Cloud Engineer - DI - Identity Access

JOB DESCRIPTION

Somos a Tech Mahindra, empresa do Grupo Mahindra, uma multinacional Indiana e está presente no Brasil e em +90 países. Somos mais de 120.000 profissionais que nos ajudam a conectar experiências.

A Tech Mahindra representa o mundo conectado, oferecendo experiências de tecnologia da informação inovadoras e centradas no cliente, permitindo que empresas, colaboradores e a sociedade cresçam.

Nós realmente acreditamos que a tecnologia torna isso possível, mas são as pessoas que fazem isso acontecer. Diversidade Cultural, de Gênero e de Habilidades se alinham nos nossos pilares do Rise e nos permite "Diversidade de Pensamentos", que capacita nossos stakeholders a crescer.

RESPONSIBILITIES AND ASSIGNMENTS

You will be allocated in one big Global client.

In this role, the Cloud Engineer will provide architectural guidance to migrate the applications from Azure B2C, Ping Federate and Ex partner/Padum to OKTA. Perform a thorough analysis of the current authentication and authorization mechanisms for the Azure B2C , Ping Federate and ExParter/Padum integrated apps and provide recommendations on the Authentication Flow and Integration Design. Discuss future state requirements for authentication, authorization and user management within the applications of Azure B2C , Ping Federate and ExParter/Padum integrated apps.

1. Assessment

Review current solution, goals, and challenges with core team.

·       Perform a thorough analysis of the current authentication and authorization mechanisms for the Azure B2C, Ping Federate and Ex-Partner/Padum apps.

·       Review existing process for user management (create, read, update and delete) within Azure B2C, Ping Federate and Ex-Partner/Padum applications for internal and external users.

·       Understand any key issues likely to be raised by key stakeholder groups for supporting

Discuss future state requirements for authentication, authorization and user management within the applications.

2. User Migration Design

Conduct user migration workshop consisting of the following topics

·       Review migration options that support migrating external users from Azure B2C, Ping Federate and Ex-Partner/Padum to Okta.

·       Review how best to communicate user migration 

·       Review how user passwords will be managed (migrated or reset) 

·       Review how to handle duplicate accounts 

·       Review how to execute user migration (phased or big bang)

Review above options for both Okta CIS and CIC.

3. Authentication Flow and Integration Design

Conduct user authentication and authorization workshop consisting of the following topics

·       Review options for integrating Okta authentication flows within the targeted applications

·       Review authorization requirements for applications and review options in Okta to support.

·       Review options for ensuring internal users will maintain access to applications federated with Okta.

·       Review options for allowing external users to authenticate using either an external IdP or Social Network IdP.

·       Review above options for both Okta CIS and CIC.

4. User Registration and Management Requirements Design

Conduct a user registration and management workshop consisting of the following topics

• Review options for supporting self-service user registration flows for external users
• Review requirements for supporting any admin approval functionality
• Review initial sets of attributes required as part of the registration process
• Review options for on-going user management
• Determine the best path forward to build out the desired self-service registration flows and user management functionality within the environment.
• Out of the box options
• Customized solution
• Review above options for both Okta CIS and CIC.

5. Project Documentation 

Provide the following artifacts

Okta Architecture

a.     This document will provide architectural information detailing the design to support the Clients desired migration, authentication, authorization and user management use cases for applications migrating from Azure B2C, Ping Federate and Ex-Partner/Padum to Okta. This will also provide details on the recommended Okta platform that will best meet the requirements (Okta CIS or CIC).

User Flow Diagrams

a.     Migrations Flows

b.     Authentication flows

c.      Registration Flows

d.     User Management Flows

REQUIREMENTS AND QUALIFICATIONS

Technical Requirements

• Authentication and Authorization Expertise
• In-depth knowledge of Azure B2C, Ping Federate, and Okta.
• Experience with authentication and authorization mechanisms.
• Familiarity with user management processes (CRUD operations) within these platforms.
• User Migration Skills
• Experience in planning and executing user migrations.
• Knowledge of migration strategies (phased vs. big bang).
• Understanding of password management and handling duplicate accounts during migration.
• Integration and Flow Design
• Ability to design and integrate authentication flows.
• Experience with authorization requirements and options in Okta.
• Knowledge of federated access for internal and external users.
• User Registration and Management
• Experience in designing self-service user registration flows.
• Understanding of admin approval functionalities and attribute requirements.
• Ability to design ongoing user management processes.
• Project Documentation and Architecture
• Ability to create detailed architectural documents.
• Experience in documenting migration, authentication, authorization, and user management flows.

Non-Technical Requirements

• Analytical Skills
• Strong analytical skills to review current solutions, goals, and challenges.
• Ability to perform thorough analyses and understand key stakeholder issues.
• Communication Skills
• Excellent communication skills to conduct workshops and communicate migration plans.
• Ability to explain technical concepts to non-technical stakeholders.
• Problem-Solving Skills
• Strong problem-solving skills to address issues related to authentication, authorization, and user management.
• Ability to propose and evaluate different solutions.
• Stakeholder Management
• Ability to understand and address concerns raised by key stakeholder groups.
• Experience in working with both internal and external stakeholders.

ADDITIONAL INFORMATION

100% WFH

Global project - Fluent English is mandatory, Spanish in nice to have

Work time: 10AM - 7PM

Quem Somos ?

Somos parte do Grupo da Mahindra, empresa no valor de 21 bilhões de dólares, que emprega mais de 240.000 pessoas em mais de 100 países. O Grupo opera nas principais indústrias que impulsionam o crescimento econômico mundial, desfrutando de uma posição de liderança em tratores, veículos utilitários, after-market, tecnologia da informação e resortes de férias.

Nossas plataformas de inovação e recursos reutilizáveis conectam-se através de uma série de tecnologias para entregar um valor tangível para os nossos clientes. 

A Tech Mahindra representa o mundo conectado, oferecendo serviços e soluções de tecnologia da informação, inovadoras e personalizadas de acordo com a necessidade de cada cliente, permitindo que empresas, parceiros e a sociedade Rise™, trabalhem juntos.