IAM Engineer - Okta
Apply NowCompany: Brunswick
Location: Vernon Hills, IL 60061
Description:
Are you ready for what's next?
Come explore opportunities within Brunswick, a global marine leader committed to challenging conventions and innovating next-generation technologies that transform experiences on the water and beyond. Brunswick believes "Next Never Rests," and we offer a variety of exciting careers and growth opportunities within united teams defining the future of marine recreation.
Innovation is the heart of Brunswick. See how your contributions will help transform vision into reality:
Position Overview:
As part of the talented Information Security team, we are seeking a Senior Identity and Access Management (IAM) Engineer with deep expertise in Okta and modern authentication technologies. In this role, you will lead the design and implementation of Okta password-less authentication solutions across Windows, Mac, and Linux environments. You will be responsible for integrating Okta with a broad range of applications and systems (cloud platforms, SaaS, on-premises, and custom-built apps), ensuring seamless and secure access for users. This senior position requires a strong background in authentication/authorization protocols, identity governance, and privileged access management, as well as excellent scripting and automation skills. The ideal candidate will combine hands-on technical know-how with strategic thinking to enhance our IAM capabilities while meeting high security and compliance standards.
At Brunswick, we have passion for our work and a distinct ability to deliver.
Essential Functions:
Diversity of thought and experiences is fundamental when imagining the unimaginable. Certain skillsets/experiences are necessary; however, others can be developed along the way.
Required Qualifications:
Preferred Qualifications:
The anticipated pay range for this position is $100,900 - $160,800 annually. The actual base pay offered will vary depending on multiple factors including job- related knowledge/skills, relevant experience, business needs, and geographic location. In addition to base pay, this position is eligible for an annual discretionary bonus.
At Brunswick, it is not typical for an individual to be hired at or near the top end of the salary range for their role. Compensation decisions are dependent upon the specifics of the candidate's qualifications and the business context.
This position is eligible to participate in Brunswick's comprehensive and high-quality benefits offerings, including medical, dental, vision, paid vacation, 401k (up to 4% match), Health Savings Account (with company contribution), well-being program, product purchase discounts and much more. Details about our benefits can be found here.
Why Brunswick:
Whatever tomorrow brings, we'll be at the leading edge. As the clear leader in the marine industry, we're committed to our values and supporting our exceptional people. We offer and encourage growth opportunities within and across our many brands. In addition, we're proud of being recognized for making a splash with numerous awards!
About Brunswick:
Brunswick Corporation is a leader in the marine industry, and we're looking for people just like you to take part in the movement towards better boating for all. We rely on the thoughtful input of people from all backgrounds to create compelling, innovative products for our customers around the globe. As such, diversity, equity, and inclusion are priorities in the enduring culture of our company. As a world leader in emerging recreational products and technologies, when you join our team, you become part of some of the most innovative, forward-looking brands in the marine industry today.
Next is Now!
We value growth and development, recognizing that people come with a wealth of experience and talent beyond just the technical requirements of a job. If your experience is close to what you see listed here, please still consider applying.
Brunswick is an Equal Opportunity Employer and considers all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other characteristic protected by federal, state, or local law. Diversity of experience and skills combined with passion is key to innovation and inspiration and we encourage individuals from all backgrounds to apply. If you require accommodation during the application or interview process, please contact hrsharedservices@brunswick.com for support.
For more information about EEO laws, - click here
Brunswick and Workday Privacy Policies
Brunswick does not accept applications, inquiries or solicitations from unapproved staffing agencies or vendors. For help, please contact our support team at: hrsharedservices@brunswick.com or 866-278-6942.
All job offers will come to you via the candidate portal you create when applying through a posted position through https:///www.brunswick.com/careers. If you are ever unsure about what is being required of you during the application process or its source, please contact HR Shared Services at 866-278-6942 or HRSharedServices@brunswick.com.
#Brunswick Corporation
Come explore opportunities within Brunswick, a global marine leader committed to challenging conventions and innovating next-generation technologies that transform experiences on the water and beyond. Brunswick believes "Next Never Rests," and we offer a variety of exciting careers and growth opportunities within united teams defining the future of marine recreation.
