Identity And Access Management Engineer

Identity Access Management Engineer

The Identity Access Management (IAM) Engineer will be a technical SME in the IAM organization supporting the technical delivery of Customer Identity and Access management (CIAM).

Responsibilities include:

• Support CIAM implementation projects from initiation to completion, including requirements gathering, solution design, implementation, testing, and deployment.
• Implement the CIAM strategy and roadmaps considering the industry security trends and regulatory requirements.
• Improve the maturity of the CIAM products and services showing increased adoption and speed to market.
• Must have strong development and customization experience.
• This role is based out of Plano, Texas and requires coming into the office.

Compensation and Benefits:

• The expected compensation range for this position is between $76,400 - $127,850.
• Location, confirmed job-related skills, experience, and education will be considered in setting actual starting salary. Your recruiter can share more about the specific salary range during the hiring process.
• Bonus based on performance and eligibility target payout is 8% of annual salary paid out annually.
• Paid time off subject to eligibility, including paid parental leave, vacation, sick, and bereavement.
• In addition to salary, PepsiCo offers a comprehensive benefits package to support our employees and their families, subject to elections and eligibility: Medical, Dental, Vision, Disability, Health, and Dependent Care Reimbursement Accounts, Employee Assistance Program (EAP), Insurance (Accident, Group Legal, Life), Defined Contribution Retirement Plan.

Qualifications:

Minimum Qualifications:

• 5+ years of overall IT experience
• 5+ years of hands-on experience in authentication architecture, solutioning and design roles
• 3-5+years of hands-on experience with Okta and/or relevant access management tools
• 4+ years of scripting (power shell, Python) and development (Java, J2EE, JavaScript, React, Rest API) experience.
• 3+ years working with Agile and DevOps tools and methodologies.
• Minimum Okta Certified Administrator: Okta Certified Consultant and/or Okta Certified Developer preferred.
• BS/BA degree or equivalent experience
• CISSP / CIAM Certification is a plus.
• Experience with CIC/Auth0 platform is a plus

Preferred Qualifications:

• Extensive experience in solutioning, designing and implementing authentication services.
• Experience leading CIAM implementation projects from initiation to completion, including requirements gathering, solution design, implementation, testing, and deployment.
• Proven track record of understanding B2B and B2C customer needs and delivering solutions that enhance user experience while maintaining security and compliance standards.
• Thorough understanding of security best practices, privacy regulations (such as GDPR, CCPA), and compliance requirements related to customer data protection.
• Broader IAM domain experience with focus on information security
• Deep technical expertise in solutioning and integrating B2B, B2C applications with CIAM.
• Strong expertise in designing solutions with the standard IAM platforms like Okta, PingFederate in enabling single sign-on services for both cloud and on-prem applications.
• Hands-on experience in building SSO solutions with various protocols like SAML, OAuth, OIDC, and headers-based applications and platforms, preferably Azure AD, Ping, and SiteMinder
• Strong hands-on experience in designing and architecting Consumer identity and access management solutions
• Strong understanding of the latest security principles like zero trust and passwordless authentication to implement new standards in the authentication model.
• Must have working knowledge of Okta Lifecycle Management and Administrative APIs
• Experience with solutions like CyberArk, Beyond Trust, RSA or comparable products.
• Excellent understanding of REST integration concepts
• Experience in directory services like Oracle LDAP, and AD
• Experience working with cloud-based authentication solutions (e.g., AWS Cognito, Azure AD, Okta).
• Strong hands-on development experience - Java, Node js, React, Sprint boot, REST API and Java script.
• Hands on experience with JavaScript, Python, Ruby, PowerShell, or other scripting languages preferred.
• Experience building CICD pipelines in Azure or AWS
• Experience in automating application deployment building CICD pipelines using Ansible and terraform.
• Experience in Monitoring tools like Splunk, ELK, Prometheus, or similar tools
• Experience with container technologies Docker, Kubernetes
• Experience with Linux and Windows platforms, middleware, Apache, and load balancers
• Experience developing workflows, custom connectors, and troubleshooting complex issues.
• Experience with Agile and DevOps tools and methodologies
• Minimum Okta Certified Administrator: Okta Certified Consultant and/or Okta Certified Developer preferred.
• CISSP / CIAM Certification is a plus.
• Experience in SiteMinder is preferred.

Non-Technical skills:

• Exceptional communication and interpersonal skills with the ability to influence and collaborate with diverse stakeholders.
• Deliver outcomes with a little supervision, must be a self-starter and self-motivator.
• Strong analytical, problem-solving, and decision-making skills, with the ability to manage complex and competing priorities.
• Strong project management and organizational skills, with the ability to deliver high-quality results.
• Ability to think strategically and suggest creative solutions.
• Ability to synthesize complex requirements into simple business practices.
• Flexible and able to adapt to changing priorities.