IAM Engineer - Okta
IAM Engineer - Okta
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
$ 100900 - 160800
1 Vacancy
Job Description
Are you ready for whats next
Innovation is the heart of Brunswick. See how your contributions will help transform vision into reality:
Position Overview:
As part of the talented Information Security team we are seeking a Senior Identity and Access Management (IAM) Engineer with deep expertise in Okta and modern authentication technologies. In this role you will lead the design and implementation of Okta passwordless authentication solutions across Windows Mac and Linux environments. You will be responsible for integrating Okta with a broad range of applications and systems (cloud platforms SaaS onpremises and custombuilt apps) ensuring seamless and secure access for users. This senior position requires a strong background in authentication/authorization protocols identity governance and privileged access management as well as excellent scripting and automation skills. The ideal candidate will combine handson technical knowhow with strategic thinking to enhance our IAM capabilities while meeting high security and compliance standards.
At Brunswick we have passion for our work and a distinct ability to deliver.
Essential Functions:
- Okta Passwordless Authentication: Design implement and manage Oktas passwordless authentication solutions (e.g. Okta FastPass or similar) for Windows Mac and Linux systems providing a frictionless and secure login experience for endusers across all
- Application Integration: Integrate Okta with a wide variety of applications and services: cloud infrastructure (AWS Azure Google Workspace Oracle) enterprise SaaS applications (Salesforce Workday ServiceNow etc. onpremises systems and custom inhouse applications. Ensure single signon (SSO) and federation are configured for optimal usability and security across all these environments.
- Authentication & Authorization Protocols: Implement and support modern IAM protocols and standards including OIDC/OAuth 2.0 SAML 2.0 LDAP and Kerberos. Develop secure authentication and authorization flows for applications and troubleshoot any SSO/federation issues related to these protocols.
- Okta Administration & Optimization: Serve as the Okta subject matter expert handling daytoday administration and advanced configuration of the Okta platform. Configure and optimize Okta Workflows automated user provisioning/deprovisioning group management access management policies and multifactor authentication (MFA) strategies to meet the organizations needs.
- Identity Governance & PAM Collaboration: Work closely with the Identity Governance team and Privileged Access Management team to ensure our IAM program is comprehensive. Leverage SailPoint for identity governance (user lifecycle management access reviews) and CyberArk for privileged account management integrating these solutions with Okta where appropriate. Contribute to the development or customization of SailPoint and CyberArk integrations to enhance overall identity security.
- Security and Compliance: Enforce IAM best practices and company security policies in all solutions. Ensure that identity and access controls meet compliance requirements for standards such as SOC 2 ISO 27001 and PCIDSS. Regularly review and update configurations to maintain a strong security posture and pass compliance audits.
- Automation and Scripting: Develop and maintain scripts and tools (using PowerShell Python or similar) to automate repetitive IAM tasks streamline provisioning processes and quickly resolve identity or access issues. Use automation to improve efficiency and reduce the potential for manual errors in user account management and application access configurations.
- Troubleshooting and Support: Investigate and resolve complex IAM issues related to Okta and integrated systems. Provide advanced support for authentication problems identify root causes and implement preventive measures. Mentor junior engineers and educate application teams on IAM and Okta best practices.
- Documentation and Strategy: Create and maintain thorough documentation for IAM configurations Okta integrations and operational procedures. Participate in developing the IAM strategy and roadmap recommending improvements and new features to adopt (such as emerging passwordless technologies or security enhancements) in line with industry best practices and business needs.
Diversity of thought and experiences is fundamental when imagining the unimaginable. Certain skillsets/experiences are necessary; however others can be developed along the way.
Required Qualifications:
- Bachelors degree in Computer Science Information Systems or a related field (or equivalent work experience)
- 5 years of experience in Identity and Access Management with at least 3 years of handson Okta administration and engineering in a production environment.