Innovation is the heart of Brunswick. See how your contributions will help transform vision into reality:
Position Overview:
As part of the talented Information Security team, we are seeking a Senior Identity and Access Management (IAM) Engineer with deep expertise in Okta and modern authentication technologies. In this role, you will lead the design and implementation of Okta password-less authentication solutions across Windows, Mac, and Linux environments. You will be responsible for integrating Okta with a broad range of applications and systems (cloud platforms, SaaS, on-premises, and custom-built apps), ensuring seamless and secure access for users. This senior position requires a strong background in authentication/authorization protocols, identity governance, and privileged access management, as well as excellent scripting and automation skills. The ideal candidate will combine hands-on technical know-how with strategic thinking to enhance our IAM capabilities while meeting high security and compliance standards.
At Brunswick, we have passion for our work and a distinct ability to deliver.
Essential Functions:
- Okta Password-less Authentication: Design, implement, and manage Okta's passwordless authentication solutions (e.g. Okta FastPass or similar) for Windows, Mac, and Linux systems, providing a frictionless and secure login experience for end-users across all platforms.Insert
- Application Integration: Integrate Okta with a wide variety of applications and services: cloud infrastructure (AWS, Azure, Google Workspace, Oracle), enterprise SaaS applications (Salesforce, Workday, ServiceNow, etc.), on-premises systems, and custom in-house applications. Ensure single sign-on (SSO) and federation are configured for optimal usability and security across all these environments.
- Authentication & Authorization Protocols: Implement and support modern IAM protocols and standards including OIDC/OAuth 2.0, SAML 2.0, LDAP, and Kerberos. Develop secure authentication and authorization flows for applications and troubleshoot any SSO/federation issues related to these protocols.
- Okta Administration & Optimization: Serve as the Okta subject matter expert, handling day-to-day administration and advanced configuration of the Okta platform. Configure and optimize Okta Workflows, automated user provisioning/de-provisioning, group management, access management policies, and multi-factor authentication (MFA) strategies to meet the organization's needs.
- Identity Governance & PAM Collaboration: Work closely with the Identity Governance team and Privileged Access Management team to ensure our IAM program is comprehensive. Leverage SailPoint for identity governance (user lifecycle management, access reviews) and CyberArk for privileged account management, integrating these solutions with Okta where appropriate. Contribute to the development or customization of SailPoint and CyberArk integrations to enhance overall identity security.
- Security and Compliance: Enforce IAM best practices and company security policies in all solutions. Ensure that identity and access controls meet compliance requirements for standards such as SOC 2, ISO 27001, and PCI-DSS. Regularly review and update configurations to maintain a strong security posture and pass compliance audits.
- Automation and Scripting: Develop and maintain scripts and tools (using PowerShell, Python, or similar) to automate repetitive IAM tasks, streamline provisioning processes, and quickly resolve identity or access issues. Use automation to improve efficiency and reduce the potential for manual errors in user account management and application access configurations.
- Troubleshooting and Support: Investigate and resolve complex IAM issues related to Okta and integrated systems. Provide advanced support for authentication problems, identify root causes, and implement preventive measures. Mentor junior engineers and educate application teams on IAM and Okta best practices.
- Documentation and Strategy: Create and maintain thorough documentation for IAM configurations, Okta integrations, and operational procedures. Participate in developing the IAM strategy and roadmap, recommending improvements and new features to adopt (such as emerging password-less technologies or security enhancements) in line with industry best practices and business needs.
Diversity of thought and experiences is fundamental when imagining the unimaginable. Certain skillsets/experiences are necessary; however, others can be developed along the way.
Required Qualifications:
- Bachelor's degree in Computer Science, Information Systems, or a related field (or equivalent work experience)
- 5+ years of experience in Identity and Access Management, with at least 3 years of hands-on Okta administration and engineering in a production environment.
