Employer Active
Troubleshooting Active Directory performance authentication and replication issues
Implementing low level delegation of access within Active Directory
Understanding of Active Directory security audit data points and best practices for security settings
Federated Identity Management Azure ADFS and Okta Federation
Participate in the performance of daily system checks
Infrastructure Health Monitoring
Support Ticket Resolution as part of a support rotation
Understanding of AD Attributes LDAP Queries PowerShell Scripting Group Policy Analysis GPO Configuration.
Implementation of Directory Services Identity Management and Privilege Management solutions
Implementation of Active Directory Security
Integration and support of 3rd party Directory services products
Collaborate with various teams to support and optimize onboarding and offboarding
workflow and automation.
Analyze execute and develop plans to integrate applications into our Okta platform.
Plan and execute workflows to eliminate manual processes from the environment.
Provide support to IT Team Helpdesk and Sys Admins.
Create and maintain technical knowledge base documents.
Assist with change management and communications with various internal teams as
needed.
Ensure design and solutions follow various Information Security Compliance Legal
and/or regulatory requirements as applicable.
Provide highlevel estimates for various tasks and projects and assist with project
planning.
Contribute to the identification evaluation selection and development of innovative
solutions.
This role can be remote hybrid or based out of our Alajuela Costa Rica offices
Education:
Bachelor s degree or equivalent experience
35 Years of experience in Information Security or Identity Access Management
Experience engineering implementing and administering Active Directory Azure Active Directory Okta and Quest tools.
Experience maintaining P AM program
Experience with Windows and Linux
Experience in Azure AWS OR GCP
Independently manage workload and perform engineering tasks pertaining to Directory
Services and Identity Management projects
Qualifications
Strong communication skills including the ability to influence others including proven ability to build strong relationships with leadership IT staff and peers
Experience with Okta SSO MFA Universal Directory or Lifecycle Management.
Splunk training/certification
SANS Certifications
Understanding of DevOps and SSDLC Principles
CISA or CISM certification
Knowledge of AWS and Azure
Experience building and integrating Okta
Experience scripting with Bash Powershell and/or Python
Penetration testing and threat modeling experience is a plus
Strong knowledge of permissions that are granted natively to various Microsoft BuiltIn
Groups to perform Active Directory Administrative Functions knowledge of native permissions granted when building AD objects knowledge of permissions granted natively to BuiltIn Groups via GPOs and Local Policies
Experience performing large scale upgrades migrations transitions and consolidation of Active Directory domains and forests
Red Team assessment exposure and interaction is a plus
Full Time