Engineer II, Access Management

Engineer II, Access Management
Who we are
we are an innovative performance apparel company for yoga, running, training, and other
athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational
products and experiences that support people in moving, growing, connecting, and being well. We
owe our success to our innovative product, emphasis on stores, commitment to our people, and the
incredible connections we make in every community we’re in. As a company, we focus on creating
positive change to build a healthier, thriving future. In particular, that includes creating an equitable,
inclusive and growth-focused environment for our people.
About this team
our technology services are modernizing, adopting leading-edge methodologies for many
initiatives. Identity and Access Management (IAM) program has moved under the Cybersecurity
portfolio to further facilitate the rapid change of core security services, and enforcement of
governance controls. The IAM program encompasses the planning, design, implementation,
maintenance, support, and continuous improvement of identity and access services across the global
enterprise. We are currently searching for an IAM Engineer, who is a security-minded subject matter
expert with Cloud, Web-SSO, Federation and Multi-Factor Authentication (MFA) solutions, such as
Azure IaaS, AWS IaaS, Azure Active Directory (AAD), and Okta.
A day in the life:
Our Access Services play an important role in the organization. Providing a great user experience,
supporting resilient scalable services, while providing fundamental security enforcement, must be top
of mind.
? Support project efforts through building modernized IAM capabilities utilizing standardized
frameworks to foster sustainability and growth
? Build and implement access management controls which leverage best practices and establish a
solid scalable foundation
? Implement technology workflows and rules to maintain accuracy of data to managed systems
? Provide stellar end-user support with on-going operations tasks, enhancements, and bug fixes
? Collaborate closely with application teams to establish Least Privileged Access and promote
adoption
? Collaborate closely with fellow IAM team, as well as key cybersecurity and human resource
teams to support GRC (governance, risk, compliance) controls, security requirements, and end-
to-end data integrity
Qualifications:
? 4+ years hands-on project and operations experience, including implementation, maintenance,
and maturing enterprise cloud infrastructure and cloud authentication solutions
? 3+ years of deep technical experience with Azure/Entra AD Global (B2E, B2B), MFA
solutions and Conditional Access
? 2+ years of experience with Azure IaaS, AWS IaaS and/or other IaaS solutions
? Experience with Okta and other Web-SSO and Federation solutions is a plus

Phase One – Before Engaging with Candidate
Job Description

One Candidate Experience Talent Acquisition 2017
? Experience with on-premises authentication solutions, such as Active Directory
and/or other LDAP solutions is preferred
? Experience supporting International regulatory compliant solutions is preferred
? Familiarity with Azure AD China and/or other China IDaaS solutions is a plus
? Expert in SAML 2.0, OAuth 2.0, OIDC, JWT, SCIM, LDAP/S, Kerberos protocols
? Expert in network security support and analysis tactics
? Experience working with Microsoft CA and/or PKI solutions is a plus
? Broad knowledge of DEVOPS processes and best practices
? Collaborative team player, who will work closely with IAM and other teams
? Excellent interpersonal, written and verbal skills with an ability to express technical concepts in
business terms
? Great technical and system documentation skills
Must haves:
? Acknowledges the presence of choice in every moment and takes personal responsibility for
their life.
? Possesses an entrepreneurial spirit and continuously innovates to achieve great results.
? Communicates with honesty and kindness, and creates the space for others to do the same.
? Leads with courage, knowing the possibility of greatness is bigger than the fear of failure.
? Fosters connection by putting people first and building trusting relationships.
? Integrates fun and joy as a way of being and working, aka doesn’t take themselves too
seriously.