- Strong scripting skills in PowerShell and Python are required
- Experience configuring Okta org settings, policies, and features: e.g., setting up and tuning Okta Multi-Factor Authentication (MFA) policies, Adaptive MFA, device trust, Lifecycle Management (LCM), Universal Director, and custom Okta Workflowas/Automation
- Proven expertise in Okta Identity Cloud, including passwordless authentication implementations and advanced feature configuration. Experience deploying Okta for device or desktop login on Windows/Mac, and integrating Okta Verify or similar authenticators for Directory Services
Preferred Qualifications:
- Okta Certified Administrator/Professional (or higher) is a plus.
- Identity Governance and PAM Knowledge: Familiarity with SailPoint Identity Governance platform (IdentityIQ or IdentityNow) and CyberArk Privileged Access Management solutions. Experience developing or customizing workflows/rules in SailPoint and managing secure vaulting, rotation, or automation in CyberArk is a strong advantage.
- Security & Compliance: Strong knowledge of security best practices and compliance frameworks (SOC 2, ISO 27001, PCI-DSS) as they relate to identity and access management. Experience ensuring that IAM implementations meet regulatory and audit requirements (e.g., enforcing least privilege, maintaining audit logs, access recertifications).
- Problem-Solving & Communication: Excellent analytical and problem-solving skills, especially in diagnosing authentication or access issues in a complex environment. Strong communication skills with the ability to work cross-functionally - collaborating with security architects, IT administrators, developers, and compliance teams. Proven ability to document solutions and train others in IAM best practices.
- Adaptability: Ability to work independently and handle multiple projects or issues simultaneously in a fast-paced environment. A proactive mindset toward learning new technologies and staying up-to-date with the latest advancements in IAM, authentication methods, and security threats.
The anticipated pay range for this position is $100,900 - $160,800 annually. The actual base pay offered will vary depending on multiple factors including job- related knowledge/skills, relevant experience, business needs, and geographic location. In addition to base pay, this position is eligible for an annual discretionary bonus.
At Brunswick, it is not typical for an individual to be hired at or near the top end of the salary range for their role. Compensation decisions are dependent upon the specifics of the candidate's qualifications and the business context.
This position is eligible to participate in Brunswick's comprehensive and high-quality benefits offerings, including medical, dental, vision, paid vacation, 401k (up to 4% match), Health Savings Account (with company contribution), well-being program, product purchase discounts and much more. Details about our benefits can be found here.
Why Brunswick:
Whatever tomorrow brings, we'll be at the leading edge. As the clear leader in the marine industry, we're committed to our values and supporting our exceptional people. We offer and encourage growth opportunities within and across our many brands. In addition, we're proud of being recognized for making a splash with numerous awards!
About Brunswick:
Brunswick Corporation is a leader in the marine industry, and we're looking for people just like you to take part in the movement towards better boating for all. We rely on the thoughtful input of people from all backgrounds to create compelling, innovative products for our customers around the globe. As such, diversity, equity, and inclusion are priorities in the enduring culture of our company. As a world leader in emerging recreational products and technologies, when you join our team, you become part of some of the most innovative, forward-looking brands in the marine industry today.
Next is Now!
We value growth and development, recognizing that people come with a wealth of experience and talent beyond just the technical requirements of a job. If your experience is close to what you see listed here, please still consider applying.
Brunswick is an Equal Opportunity Employer and considers all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other characteristic protected by federal, state, or local law. Diversity of experience and skills combined with passion is key to innovation and inspiration and we encourage individuals from all backgrounds to apply. If you require accommodation during the application or interview process, please contact hrsharedservices@brunswick.com for support.
For more information about EEO laws, - click here
Brunswick and Workday Privacy Policies
Brunswick does not accept applications, inquiries or solicitations from unapproved staffing agencies or vendors. For help, please contact our support team at: hrsharedservices@brunswick.com or 866-278-6942.
All job offers will come to you via the candidate portal you create when applying through a posted position through https:///www.brunswick.com/careers. If you are ever unsure about what is being required of you during the application process or its source, please contact HR Shared Services at 866-278-6942 or HRSharedServices@brunswick.com.
#Brunswick Corporation