Senior IAM and System Security Engineer

Job Description

Reporting to the Director of Information Security, the seasoned Senior Security Engineer will lead design and development work for our growing Okta OIE implementation, and will have broad responsibility to develop and implement solutions to ensure system security across the enterprise. The Okta work will have a strong focus on automation and building workflows. They will have a knack for navigating the complexities of cybersecurity, be passionate about safeguarding digital assets, mitigating risks, and staying ahead of emerging threats. Being an effective liaison with our business partners is key to success.

Tustin, CA (onsite 3+ days per week)

Responsibilities

  • Okta Identity and Access Management (IAM): Serve as a subject matter expert in Okta IAM solutions, designing, implementing, and maintaining robust access controls, authentication mechanisms, and identity management strategies.
  • Endpoint Security: Take the lead in fortifying our endpoints against potential breaches and vulnerabilities. Develop and deploy cutting-edge endpoint security solutions to protect our systems and data from malicious activities. Extract full functionality from our patching and vulnerability management tools, as well as EDR.
  • System Security: Implement and oversee comprehensive system security protocols and measures. Work closely with cross-functional teams to identify security gaps, assess risks, and develop strategies to enhance the overall security posture of our infrastructure.
  • Threat and Vulnerability Management: Maintain a high awareness of the latest cyber threats and attack techniques, and recommend improvements to our systems to counter them. Be able to prioritize vulnerabilities based on business impact and work with system owners to coordinate timely remediations, or identify adequate risk mitigations.
  • Incident Response and Management: Act as a key player in our incident response efforts, providing swift and effective responses to security incidents, breaches, and threats. Conduct thorough investigations, root cause analyses, and post-incident reviews to continuously improve our incident response capabilities.

What You Bring

  • Extensive Experience: Background in general IT, with 6+ years of hands-on experience in cybersecurity engineering with a focus on Okta IAM and endpoint and system security.
  • Technical Proficiency: Strong proficiency in implementing and managing Okta IAM solutions, with experience in SSO, MFA, access governance, account provisioning, and role-based access control (RBAC). Solid expertise in endpoint security technologies and system hardening techniques. Strong knowledge of how Windows works in a managed network environment (AD, GPOs, WSUS, etc.), interdependencies of enterprise applications (SaaS and on-prem) and how to secure them, and security testing tools. Linux knowledge is a plus.
  • Cloud: Experience working in a multi-cloud environment, with knowledge of Azure and Purview tools.
  • Analytical Skills: Exceptional analytical and problem-solving skills, with the ability to assess complex security issues, analyze data, and develop effective solutions.
  • Communication Skills: Excellent communication and collaboration skills, with the ability to convey technical concepts to both technical and non-technical stakeholders. Very solid writing skills, e.g. for technical documentation.
  • Coding Skills: Experience with programming or scripting is a plus, e.g. Python or PowerShell.
  • Continuous Learner: Demonstrated commitment to staying current with the latest trends, technologies, and best practices in cybersecurity.
  • Work Culture: Ability to work self-directed in a very fast-paced engineering-focused company. Must be proactive about seeking out things that need to be fixed and driving them to closure.

Preferences

  • Degree: Bachelor’s degree or higher is preferred but can be substituted with the right work experience.
  • Certifications: Preferred certifications include CISSP, CISM, CEH, or other relevant cybersecurity certifications. Okta certification is desired.

The annual U.S. base salary range for this full-time position is $118,100.00–$180,200.00. The base pay actually offered will vary depending on job-related knowledge, skills, location, and experience and take into account internal equity. Other forms of pay (e.g., bonus or long term incentive) may be provided as part of the compensation package, in addition to a full range of medical, financial, and other benefits, dependent on the position offered. For more information regarding Virgin Galactic benefits, please visit

Recommended Skills

  • Access Controls
  • Analytical
  • Automation
  • Certified Ethical Hacker
  • Certified Information Security Manager
  • Certified Information Systems Security Professional