- Strong scripting skills in PowerShell and Python are required
- Experience configuring Okta org settings policies and features: e.g. setting up and tuning Okta MultiFactor Authentication (MFA) policies Adaptive MFA device trust Lifecycle Management (LCM) Universal Director and custom Okta Workflowas/Automation
- Proven expertise in Okta Identity Cloud including passwordless authentication implementations and advanced feature configuration. Experience deploying Okta for device or desktop login on Windows/Mac and integrating Okta Verify or similar authenticators for Directory Services
Preferred Qualifications:
- Okta Certified Administrator/Professional (or higher) is a plus.
- Identity Governance and PAM Knowledge: Familiarity with SailPoint Identity Governance platform (IdentityIQ or IdentityNow) and CyberArk Privileged Access Management solutions. Experience developing or customizing workflows/rules in SailPoint and managing secure vaulting rotation or automation in CyberArk is a strong advantage.
- Security & Compliance: Strong knowledge of security best practices and compliance frameworks (SOC 2 ISO 27001 PCIDSS) as they relate to identity and access management. Experience ensuring that IAM implementations meet regulatory and audit requirements (e.g. enforcing least privilege maintaining audit logs access recertifications).
- ProblemSolving & Communication: Excellent analytical and problemsolving skills especially in diagnosing authentication or access issues in a complex environment. Strong communication skills with the ability to work crossfunctionally collaborating with security architects IT administrators developers and compliance teams. Proven ability to document solutions and train others in IAM best practices.
- Adaptability: Ability to work independently and handle multiple projects or issues simultaneously in a fastpaced environment. A proactive mindset toward learning new technologies and staying uptodate with the latest advancements in IAM authentication methods and security threats.
The anticipated pay range for this position is $100900 $160800 annually. The actual base pay offered will vary depending on multiple factors including job related knowledge/skills relevant experience business needs and geographic location. In addition to base pay this position is eligible for an annual discretionary bonus.
At Brunswick it is not typical for an individual to be hired at or near the top end of the salary range for their role. Compensation decisions are dependent upon the specifics of the candidates qualifications and the business context.
This position is eligible to participate in Brunswicks comprehensive and highquality benefits offerings including medical dental vision paid vacation 401k (up to 4 match) Health Savings Account (with company contribution) wellbeing program product purchase discounts and much more. Details about our benefits can be found here.
Why Brunswick:
Whatever tomorrow brings well be at the leading edge. As the clear leader in the marine industry were committed to our values and supporting our exceptional people. We offer and encourage growth opportunities within and across our many brands. In addition were proud of being recognized for making a splash with numerous awards!
About Brunswick:
Brunswick Corporation is a leader in the marine industry and were looking for people just like you to take part in the movement towards better boating for all. We rely on the thoughtful input of people from all backgrounds to create compelling innovative products for our customers around the globe. As such diversity equity and inclusion are priorities in the enduring culture of our company. As a world leader in emerging recreational products and technologies when you join our team you become part of some of the most innovative forwardlooking brands in the marine industry today.
Next is Now!
We value growth and development recognizing that people come with a wealth of experience and talent beyond just the technical requirements of a job. If your experience is close to what you see listed here please still consider applying.
Brunswick is an Equal Opportunity Employer and considers all qualified applicants for employment without regard to race color religion sex sexual orientation gender identity national origin age disability protected veteran status or any other characteristic protected by federal state or local law. Diversity of experience and skills combined with passion is key to innovation and inspiration and we encourage individuals from all backgrounds to apply. If you require accommodation during the application or interview process please contact for support.
For more information about EEO laws click here
Brunswick and Workday Privacy Policies
Brunswick does not accept applications inquiries or solicitations from unapproved staffing agencies or vendors. For help please contact our support team at: or.
All job offers will come to you via the candidate portal you create when applying through a posted position through https:/// If you are ever unsure about what is being required of you during the application process or its source please contact HR Shared Services at or .
#Brunswick CorporationEmployment Type
Full-Time
