Senior Identity Architect

Discount Tire - Scottsdale, AZ

posted about 13 hours ago

- Senior
Hybrid - Scottsdale, AZ
Motor Vehicle and Parts Dealers

About the position

Here at Discount Tire, we celebrate the spirit of our people with extraordinary pride and enthusiasm. Our business has been growing for 63 years and now is the best time in our history to join. We are opening more locations every year and always looking for the most qualified individuals to join us in our growth. We are a Company that promotes from within, both in our retail and corporate operations. Under minimal supervision, the Identity Architect is responsible for defining the overall architecture of the enterprise identity portfolio. With a focus on developing and delivering architectural patterns and practices that build strategic features across the entire enterprise. This person will have a deep knowledge of multiple technology areas, processes, methodologies, standards, products, and frameworks. Advises on high-level, complex solution development, architecture, and management processes from concept ideation through development, launch, and maintenance. Provides technical leadership and support to ensure timely delivery of reliable, flexible, secure, scalable, and cost-efficient architectures. Liaises with the Enterprise Architecture team to ensure consistency with agreed upon process and application taxonomies.

Responsibilities

  • Deliver Okta Identity Management and designing solution patterns for typical and custom identity frameworks across both infrastructure and development life cycles
  • Lead engineering and solution design with Identity Provider, including base SSO setup via SAML/OpenID Connect, B2B Federation Connection setup, and with standard expression logic and PowerShell scripts used in analytical reporting and custom attribute patterns
  • Serve as the department expert for architectural solution design and documentation including PowerShell scripting to maintain and design analytics reports in Okta
  • Design and deliver appropriate architecture that support identity & access needs in meeting business goals of secure design, lifecycle, and stable operations
  • Serve as the resident expert for IAM disciplines such as Identity, Sign-On, Federation, Multifactor Authentication, Privileged Access Management, Directory Services, Role-based Governance & Administration, API Security, Key and token Lifecycle, Identity Risk, Identity threat modeling
  • Establish, document, and publish reference architecture models and promote use and adoption
  • Develop standards and reference architecture for repeatable use cases
  • Produce and implement enterprise-level designs for Azure authentication and on prem AD, as well as Azure B2B/C authentication for global initiatives
  • Drive enforcement of policies, procedures, and associated plans for system security administration
  • Define standards and reference architecture for Identity and access protection within secure hybrid multi-cloud environments
  • Design solutions to on-board third party and cloud applications using various federation protocols
  • Design full user provisioning and de-provisioning process, in line with regulatory and industry needs for termination
  • Enable application movement to modern authentication in the hybrid multi-cloud environment through use of SSO and Federation
  • Design, develop, deploy, integrate, and support Single Sign On (SSO) using DevOps model for all types of devices
  • Plan and develop security measures to safeguard information against accidental or unauthorized modification, destruction, or disclosure
  • Collaborate with management to identify security best practices
  • Provide engineering support for the Identity and Authentication team
  • Support the enterprise SSO platform to enable a secure and enhanced authentication experience for enterprise users
  • Work on a daily basis with Agile engineering scrum teams and participate in daily standups, grooming and planning to deliver product features
  • Partnering with cross-functional teams to build Identity products and constantly innovate on APIs, platform, web (desktop/mobile) and native apps (iOS and Android)
  • Facilitate cost effective solutions for integration of target applications to IAM platforms and services
  • Remain informed on trends and issues in the security industry
  • Provide effective communications to senior management, peers, team, stakeholders, external parties as required

Requirements

  • 7+ years of experience in Information Security with 7+ year in Identity Federation space
  • Passionate about Identity and Access Management with background in OAuth 2.0, OpenID connect, SAML, WS-Fed, SCIM and API authorization/access management
  • Prior experience in areas like password management, encryption, two factor authentication, Biometrics, WebAuthn and FIDO standards, risk-based authentication, and strong customer authentication
  • Knowledge in areas like REST APIs, GraphQL and React JS/Native
  • Knowledge and experience with information security, authorization and authentication systems, infrastructure, and implementation techniques
  • Understand the complexities of a large-scale platform with a focus on scalability, reliability and resiliency
  • Strong hands-on experience with SSO & MFA leveraging AD Connect
  • Strong hands-on experience with industry standard SSO technologies and protocols (OAuth, OpenID Connect, SAML)
  • Expertise in Identity and Authentication solutions such as Active Directory, Azure AD, Azure B2B, Azure B2C and Okta
  • Knowledge of LDAP and Active Directory services, MFA, Risk based authentication and privileged access management
  • Holistic view of IAM (Authentication and Authorization Data, Endpoint Security, Network Security, Policy Engine)
  • Ability to utilize various programming or scripting languages such as PowerShell
  • Understanding of API design concepts, RESTful Services, and modern application interaction patterns
  • Familiarity with deployments and integration of IAM solutions within the cloud (Azure, AWS, GCP)
  • Experience in deploying large-scale, global projects and programs
  • Familiarity with IT security and risk management practices
  • High sense of ownership, urgency, and drive
  • Excellent oral and written communication skills with the ability to adapt your message to the technical level of the audience
  • Demonstrated excellent technical writing skills and project/program management experience
  • Understanding of Agile Life Cycle and project planning/execution skills including estimating and scheduling
  • IT Certifications including Okta, AD and Azure

Nice-to-haves

  • MBA preference
  • Okta Certifications highly preferred
Job Description Matching

Match and compare your resume to any job description

Start Matching

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service