Workday

Senior Software Engineer, IAM Directory Services - LDAP

Workday

March 31, 2021


Do what you love. Love what you do.

At Workday, we help the world’s largest organizations adapt to what’s next by bringing finance, HR, and planning into a single enterprise cloud. We work hard, and we’re serious about what we do. But we like to have fun, too. We put people first, celebrate diversity, drive innovation, and do good in the communities where we live and work.
Job Description
Workday's Production Infrastructure team supports an ever growing footprint that spans global public and private cloud installations. Our team is composed of highly skilled Data Center Engineers, System Engineers, and Network Engineers across multiple geographies including New Zealand, Ireland, and the US. We create the world's most advanced technology platform that empowers employees and customers to realize their aspirations
We're looking for a Senior Software Engineer to join our team with a focus on Linux Directory Services. This role requires extensive knowledge of Linux LDAP and understanding of cloud based identity services. You will improve our ldap processes while contributing to our strategic roadmap. Execute against identified priorities and champion adoption of our next generation directory services within other business organizations. This is a high-impact collaboration role working closely with Engineering Development, Security, Compliance and Audit teams to design, build, and deploy tools to help hundreds of Workday developers do their job better and more securely.
About the Role:

  • Create, deploy and maintain a just-in-time (JIT) modern directory service for internal users moving towards a no-standing access for internal users.

  • Unify and organize legacy on prem directory services and multi cloud identity solutions and integrate identity management across platforms.

  • Develop tooling and automation for users identity updates and integrations to HR systems and active directory AD systems. (role descriptions, etc, Think: devOps model).

  • Improve on legacy LDAP processes meeting audit requirements for user/password and service accounts.

  • Improve performance and scalability of existing data stores, Linux LDAP.

  • Contribute to evolving design improvements, implementation of Identity LifeCycle Management and overall simplify solutions to complex problems.

About You:

  • Strong knowledge of Linux, LDAP, AD Directory services.

  • Strong software development (ie: Python, etc) focused on automating tasks from infrastructure creation to software build artifacts to multi-system complex deployment pipelines (Chef, CI/CD, Jenkins, deployment orchestration).

  • Git, GitHub/GitLab, Containers, Package Repositories.

  • Working knowledge Authentication solutions (Okta, SailPoint, Saviynt, Centrify, etc).

  • Working knowledge of multi factor SSO solutions.

  • Experienced with cloud and cloud services (AWS, Hashicorp vault, Azure, cloud trail).

  • Knowledge of security compliance relating to IAM standards, including NIST framework and CIS controls, SIEM.

  • BA/BS degree or related equivalent field experience.

  • 10+ years of experience in a linux environment.

  • Hands-on experience with LDAP.