Senior Engineer Identity and Access Management

As a Senior Engineer Identity and Access Management, you will play a crucial role in the growth and expansion of the Identity & Access Management program at Tiffany. You will collaborate with engineers and architects to build Identity integrations with business applications, focusing on Active Directory and Okta.

• Manage enterprise Microsoft Active Directory, ADFS, Microsoft Certificate Services, and policy configuration.
• Define and implement an Enterprise IAM development strategy with key milestones.
• Design and support directory synchronization systems for Microsoft Active Directory and Windows-based systems.
• Configure Okta for SSO and MFA application integrations.
• Research new technology to meet enterprise-scale business requirements.
• Plan, build, test, and promote new IAM solutions and improvements.
• Ensure compliance with IAM architecture, including PCI and data privacy requirements.
• Provide senior management with statistics, reports, and usage trends.

• 10+ years of experience in deploying and supporting enterprise IAM/Active Directory/Okta solutions.
• Strong understanding of Okta, AD Attributes, LDAP Queries, and PowerShell Scripting.
• Knowledge of permissions for Microsoft Built-In Groups and Active Directory Administrative Functions.
• Experience with Windows certificates services management and PKI.
• Solid understanding of relational database environments, specifically SQL.
• Experience with Azure Active Directory and Azure Active Directory Connect.
• Knowledge of Office 365 and Hybrid AD with managed AD services from Microsoft.
• Ability to conduct research and provide technical recommendations for IAM toolset enhancements.