Senior Engineer, Identity and Access Control

Join us as we pursue our disruptive new vision to make data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, our customers, having fun, and most importantly to each other’s success. Learn more about Splunk careers and how you can become a part of our journey!

Role

Are you a seasoned DevOps engineer with a passion for all things identity? If speaking about the pitfalls of Face ID versus fingerprinting or the benefits of OIDC over SAML at parties is your jam, then we have an invite for you to join our team! We’re looking for a team player that can help us elevate our game to the next level with security, automation and efficiency as the core principles. We adapt quickly (and try not to break stuff) and all the while advocating for best practices in everything we do. Bring your best agile game forward and help us evolve our services (and build new ones) ..oh and Splunk data to your heart's content.

Responsibilities

• Develop and maintain authentication and authorization services for internal corporate Splunk users (Splunkers).
• Optimally handle user identities across all identity platforms.
• Perform analysis of security events across multiple identity platforms, and execute accurate course of action.
• Build strong multi-functional relationships and lead multi-functional teams to build and run role based access control (RBAC) to ensure a secure production environment.
• Research and assess current available technologies to meet needs that define technical specifications, design infrastructure, and conduct thorough evaluations. Become the subject-matter expert in delivery of new components into the identity ecosystem.
• Be the resource for identity and directory services related tasks or projects.
• Help bulk-up our monitoring capabilities with more Splunk products! Maintain key operational metrics and provide regular updates to upper management.
• We work well as a team and welcome this teammate as an active member of the Identity team, along with on-call rotation.
• Help us modernize our environment by using configuration management and infrastructure automation tools such as Terraform and Ansible.
• Build our CI/CD pipeline and implement best practices with code review and management.
• Extend our directory services into the cloud for scale
• Help automate repetitive onboarding and offboarding tasks inside and outside of IT.
• Help the business up level and digitally transform by introducing centralized identity governance practices that would make our team the central identity warehouse and clearing house for all internal users.

Skill Requirements

• 8+ years of IT experience and 3+ years of experience in the Identity and Access Management (IAM) space
• Validated technical knowledge of authentication/authorization, or identity management standards/protocols such as Kerberos/NTLM, LDAP, Azure Active Directory, Google Identity Services, SAML, OIDC, OAuth, and SCIM.
• Experience with various types of integrations into directory services.
• Experience with widely-used HRIS applications such as Workday.
• Deep understanding of business workflows and automation/integration manual tasks into the IAM platform.
• Experience working with internal auditors and advanced knowledge of common security standards (ISO/IEC 27001, SOC1, SOC2, HIPAA, NIST)
• Validated experience developing web services and REST APIs
• At least 2 or 3 scripting or programming languages (Python, Powershell, Java, Visual C, etc)
• Docker, Kubernetes or containerization experience.
• Understanding of Agile methodologies.

It is phenomenal if you also have

• Experience with Workday, OKTA, ServiceNow and SailPoint integration.
• Knowledge of administering Splunk products.

You will be on the front lines working with opinionated, intelligent engineers while helping to solve difficult and not-so-difficult problems. You should crave feedback and use it as a tool to improve and fine tune your work. We want your experience at Splunk to be a showcase for your career.

We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.

For job positions in San Francisco, CA, and other locations where required, we will consider for employment qualified applicants with arrest and conviction records.