myGwork - LGBTQ+ Business Community
Lead Engineer, Identity Management
myGwork - LGBTQ+ Business Community, Culver City, California, United States, 90232
This job is with Sony Pictures Entertainment, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.
Lead Engineer, Identity Management responsible for the design, engineering, and operational excellence of Sony Pictures Entertainment's enterprise Identity and Access Management (IAM) ecosystem, with a primary focus on Okta Identity Governance, Identity Lifecycle Management, Security Operations, and Identity Compliance initiatives. This role leads the end‑to‑end engineering, configuration, and maintenance of SPE's Identity Governance and Administration (IGA) platform, ensuring secure, compliant, and efficient management of digital identities across all user populations.
Core Responsibilities
Lead the design, implementation, and operations of the Okta IGA platform, including lifecycle management (Joiner‑Mover‑Leaver processes), access governance, and compliance controls.
Partner with business and security stakeholders to develop and enforce identity governance policies, ensuring adherence to corporate, regulatory, and audit requirements.
Oversee access certification campaigns, entitlement reviews, and identity attestation processes to maintain least‑privilege access and compliance posture.
Develop detailed architecture, standards, design, and implementation documentation.
Manage directory services, including user provisioning, synchronization, and role‑based access control (RBAC) models.
Participate in or lead troubleshooting and incident resolution of complex high‑severity incidents.
Plan and manage project tasks, schedules, and resources related to Identity Access Management services.
Provide technical expertise to application teams in SSO, MFA, Identity Federation, Lifecycle Management, Enterprise Directory architecture and design, and resource provisioning.
Work with internal and external application support teams to extend the use of SPE's enterprise Identity Access Management solutions via Okta platform.
Identify and evaluate complex business and technology risks, internal controls, and related opportunities for internal control improvement.
Install, integrate, and deploy Identity Management solutions.
Communicate to internal users and external partners aspects of both the IAM product and its implementation at the technical and functional level appropriate for the situation.
Support audit findings, adherence to compliance and organizational change efforts.
Resolve Okta system issues escalated within the service level agreement.
Qualifications
Bachelor's degree or equivalent applied experience.
8+ years of experience as an Identity Engineer/Architect or similar role.
8+ years of direct experience with large‑scale enterprise level Identity Access Management (IAM) build and engineering.
6+ years of experience implementing IAM solutions.
5+ years in software development (web applications), preferably in an agile SaaS environment.
Proven experience designing and managing Okta Identity Governance and Administration (IGA) platforms.
Strong understanding of identity lifecycle automation, access governance, and compliance frameworks such as SOX.
Hands‑on expertise with Okta Workflows for automating identity processes and integrations.
Experience integrating Workday (or other HR systems) as a source of truth for identity lifecycle management.
Experience implementing security best practices (least privilege, Privileged Access Management, passwordless authentication).
Expertise in SSO, MFA, Federation, and directory integration (Active Directory, LDAP, SCIM).
Hands‑on scripting and automation (PowerShell, Python, or REST APIs) for identity orchestration.
Knowledge of emerging authentication technologies and protocols.
Okta Certified Professional (a plus).
Critical thinking, strategic planning, and process management skills.
Excellent written and verbal communication skills.
Excellent presentation and group dynamics skills.
Proven excellence in client/partner relationship management with senior IT leaders.
Proactive at finding solutions to complex problems.
The anticipated base salary for this position is $138,000–$167,000. This role may also qualify for annual incentive and/or comprehensive benefits. The actual base salary offered will depend on a variety of factors, including qualifications, years of relevant experience, level of education, certifications, and location of the position.
Sony Pictures Entertainment is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, age, sexual orientation, gender identity, or other protected characteristics.
SPE will consider qualified applicants with arrest or conviction records in accordance with applicable law.
To request an accommodation for participation in the hiring process, contact us at
SPE_Accommodation_Assistance@spe.sony.com .
#J-18808-Ljbffr
Lead Engineer, Identity Management responsible for the design, engineering, and operational excellence of Sony Pictures Entertainment's enterprise Identity and Access Management (IAM) ecosystem, with a primary focus on Okta Identity Governance, Identity Lifecycle Management, Security Operations, and Identity Compliance initiatives. This role leads the end‑to‑end engineering, configuration, and maintenance of SPE's Identity Governance and Administration (IGA) platform, ensuring secure, compliant, and efficient management of digital identities across all user populations.
Core Responsibilities
Lead the design, implementation, and operations of the Okta IGA platform, including lifecycle management (Joiner‑Mover‑Leaver processes), access governance, and compliance controls.
Partner with business and security stakeholders to develop and enforce identity governance policies, ensuring adherence to corporate, regulatory, and audit requirements.
Oversee access certification campaigns, entitlement reviews, and identity attestation processes to maintain least‑privilege access and compliance posture.
Develop detailed architecture, standards, design, and implementation documentation.
Manage directory services, including user provisioning, synchronization, and role‑based access control (RBAC) models.
Participate in or lead troubleshooting and incident resolution of complex high‑severity incidents.
Plan and manage project tasks, schedules, and resources related to Identity Access Management services.
Provide technical expertise to application teams in SSO, MFA, Identity Federation, Lifecycle Management, Enterprise Directory architecture and design, and resource provisioning.
Work with internal and external application support teams to extend the use of SPE's enterprise Identity Access Management solutions via Okta platform.
Identify and evaluate complex business and technology risks, internal controls, and related opportunities for internal control improvement.
Install, integrate, and deploy Identity Management solutions.
Communicate to internal users and external partners aspects of both the IAM product and its implementation at the technical and functional level appropriate for the situation.
Support audit findings, adherence to compliance and organizational change efforts.
Resolve Okta system issues escalated within the service level agreement.
Qualifications
Bachelor's degree or equivalent applied experience.
8+ years of experience as an Identity Engineer/Architect or similar role.
8+ years of direct experience with large‑scale enterprise level Identity Access Management (IAM) build and engineering.
6+ years of experience implementing IAM solutions.
5+ years in software development (web applications), preferably in an agile SaaS environment.
Proven experience designing and managing Okta Identity Governance and Administration (IGA) platforms.
Strong understanding of identity lifecycle automation, access governance, and compliance frameworks such as SOX.
Hands‑on expertise with Okta Workflows for automating identity processes and integrations.
Experience integrating Workday (or other HR systems) as a source of truth for identity lifecycle management.
Experience implementing security best practices (least privilege, Privileged Access Management, passwordless authentication).
Expertise in SSO, MFA, Federation, and directory integration (Active Directory, LDAP, SCIM).
Hands‑on scripting and automation (PowerShell, Python, or REST APIs) for identity orchestration.
Knowledge of emerging authentication technologies and protocols.
Okta Certified Professional (a plus).
Critical thinking, strategic planning, and process management skills.
Excellent written and verbal communication skills.
Excellent presentation and group dynamics skills.
Proven excellence in client/partner relationship management with senior IT leaders.
Proactive at finding solutions to complex problems.
The anticipated base salary for this position is $138,000–$167,000. This role may also qualify for annual incentive and/or comprehensive benefits. The actual base salary offered will depend on a variety of factors, including qualifications, years of relevant experience, level of education, certifications, and location of the position.
Sony Pictures Entertainment is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, age, sexual orientation, gender identity, or other protected characteristics.
SPE will consider qualified applicants with arrest or conviction records in accordance with applicable law.
To request an accommodation for participation in the hiring process, contact us at
SPE_Accommodation_Assistance@spe.sony.com .
#J-18808-Ljbffr