Identity Assurance Engineer 2 2023- 016

• Troubleshooting Active Directory performance authentication and replication issues
  

• Implementing low level delegation of access within Active Directory

• Understanding of Active Directory security audit data points and best practices for security settings
  

• Federated Identity Management Azure ADFS and Okta Federation
  

• Participate in the performance of daily system checks
  

• Infrastructure Health Monitoring
  

• Support Ticket Resolution as part of a support rotation
  

• Understanding of AD Attributes LDAP Queries PowerShell Scripting Group Policy Analysis GPO Configuration.
  

• Implementation of Directory Services Identity Management and Privilege Management solutions
  

• Implementation of Active Directory Security
  

• Integration and support of 3rd party Directory services products
  

• Collaborate with various teams to support and optimize onboarding and offboarding
  

  workflow and automation.
  

• Analyze execute and develop plans to integrate applications into our Okta platform.
  

• Plan and execute workflows to eliminate manual processes from the environment.
  

• Provide support to IT Team Helpdesk and Sys Admins.
  

• Create and maintain technical knowledge base documents.
  

• Assist with change management and communications with various internal teams as
  

  needed.
  

• Ensure design and solutions follow various Information Security Compliance Legal
  

  and/or regulatory requirements as applicable.
  

• Provide highlevel estimates for various tasks and projects and assist with project
  

  planning.
  

• Contribute to the identification evaluation selection and development of innovative
  

  solutions.
  

• This role can be remote hybrid or based out of our Alajuela Costa Rica offices
  

Education:

Bachelor s degree or equivalent experience

35 Years of experience in Information Security or Identity Access Management

• Experience engineering implementing and administering Active Directory Azure Active Directory Okta and Quest tools.
  

• Experience maintaining P AM program
  

• Experience with Windows and Linux
  

• Experience in Azure AWS OR GCP
  

• Independently manage workload and perform engineering tasks pertaining to Directory
  

  Services and Identity Management projects
  

• Qualifications
  

• Strong communication skills including the ability to influence others including proven ability to build strong relationships with leadership IT staff and peers
  

• Experience with Okta SSO MFA Universal Directory or Lifecycle Management.
  

• Splunk training/certification
  

• SANS Certifications
  

• Understanding of DevOps and SSDLC Principles
  

• CISA or CISM certification
  

• Knowledge of AWS and Azure
  

• Experience building and integrating Okta
  

• Experience scripting with Bash Powershell and/or Python
  

• Penetration testing and threat modeling experience is a plus
  

• Strong knowledge of permissions that are granted natively to various Microsoft BuiltIn
  

  Groups to perform Active Directory Administrative Functions knowledge of native permissions granted when building AD objects knowledge of permissions granted natively to BuiltIn Groups via GPOs and Local Policies
  

• Experience performing large scale upgrades migrations transitions and consolidation of Active Directory domains and forests
  

• Red Team assessment exposure and interaction is a plus