevant access management tools. 7+ years of scripting (PowerShell, Python) and development (Java, J2EE, JavaScript, React, REST API) experience. 5+ years working with Agile and DevOps tools and methodologies. Minimum Okta Certified Administrator: Okta Certified Consultant and/or Okta Certified Developer preferred. BS/BA degree or equivalent experience. CISSP / CIAM Certification is a plus. Preferred Qualifications
Extensive experience in architecting, designing and solutioning authentication services. Broader IAM domain experience with focus on information security. Strong expertise in designing solutions with standard IAM platforms like Okta, PingFederate for enabling single sign-on for cloud and on-prem apps. Hands-on experience building SSO solutions with protocols like SAML, OAuth, OIDC, and headers-based applications; experience with Azure AD, Ping, SiteMinder. Strong hands-on experience in designing and architecting Consumer identity and access management solutions. Understanding of security principles such as zero trust and passwordless authentication. Working knowledge of Okta Lifecycle Management and Administrative APIs. Experience with solutions like CyberArk, BeyondTrust, RSA or comparable products. REST integration concepts. Experience in directory services such as Oracle LDAP and AD. Experience with cloud-based authentication solutions (e.g., AWS Cognito, Azure AD, Okta). Strong development experience - Java, Node.js, React, Spring Boot, REST API, JavaScript. Experience with scripting languages such as JavaScript, Python, Ruby, PowerShell. Experience building CI/CD pipelines in Azure or AWS. Automation of deployment and CI/CD pipelines using Ansible and Terraform. Experience with monitoring tools like Splunk, ELK, Prometheus, or similar. Experience with Docker, Kubernetes; Linux and Windows platforms, middleware, Apache, and load balancers. Experience developing workflows, custom connectors, and troubleshooting complex issues. Strong troubleshooting of infrastructure issues spanning network, web servers, SSL certificates, middleware, cloud components, etc. Experience with Agile and DevOps tools and methodologies. CISSP / CIAM Certification is a plus. Experience in SiteMinder is preferred. Non-Technical skills
Exceptional communication and interpersonal skills with the ability to influence and collaborate with diverse stakeholders. Deliver outcomes with minimal supervision; self-starter and self-motivated. Strong analytical, problem-solving, and decision-making skills, with the ability to manage complex and competing priorities. Strong project management and organizational skills, with the ability to deliver high-quality results. Ability to think strategically and propose creative solutions. Ability to synthesize complex requirements into simple business practices. Flexible and adaptable to changing priorities. Seniority level : Not Applicable Employment type : Full-time Job function : Information Technology Industries : Manufacturing and Food and Beverage Services
#J-18808-Ljbffr