Identity and Access Management (IAM) Engineer - Authentication/Okta Consultant

Identity and Access Management (IAM) Engineer - Authentication/Okta Consultant
The Team/Job
The IAM Engineer - Authentication/Okta Consultant is responsible for designing, implementing, and managing identity and access management solutions with a focus on authentication and Okta integration. This role involves ensuring secure access to various systems and applications, maintaining compliance with security policies, and enhancing user experience through efficient authentication processes.
The Opportunity
Do you want to be part of a team that encourages your growth, supports your ambitions and makes it a priority for you to reach your goals? Is helping people part of who you are? At MassMutual, we help millions of people find financial freedom, offer financial protection and plan for the future. We do this by building trust with our customers by being knowledgeable problem solvers and prioritize their needs above all else. Join our team to lead the charge in securing our organization's digital assets and improving user access experiences through cutting-edge IAM solutions. If this sounds like a fit, we're looking to hire IAM Engineer - Authentication/Okta Specialist to join our Security Platform Engineering team.
The Impact/Responsibilities

• Design, implement, deploy, and maintain IAM solutions including multi-factor authentication (MFA), single sign-on (SSO) using Okta to support IAM strategic initiatives
• Collaborate across lines of business to consult and guide projects as needed to follow best practices around identity and access management
• Develop and configure Okta platform enhancements, including newly developed features
• Provide technical support to Okta support staff, including operations and supporting teams
• Develop and support security enhancements to support SOC and combat ongoing cybersecurity threats
• Buildout and maintenance of supporting documentation to be used by support staff
• Design, implement and manage Okta workflows to facilitate IAM solutions as required, including integration with various applications and systems, to provide seamless and secure access.
• Stay up-to-date with the latest IAM technologies, trends, and best practices to continually enhance our identity management capabilities.

The Minimum Qualifications

• Bachelor's degree in Computer Science, Information Technology, or a related technical field
• 5+ years of experience in IAM Engineering or Security Engineering or IT Engineering
• 3+ years of experience with Okta, including advanced configurations and troubleshooting
• 3+ years of experience in Authentication with industry standard protocols: SAML, OAuth, OpenID Connect

Preferred Qualifications

• Experience with cloud-based IAM solutions and integrations.
• Knowledge of scripting languages (e.g., Python, PowerShell) for automation of IAM processes.
• In-depth knowledge of Okta APIs and integrations with on-prem and cloud systems
• Strong troubleshooting skills, including Okta, REST APIs, and other web based traffic
• Ability to work independently and achieve results as directed
• Ability to script in at least one language (Python, etc)
• Familiarity with IAM concepts like privileged access, zero trust, and access governance
• Experience with building policies in Okta, including global session, application, and MFA enrollment policies
• Familiarity with LDAP and AD based Okta agents, including patching and troubleshooting
• Knowledge of best practices around lifecycle management of AD sourced and Okta sourced identities, including build and support of SCIM/API integrations
• Familiarity with PKI
• Okta Certified Administrator/Consultant prior experience
• Familiarity with security frameworks and regulations (e.g., NIST, GDPR, HIPAA) that impact identity and access management.
• Excellent analytical and troubleshooting skills, with the ability to diagnose and resolve complex technical issues.
• Strong verbal and written communication skills, capable of effectively collaborating with technical and non-technical stakeholders.
• Experience with identity federation and cross-domain authentication.
• Project management skills and experience leading IAM projects from conception to completion.

#LI-SC1
MassMutual is an Equal Employment Opportunity employer Minority/Female/Sexual Orientation/Gender Identity/Individual with Disability/Protected Veteran. We welcome all persons to apply. Note: Veterans are welcome to apply, regardless of their discharge status.
If you need an accommodation to complete the application process, please contact us and share the specifics of the assistance you need.
Salary Range: $110,400.00-$144,900.00