Sr. Network Engineer

Who is Forcepoint?

Forcepoint simplifies security for global businesses and governments. Forcepoint’s all-in-one, truly cloud-native platform makes it easy to adopt Zero Trust and prevent the theft or loss of sensitive data and intellectual property no matter where people are working. 20+ years in business. 2.7k employees. 150 countries. 11k+ customers. 300+ patents. If our mission excites you, you’re in the right place; we want you to bring your own energy to help us create a safer world. All we’re missing is you!

Forcepoint is seeking talented network engineers to join our Enterprise network engineering team. In this role, you will have the opportunity to design, deploy, and manage Forcepoint’s global enterprise network using state-of-the-art platforms. You will also leverage automation tools and collaborate with internal teams to enhance these tools further. As a successful candidate, you will not only possess a strong technical background but also be an innovative and agile individual who can work well in a global team environment. You will be working closely with internal customers to gather requirements and develop technical solutions aimed at improving the productivity of our services. If you are a visionary who is always challenging the status quo and believes that technology can make a significant impact on productivity, we encourage you to apply for this exciting opportunity.

Job Description

• Contribute to the design, implementation, and ongoing management of Forcepoint’s global Single Sign on Infrastructure.
• Maintains Azure Active Directory (Azure AD) operations, encompassing user and group administration, directory synchronization, and identity protection mechanisms.
• Architect and enforce role-based access control (RBAC) and conditional access policies to guarantee secure and compliant resource access. Proven ability to access risk management, and compliance frameworks.
• Engineer and deploy multi-factor authentication (MFA) and single sign-on (SSO) solutions to bolster security and enhance user experience.
• Configure, operate, and automate aspect of Okta and Veza IGA.
• Understand all aspects of Cloud Identity and Access Management, and the role that this plays on Lifecycle Management.
• Demonstrate a profound understanding and capability in implementing Public Key Infrastructure (PKI) and encryption solutions.
• Develop and maintain sophisticated automation scripts using PowerShell or other scripting languages to optimize IAM processes and minimize manual intervention.
• Well-versed in security standards and regulatory requirements pertinent to identity and access management.
• Serve as the engineering point of contact for operational team escalations, resolving IAM-related incidents and issues through comprehensive troubleshooting and root cause analysis.

• In-depth understanding and practical experience with Privileged Access Management (PAM) solutions.
• Thorough understanding of Zero Trust principles and identity protection strategies.
• Experienced in implementing hybrid identity solutions and integrating on-premises with cloud-based systems.
• Capable of developing automated processes for user access provisioning and de-provisioning.
• Work closely with information security, Domain services and networking teams to integrate security enhancements and continuously enhance our security posture.
• Ensuring that all applications are gated by SSO security and best practices. Advising application owner on the benefits of SSO.
• Creating and Managing application integration for Identity and access management.
• Identify manual routine operational practices and build robust automation capabilities using code and modern tools.
• Ensuring all aspects of our SSO and identity platforms are proactively monitored using enterprise class practices.
• Experience in rolling out end user access automation and workflows to provide a friction less environment.
• Developing and implementing access governance strategies to mitigate risks associated with unauthorized access and data breaches.

Requirements

• Strong understanding of Okta & MS Entra ID with at least 5 years’ experience across both.
• Hands-on experience of designing & configuring of Entra ID SSO.
• Deep understanding of how applications, databases, and technology platforms integrate and communicate with Single Sign-on using a SAML based authentication.
• Experienced in Okta & Azure based security & identity policies.
• Understanding the requirement & experienced of using SSO in mobile devices.
• Experienced with Microsoft-centric infrastructure (Active Directory, Azure AD, Windows Servers).
• Ability and willingness to coach and mentor team members and colleagues.
• Understand & implement change control practices as per company policy.
• Strong understanding of agile frameworks and practices.

Nice to have

• Familiarity with IGA technologies – Oktas, SailPoint, others.
• Familiarity in working in a global team.

Education

• University degree and 5-7 years of related experience or equivalent work experience in an IT role.
• Professional Level certifications OKTA, Azure ID.

Don’t meet every single qualification? Studies show people are hesitant to apply if they don’t meet all requirements listed in a job posting. Forcepoint is focused on building an inclusive and diverse workplace – so if there is something slightly different about your previous experience, but it otherwise aligns and you’re excited about this role, we encourage you to apply. You could be a great candidate for this or other roles on our team.

The policy of Forcepoint is to provide equal employment opportunities to all applicants and employees without regard to race, color, creed, religion, sex, sexual orientation, gender identity, marital status, citizenship status, age, national origin, ancestry, disability, veteran status, or any other legally protected status and to affirmatively seek to advance the principles of equal employment opportunity.

Forcepoint is committed to being an Equal Opportunity Employer and offers opportunities to all job seekers, including job seekers with disabilities. If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to use or access the Company’s career webpage as a result of your disability. You may request reasonable accommodations by sending an email to recruiting@forcepoint.com.

Applicants must have the right to work in the location to which you have applied.