Logo
Discount Tire

Principal Solutions Engineer - Identity Access Mgmt (IAM)

Discount Tire, Scottsdale, AZ


Overview

Here at Discount Tire, we celebrate the spirit of our people with extraordinary pride and enthusiasm. Our business has been growing for more than 60 years and now is the best time in our history to join us. We are opening more locations every year and we are always looking for qualified individuals to join us in our growth. We are a company that promotes from within, both in our retail and corporate operations.

The role requires an insightful, agile, and pragmatic approach to a constantly evolving needs of the business - balancing both long term capability buildout and being able to react to newly emerging threats. This is a hands-on role, requiring strong programming and reverse-engineering skills. Working as part of an overall Identity and Access Management engineering team effort, you would be expected to be both hands-on working directly on protecting features and integrity, in addition to playing a role in a longer-term technology and capability build-out.

Responsibilities
  • Administer cloud-based Identity and Access Management (IAM) platforms
  • Define and gather requirements for IAM integrations
  • Design, build, and implement integrations in Okta and Active Directory (AD)
  • Evaluate project information to forecast work effort and timelines
  • Write policies, standards, processes, and design documentation
  • Build and update PowerShell and other scripts
  • Tier 3/On-call triage and support for IAM systems
  • Support code deployment for custom IAM tools
  • Manage self-service password reset platform
  • Troubleshoot identity or access issues and provide guidance to third-party application management teams
  • Participate in Incident Response
  • Participate in Incident and Problem Management post-mortem retrospective sessions
  • Review monitoring and logging with SOC to ensure dataflow is optimized
  • SME for Identity and Access, work with Enterprise Architecture on architecture design solutions
  • Train and mentor new IAM employees and tier 1 and 2 support teams
  • Information Security Evangelist
  • Participate in IAM strategy and roadmap development
  • Design, build and manage Identity Governance and Administration (IGA) infrastructure

Qualifications
  • 5+ years of experience in IT security engineering including professional experience implementing identity and access management solutions
  • 2+ years of experience with Okta administration and development, including IDaaS/Okta Migration experience in an enterprise environment; Additional Workday and Salesforce experience would be a plus
  • 3+ years of experience with AD administration and development
  • 3-5+ years of experience with the implementation and integration of SSO and MFA technologies from both a workforce (internal) and client perspective
  • 3-5+ Experience in current security standards and protocols, including but not limited to SSO, MFA, SAML, OAuth / OIDC, SCIM, LDAP, RADIUS, and Kerberos
  • 3+ years of experience with PKI administration
  • Ability to analyze logs and identify problems with authentication and authorization
  • Experience using REST APIs and JSON, and programming experience with PowerShell; Java would be a plus
  • 3+ years of experience with issue/project tracking software (e.g., Jira) as a contributor
  • Strong verbal and written communication skills

Educational Requirements:
  • This position requires a Bachelor's degree in Computer Science, Information Security or related field or equivalent work experience.
  • This position requires certification within the Information Security or IAM fields or within six (6) months of hire.
  • Okta certification is preferred.


Discount Tire provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.

#LI-Hybrid

#LI-GW1