Information Security Engineer

This position is a technical role responsible for the successful development, installation, integration, and deployment of Identity Management applications in the Inspire Brands environments and for assisting our implementation partners in that process. The main focus of your work will be with Okta, but you will be expected to perform similar duties for other applications for controlling authentication, including but not limited to Beyond Identity.

As a software engineer for the Identity Access Management (IAM) team, you will design and implement software in coordination with IAM Architects and Software Development Leads that supports strategic initiatives of the IAM team, integrate applications with enterprise security tools, and perform other core administrative tasks in Okta and adjacent systems.

This position will work closely with other key business areas within Inspire Brands and Information Security including HR, Infrastructure, Networking, and Audit & Compliance. Excellent verbal and written communication and emotional intelligence are important for performing successfully in this role.

Job Responsibilities :

• Integrating applications with Okta for SSO using federation protocols such as SAML 2.0, OAuth 2.0 and OIDC, WSFed, and WS-Trust. To support this, you should have the ability to troubleshoot web authentication flows with these protocols and other web authentication technologies.
• Implementing other controls based on Policies, Standards, and IT Controls for IAM related to SSO / MFA, including working with other teams to prioritize and develop short-term and long-term solutions to remediate security gaps, both in contexts directly and indirectly related to compliance.
• Writing software (scripts and components of applications depending on skills and interests). This will be an important part of making the team successful long-term and is occasionally required as part of customizations in the environment. Our team uses Python, Golang, Bash, PowerShell, and occasionally JavaScript in the course of our work.
• Providing written and verbal updates to our team and to project stakeholders. You'll need to provide updates through channels like Jira, Teams, or email. Additionally, you should expect that you will be in meetings regularly with internal or external stakeholders to discuss and collaborate on your work.
• Working in compliance with change management and Inspire standard operating procedures. You'll have to write thorough documentation of your work, and you will need to become familiar with and follow procedures for our environment.
• Participating in R&D and innovation activities, so that you can continue to build upon domain knowledge along with technical skills. We take this seriously, and we will expect you to as well. Reasoning about problems, determining viable solutions, and discussing those with leadership and teammates,
• followed by independent or collaborative execution of the solutions.
• Assisting in providing direction to development team members and to operations staff regarding production changes and issues. You will be part of a Tier 3 team that is expected to be able to provide detailed technical support in the cases of escalations that cannot be resolved by Tier 1 and Tier 2.
• Establishing credibility throughout the organization in systems, processes, and people by demonstrating Inspire Brands values.
• Characteristics and Experience We're Looking For Necessary
• Curiosity and desire to learn, ask questions, and have collaborative discussions
• Excellent written and oral communication in English
• High emotional intelligence and ability to collaborate with diverse sets of stakeholders, including members of the business and technology teams
• Experience in an enterprise or startup with core and advanced Okta integrations and features, including Okta
• Universal Directory, Okta MFA, LDAP Directory Integrations, and Okta Management APIs; integrations with Active Directory, Office 365, ServiceNow, etc.
• Background in other non-IAM security platforms and services
• Ability to analyze information and draw accurate conclusions
• Ability to prioritize projects and / or deliverables
• Formal education in Computer Science, Mathematics, a branch of Science, or Philosophy would be fantastic. If you don't have those, we'd be happy to see that you have some security-related certifications (e.g. CISSP, CEH, Security+)
• Okta-specific certifications (Professional, Administrator, Consultant, and / or Developer)
• Experience in designing and implementing Federation, Web Single-Sign On, multi-factor authentication systems
• Experience in developing solutions and applications with at least one, but preferably several general-purpose
• programming languages such as Golang, Python, PowerShell, Java, JavaScript
• Fluency with using shell environments in Windows, Unix, and Linux
• Experience with Git and collaborating with a team using version control in a hosted repository
• Experience with using Docker and Docker Compose to containerize applications
• Experience with other development technologies like cloud computing platforms (e.g. Azure, AWS, GCP) or databases (SQL or NoSQL)
• Experience with QA duties (usability testing, performance testing, automated testing, test scripts, test cases and test plans)
• Experience using quantitative analytics and visualizations to answer questions fortechnical and non-technical stakeholders and to drive technical and business decisions