Location
Texas | United States
Job description
Role: Sr. OKTA Engineer
Location: Plano, TX
Duration: Long-term
Job Description:
The Global Information Security Operations group is responsible for protecting Toyota Financial Services (TFS) Group information assets from service disruptions, exploitation, unauthorized access, and loss of data. This group works to proactively identify existing and emerging risks to implement strategic countermeasures and mitigations. Additionally, this group implements and maintains security services that can be shared across the TFS Group companies (40+) to elevate security and protect the brand globally.
The Senior Information Security Engineer SSO and Access Management is a subject matter expert within the Identity & Access Management Domain who leverages Access Management expertise and experience to lead design decisions, implement solutions, and deliver SSO and MFA systems for use by TFS Teams around the world. This role will interact and collaborate with business and security stakeholders to solve complex issues, meet requirements, and improve the quality of the IAM Platforms. Technologies that this role will be responsible for are Okta. Guiding other cross functional engineers on the team, this senior engineering role will lead the path to deliver solutions following Agile/SCRUM practices.
This person will be a self-directing, organized, and effective communicator (verbal and written) who can transfer business and stakeholder requirements into a usable and efficient solution. The individual is expected to engineer using common software development lifecycles, use best practice approaches for solution designs, and document and train peers and/or recipients to effectively use/maintain the solutions.
Key responsibilities include:
- Deliver product enhancements to meet business requests/requirements
- Contribute to the multi-year roadmaps for security services with the Digital Factory Owner
- Engage with management to introduce and influence Access Management technology decisions
- Define and implement performance measurements and security targets for Access (SSO & MFA)
- Build relationships with and solicit service needs from global and domestic stakeholders and other security teams for future service planning
- Review and govern operational and architectural documentation to meet and exceed internal and regulatory requirements and ensure consistency across all security platforms
- Contribute to Sprint planning ceremonies to ensure deliverables are achievable but are not too simple
- Research industry trends and evaluate technologies aligned with the strategy to influence and recommend security technology purchase decisions to management
- Support peer engineering and incident response teams during critical events
- Conduct and participate in security product and skill training for personal and team development
- Develop a deep understanding of our business portfolio, while identifying and recommending solutions to address existing product/coverage gaps
- Assess quantitative and qualitative data that can be translated into product deliverables (Data-Driven) with measurable KPIs
- Maintain a strong working knowledge of relevant IDM technologies within the industry and their capabilities
- Manage expectations from the Digital Factory Owner, Domain Owner, and Sponsor for solution design, architecture, and capabilities
- Help develop and grow individuals
Day to day activities will include:
- Implement solutions to meet business requests/requirements
- Provide recommendations to the Digital Factory Owner and stakeholders to create achievable and realistic deliverables
- Support the Digital Factory Owner in the prioritization of product feature(s) backlog and development for the product(s), backlog management, iteration planning, and elaboration of the user stories
- Work closely with the Digital Factory Owner to create and maintain a product backlog according to business value or ROI
- Work closely with Service Recipients, stakeholders, and Enterprise Architecture to identify and manage cross-impacts for security architectural decisions
- Provide an active role in mitigating impediments impacting team's successful completion of Release/Sprint Goals
- Research and analyze market, the users, and the roadmap for the current and future security products being delivered
- Support the management of third-party suppliers, as necessary, for service and technology delivery
- Participate with and lead complex problem analysis and problem-solving skills
- Prioritize emerging issues and risks
- Understand business pain points, their impacts, root causes, business needs and solution options
B. Job Functions / Accountabilities
Essential Job Functions / Accountabilities
% of Time Spent
Backlog grooming and refinement
- Lead discussions with peers and stakeholders
- Review and solicit service requests and provide work estimates
- Gather additional requirements from requestors and stakeholders (if applicable)
- Define and confirm the completion criteria of work requests
10%
Solution Design & Development
- Develop code and/or configure SSO systems to acceptance criteria
- Enhance development practices by identifying gaps and recommending improvements
- Collaborate with the IAM Product Designer and stakeholders on new or emerging solutions to use or incorporate in the design
- As applicable, lead peer reviews of solution design(s)
15%
Solution Testing
- Implement proof-of-concept solution(s) in the appropriate Access Management platform that meets the requirements of the service request and/or initiative
