Okta IAM Engineer

OpenKyber LLC
Jackson Township, United States of America
28 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Jackson Township, United States of America

Tech stack

Microsoft Access
User Authentication
Biometrics
Configuration Management
Push Technology
Identity and Access Management
Log Analysis
OAuth
Openid Connect
Azure
Security Assertion Markup Language (SAML)
Okta
RSA SecurID
Cisco networks
Legacy Systems

Job description

  • Implementation and Migration: Lead the deployment of Microsoft Entra MFA, including migrating from legacy systems (like Cisco Duo or RSA SecurID) to Microsoft Authenticator.
  • Design and Implement proof of concept (POC) according to the business requirements.
  • Policy Configuration: Define, implement, and enforce Conditional Access policies to trigger MFA based on risk, user location, device state, or application sensitivity.
  • Authentication Methods Management: Configure various MFA methods, including the Microsoft Authenticator app (push notifications, biometrics), FIDO2 security keys, and certificate-based authentication.
  • Technical Support and Troubleshooting: Act as a Subject Matter Expert (SME) to resolve user issues, manage account lockouts, and support user registration for MFA.
  • Security Monitoring: Analyze logs, audit MFA compliance, and review sign-in reports to identify risks and maintain system integrity.
  • User Education: Develop training materials to educate users on the new authentication methods and ensure a seamless experience.

Requirements

  • Experience: 5+ years in Identity & Access Management (IAM), with specific experience in large-scale MFA rollouts.
  • Technical Knowledge: Deep expertise in Microsoft Entra ID, Microsoft Authenticator, and Conditional Access.
  • Protocols: Proficiency in identity protocols such as SAML, OAuth, and OpenID Connect.
  • Certifications: Certifications such as Microsoft Certified: Identity and Access Administrator Associate (SC-300) are highly desirable.
  • Problem-Solving: Ability to troubleshoot authentication issues and optimize user experience.

Apply for this position