What are the responsibilities and job description for the Information Security Architect - IAM position at Bakkt LLC?
About Us
Founded in 2018, Bakkt builds technology that connects commerce.
Our vision is to connect the digital economy by offering one ecosystem for cryptocurrency and digital assets, loyalty, and commerce. We enable our partners and clients to deliver new opportunities to their customers through SaaS and API solutions that unlock crypto and drive loyalty, powering engagement and performance.
Come build with us.
We are searching for a passionate, talented, and customer-focused Identity Architect to help us continue to build best-in-class identity technologies, processes, and frameworks into our internal core business, by both helping build upon and improve our existing identity and access management (IAM) processes. We’re looking for someone who is comfortable building automation into identity lifecycle processes. If you’re familiar with building identity into modern architectures and cloud infrastructure, are comfortable being hands-on, and enjoy working in an exciting, fast-paced culture, then we want to hear from you!
Key Responsibilities:
- Own, lead, and evangelize the identity & access program for Bakkt, ensuring that all identity and access to Bakkt technology resources are designed and implemented effectively
- Implement technical solutions and operational processes to ensure the identity lifecycle is executed in accordance with our identity strategy and compliance requirements
- Engineer or manage tooling to automate identity lifecycle tasks, specifically utilizing Okta as an identity provider
- Automate identity lifecycle processes using Okta access requests and workflows to manage HR-integrated provisioning/deprovisioning, leave of absence, and role-based access requests
- Define and implement platform based manager access reviews and privileged access management processes to include industry leading practices
- Coordinate identity to support and drive conditional access
- Partner with our Product teams to design and modern identity and access into our product offerings, to include MFA, SAML2/OIDC, risk-based authentication, and other patterns
Qualifications:
- Minimum eight to ten years of experience in cyber security
- Three to five years of experience building or leading IAM programs or solutions, building or integrating modern identity design patterns or solutions, such as multi-factor authentication, passwordless authentication, Oauth2/OIDC or other federated identity models, or risk-based authentication
- Three to five years of experience designing or building / engineering IAM into cloud infrastructures (e.g. AWS, Azure, GCP)
- Experience with managing and supporting IDP with Active Directory master.
- Experience automating security or identity lifecycle activities including normal user access as well as privileged access.
- Experience building identity frameworks which meet regulatory or industry requirements, such as roles definition, access request and approval, and access reviews.
- Working knowledge securing or managing identity and access in modern, cloud-native architectures, to include APIs.
- Experience working in a regulated industry highly desired, but not required
- Ability to clearly document and identity frameworks and related requirements, technical standards, and processes & procedures.
- Four-year college degree preferred, but not required.
- Security certifications, specifically Okta certifications.
- 3 years of Workforce Management Experience
Preferred:
Experience within a contact center environment
Bakkt is devoted to having diversity in its workforce and is proud to be an equal opportunity employer. Bakkt does not make any employment decisions based on race, color, religion, sex, national origin, veteran status, disability, age, sexual orientation, gender identity of any other characteristic protected by law. Must successfully pass a post-offer background check and drug screen.