TC_CS_IAM

Senior Identity & Access Management (IAM) Consultant - Okta

Join EY's Risk Consulting team as a Security Analyst/Consultant in Kolkata, West Bengal, India, and play a pivotal role in shaping the future of Identity and Access Management for our global clientele. This senior-level position offers a unique opportunity to leverage your expertise in IAM solutions, particularly Okta, to deliver exceptional results and contribute to EY's mission of building a better working world.

In this role, you will be instrumental in the execution of IAM projects, focusing on engagement deliverables and cultivating strong internal and external relationships. You will identify potential business opportunities for EY and Global Talent Hub (GTH) within existing engagements, escalating them as appropriate. A critical aspect of your responsibility will be to proactively identify and mitigate risks within engagements, reporting any issues to senior team members.

You will contribute to the highest quality of work, adhering to EY's stringent quality standards and facilitating a positive learning culture. This includes coaching and mentoring junior team members, fostering their development and growth. As an influential member, you will help prepare client-facing reports and schedules, ensuring seamless communication and stakeholder satisfaction.

Key Responsibilities:

• Engage in and drive Identity & Access Management projects, ensuring successful delivery of all aspects.
• Collaborate effectively within a team environment, sharing responsibilities, providing support, maintaining clear communication, and updating senior team members on project progress.
• Execute engagement requirements and oversee the review of work performed by junior team members.
• Assist in the preparation and delivery of high-quality reports and schedules to clients and other stakeholders.
• Cultivate and maintain productive working relationships with client personnel.
• Develop and strengthen internal relationships within EY Consulting Services and across other service lines.
• Support senior team members in performance reviews and provide constructive feedback for staff/junior team members.
• Contribute to people-related initiatives, including the recruitment and retention of IAM professionals.
• Maintain an ongoing learning program to continuously enhance personal skills and expertise.
• Adhere to all workplace policies and procedures.
• Foster a culture of quality within the GTH.
• Manage the performance of direct reports in accordance with organizational policies.
• Promote teamwork and lead by example.
• Provide training and mentorship to project resources.
• Participate actively in organization-wide people initiatives.

Skills and Attributes for Success:

• Demonstrated hands-on experience in the end-to-end implementation of various IAM tools, with a strong emphasis on Okta expertise.
• Successful completion of 2-6 IAM implementations.
• Solid understanding of Access Management and Customer Identity and Access Management (CIAM) solutions.
• Proficiency in Okta APIs and a good understanding of XML, HTML, and CSS.
• Ability to dissect complex problems and design modular, scalable solutions.
• Proven experience onboarding applications onto leading IAM platforms such as Okta and PINGFED.
• Knowledge of FIDO, OAuth, Open ID Connect, and REST concepts.
• Hands-on experience setting up IAM environments in standalone and cluster configurations.
• Proficiency in configuring IAM tools to meet specific business requirements.
• Hands-on experience with Directory level integration with Okta for AD, LDAP, Azure AD, and Oracle AD.
• Good understanding of IWA and Okta Workflows.
• Hands-on experience with Okta APIs.
• Knowledge of Okta Access Gateway, Okta Advanced Server Access, and SCIM.
• Experience developing custom UI pages, branding, and email templates to meet business needs.
• Familiarity with Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), user provisioning, data synchronization, password management, and IAM governance with AM tools like Okta.
• Strong understanding of access management fundamentals, including Single Sign-On (SSO), authentication, and authorization.
• Proficient in OAuth 2.0, OIDC, and WS-Fed protocols.
• Experience in defining and setting up approaches for risk-based Multi-Factor Authentication (MFA) and application access control.
• Hands-on experience with security assessments and configurations for AM platforms, adaptive risk configurations, and MFA.
• Capability to translate business requirements into technical designs.
• Ability to perform risk assessments and threat modeling exercises with technology engineering teams.
• Flexibility to adapt to and work with new technologies in the IAM domain.
• Experience in a client-facing role.
• Thorough expertise in specific IAM tools, including hands-on experience with configuration, implementation, and customization.
• Hands-on Java/Python development and debugging experience.
• Experience in use case design, Solution Requirements Specification (SRS), and mapping business requirements to technical requirements using a Traceability Matrix.
• Capability in Architecture Design, focusing on optimizing resources like servers and load sharing.
• Involvement in successful RFP responses and client pursuits.

Qualifications:

• B. Tech./B.E. degree with strong technical skills.
• Excellent verbal and written English communication skills.
• Significant experience with Access Management tools such as Okta and PingFed.
• Strong interpersonal and presentation skills.
• 5-8 years of relevant work experience.

Security Analyst – IAM (Okta) Specifics:

• In-depth understanding of information security concepts and a deep knowledge of IAM solutions and emerging trends.
• Ability to translate business requirements into technical specifications and implement solutions effectively.
• Experience in installation, configuration, deployment, and implementation of Okta.
• Experience integrating on-premises and legacy applications with Okta.
• Good understanding of federation protocols including SAML 2.0, OAuth, OIDC, WS-Fed, and SWA.
• Working knowledge of MFA, Security Rules, Policies, and Provisioning.
• Hands-on experience troubleshooting Okta and other AM-specific tool issues.
• Scripting knowledge in Python and Unix Shell scripting.
• Basic understanding of AD and LDAP functionality (authentication, authorization).
• Experience with Directory Integration with Okta.
• Experience troubleshooting access-related issues reported by application teams.
• Self-motivated with the ability to work with minimal direction.
• Takes ownership of tasks and executes them efficiently.
• Direct client experience, including working with client teams in both on-site and offshore models.
• Strong soft skills, including verbal & written communication and technical document writing.
• Customer-oriented approach.

Certifications:

• Certifications in the security domain, such as CISSP, CISA, or any IAM product-specific certifications, are desirable.

What working at EY offers:

At EY, we are committed to empowering our employees and fostering a career path that is as unique as they are. You will have the opportunity to work on inspiring and meaningful projects with clients ranging from start-ups to Fortune 500 companies. Our focus on education, coaching, and practical experience ensures your continuous personal development. We value our employees and provide an individual progression plan to help you control your career trajectory. You will quickly grow into responsible roles with challenging and stimulating assignments within an interdisciplinary environment that emphasizes high quality and knowledge exchange.

We offer:

• Support, coaching, and feedback from engaging colleagues.
• Opportunities to develop new skills and advance your career.
• The freedom and flexibility to manage your role effectively.

EY is dedicated to building a better working world, creating long-term value for clients, people, and society, and building trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide assurance and help clients grow, transform, and operate.