Location(s): Ahmedabad, Gujarat, India ⋅ Gujarat, India
Experience Level(s): Senior
Field(s): IT & Security ⋅ Software Engineering
Workplace Type: Remote
Sr Identity Engineer
General Qualifications
Bar-raisers. People that know what good looks like, don’t accept badness in either our technology or processes. Resources capable of making it obvious that our team/members should be operating at a higher level, simply by the way they operate.
High-energy and passion. Relates to above. Not asking people to sacrifice work-life balance, but we need people that are willing to bust it to achieve outcomes.
Inquisitive and curious, not guided by shiny objects, but focusing on new/emerging ideas and tech that solves our problems.
Learner – someone with the ability to use publicly-available content to quickly develop understanding of key technologies and systems, and apply them
Product management mindset – Understanding of the entire product lifecycle – capable of building and maintaining products that are not only functional and secure, but integrate seamlessly into our management, monitoring, and support processes.
Experience with digital transformation initiatives. Comfortable with generating and operating within high velocity environments.
Automation MINDSET and tool SKILLSET.
Mindset – constantly looking for opportunities to move work from manual to automated. Progressive automation – Automate A, then B, then merge, then Automate C, and merge. A desire/ability to progressively move through the stack. CI/CD mentality, creating flywheels.
Skillset –
Ansible, Chef, etc.
Coder/Scripter – proficient/experienced in PowerShell, python, other. More importantly, have a software engineering mindset
Responsibilities
Participate in the design, implementation and support of Uber Freight's Identity, Authentication, Authorization, Access Control, and Certificate Management platforms
Assist with Identity integrations and migrations that result from acquisitions, customer onboarding, and technology changes.
Work with internal stakeholders, customers, and external partners to define and integrate business requirements like provisioning, deprovisioning, authorization determination and other aspects of user access management and control.
Integrates applications into Uber Freight's identity platform ensuring single sign on (SSO) authentication is consistent across the organization.
Understand the impact of change before implementation. Learn and follow our existing change control process.
Keep abreast of innovations and industry trends as well as changes to internal systems and determines how they impact tools, training, and support necessary to keep systems up, running, and secure
Be self-motivated to increase your knowledge of our identity toolset.
Walk customers through configuring and using MFA and certificate-based authentication. Follow up with customers to ensure our solutions are functional and meet their needs. Report customer feedback and potential product requests
Guide users with simple, step-by-step instructions
Address user tickets and requests regarding the Identity/Authentication technology stack.
Ask targeted questions to diagnose problems/challenges. Test alternative pathways until you resolve an issue.
Provide on-going guidance to operational teams for proactive management, monitoring, and support of the environment
Develop and deliver training or knowledge transfer activities for operational teams
Effectively engage and collaborate with InfoSec peers, IT & business partners
Customize applications (within our standards) to meet security and business needs
Record technical issues and solutions in knowledge base. Help create technical documentation and manuals
Successfully locate solutions to issues you have not experienced before
Author scripts written in languages like PowerShell, Bash, and Python
Bachelor of Science in a Technology or MIS discipline
At least 3+ Years of hands-on experience in IAM & related technologies, including Active Directory, Directory Services, Single Sign-On, LDAP, PKI, Cloud Directory Services, Authorization & Authentication Technologies, User Provisioning, Privileged Access Management, Role-Based Access Control (RBAC), etc.
Hands-on experience with Windows/Mac OS environments
Hands-on experience with ADFS with Azure MFA
Must be able to configure Conditional Access to meet business requirements.
Must be able to demonstrate a working knowledge of how to troubleshoot user access issues.
Must be able to demonstrate a working knowledge of how to interpret and configure Intune conditional access policies.
Must be able to perform remote troubleshooting and provide clear instructions.
Must be able to demonstrate a consistent ability to focus and work with a high level of precision.
Must be able to demonstrate a consistent ability learn new information and integrate it successfully with consistent outcomes.
Preferred Requirements
Thorough familiarity with standards such as SAML, WS-Sec; SOAP; REST, OATH; OAuth2.0; Digest, XML, JSON, REST, etc.
Familiarity with various IT / Security technologies including DNS, DHCP, MS Exchange, Firewalls, VPN Gateways, IPS, Proxy, Endpoint Security, Vulnerability Management, SEIM, etc.
At least three years of experience supporting Rights Management Service and/or Azure Identity Protection for end user file encryption
Working knowledge of platforms such as O`1kta, Microsoft Active Directory, Microsoft Identity Manager, Azure AD, Azure AD Privileged Identity Management, Janrain, & Amazon based Authentication such as Cognito
Solid experience in risk-based approach and management principles. Includes best practice IT risk assessments, control analyses, and mitigation plans to operationalize optimal risk mitigated solutions.
Hands-on experience with Azure/GCP/AWS
Ability to review logs, filter past the noise and then set and respond to alerts to proactively monitor for issues.