- Validate the solution(s) does not impede or negatively impact the performance or availability of the SSO and MFA services or downstream digital factories
- As appliable, confirm the solution meets the needs of the requestor and gather feedback for future enhancements
- Create, update, and maintain standardized testing procedures
20%
Solution Delivery
- Implement the solution(s) into the appropriate production security system
- Follow and coordinate any Change Management, Release, and/or other Go-Live procedures
- Document the solution(s) for ongoing maintenance and support (Run books)
25%
Solution Troubleshooting & Incident Response Support
- Assess and troubleshoot Access Management system or service errors that have been escalated from initial triage teams
- Open supplier support cases, as needed, and provide any supporting evidence; monitor the performance of suppliers and hold them accountable to meet SLAs
- Collaborate with peers on short and long-term solutions to restore the affected service(s)
- Update, and maintain runbook and operational manuals
- Support Incident Response activities as needed
- Respond to escalations and/or support requests from other Information Security Engineers on the team
10%
Service, Team & Personal Development
- Lead and influence future technology discussions with management, Solution Architects, and other consultants
- Research, design, recommend, and implement alternative solutions that reduce costs, improve performance, and/or meet new requirements
- Research, design, and implement solutions to close gaps in the IAM and security stack
- Participate in industry security groups, conferences, or trainings and share learnings in the form of trainings, memos, and/or roadmap contributions
- Conduct and participate in security training and knowledge sharing
20%
The following functions/accountabilities are essential for all jobs:
Work collaboratively with Team Members
Meet regular performance expectations
Maintain regular and predictable attendance to support team and business objectives.
Capability to work flexible hours, which may include day, evening and weekend hours.
Ability to be at work on time, to return from breaks and lunch periods on time and to leave the work area after the end of their scheduled workday (applicable to jobs subject to attendance policy)
Other related functions/accountabilities may be assigned, but are not essential
General Skills & Technical Requirements:
Teamwork :
Actively lead team discussions contributing to work group goals, offering input and pursuing new ideas
Resolve issues by dealing directly with others and effectively confronting conflict
Customer Satisfaction :
Build partnerships with customers by regularly demonstrating a high level of expertise and professionalism
Anticipate customers' needs and recommends appropriate action plan
Independently assess and effectively responds to customers' requests
Proactively seek creative solutions by balancing customers' needs with internal procedures and resources
Follow through on commitments made to customers
Actively participate with IDS Enterprise Operations in the resolution of customer identified problems when escalated to them
Problem Solving :
Anticipate potential problems and proactively recommends creative "big picture" solutions
Demonstrate sound judgment and delivers innovative solutions to problems
Acts quickly under limited supervision
Solve problems when there are no available precedents, guidelines, policies by drawing upon experience, research and other problem-solving alternatives
Provide support to other Team Members on effective problem resolution by assisting them in identification of alternatives and presentation of recommendations.
Communication :
Effective communication skills to lead team efforts, facilitate team meetings, and give presentations and recommendations to the team, management, and Service Recipients
Communicate with others, tailoring approach to ensure effective two-way interaction
Demonstrate strong written and verbal communication skills
Uses listening skills to fully understand another's viewpoints
Appropriately reflect Toyota's value in daily communications
Leadership/Initiative :
Help department deliver needed results by setting strategically aligned goals for oneself
Focus on what it takes to get the job done and meet time sensitive demands
Actively seek and provides service and /or process improvements
Take responsibility for own career growth, seeking initiatives and positions that foster skill development
Consistently demonstrate integrity and high work standards
Business Insight :
Demonstrates understanding of the role of one's department and how it contributes to the overall goals and business strategy of the organization
Utilizes company and product knowledge to build relationships with customers as well as prioritize and perform work
Subject Matter Expertise:
- Demonstrate a deep working knowledge of, but not limited to, the following technologies:
- Single Sign-On (SSO)
- Multi-Factory Authentications (MFA)
- Authentication Protocols and technologies:
- OpenID/Connect OIDC
- oAuth
- SAML
- AD-Fed
- API Gateways
- Identity Services in AWS and/or Azure
- Agile Development using SCRUM
- ITIL Change & Release Management standards
- Demonstrate a strong foundational knowledge of integrations between the Identity Providers and Applications both on Prem and Cloud/SaaS providers using standard integration patterns based on the best Authentication Protocols for the situation
- Develop and review security requirements, controls, and use cases to address compliance to Policies, Standards, and Regulatory requirements
Job tags
Salary
