About TMHCC
Tokio Marine HCC (TMHCC) brings 50 years of service to the specialty insurance industry, today offering over 100 products to commercial customers in 180 countries around the world. Every policy we write is special, enabling our clients to do amazing things. From insuring the crops that feed us to the rock concerts that entertain us, to rescuing international travelers in trouble.
Organic growth and over 60 successful acquisitions have grown our 2023 Gross Written Premium (GWP) to over $7.5 Billion. Our workforce has grown to 4,300 worldwide … big, but not so big that you cannot make a difference. Our Good Company values, including integrity, empowerment, and commitment to customer service, and a culture of innovation, communication, and collaboration make TMHCC a great place to work.
What We Offer

Competitive salary and employee benefit packageStrong learning cultureGrowth perspectives6% 401K match20 days of PTO and 2 Floating DaysPaid parental leaveAn opportunity to love what you do

Job Summary

The Infrastructure Collaboration Engineering team is looking to hire a technical person with 10+ years of expertise in Entra ID, Active Directory and Okta. In this role, you will work as a technical lead and subject matter expert in designing, architecting, implementing, operating, and maintaining access management solutions using Entra ID, Active Directory, Okta.

Key Responsibilities

Entra

Proven expert knowledge of Azure Entra ID capabilities such as Conditional Access Policies, Privileged Identity Manager and Application RegistrationsStrong understanding of PIM and the assignment of roles / IAM permissions on Management Groups, Subscriptions and ResourcesAzure Infrastructure Management to include user accounts, groups, conditional policies, Intune management, mobile device management, and endpoint securityStrong understanding of App registration, Enterprise Apps, SPN’s and managed identities with the understanding of least privileged administration when it comes to MS Graph API allocation of permissionsStrong understanding of multifactor authentication, SSPR and WHfBStrong PowerShell scripting Skills, automation, and scheduling skills when working with data in AzureGood understanding of Intune polices management and autopilotAn individual that stays abreast of the latest Entra ID features, best practices, and security trends, and make recommendations for continuous improvement

Active Directory

Strong background in Active Directory covering domains than span geo locations with numerous DC`s and AD sites and a user based of 5000+Strong understanding of DNS and GPO`s, user object and OU administrationSolid understanding of Microsoft Tiering, IAM, and PAM conceptsStrong knowledge of server operating systems from Windows 2016 to Windows 2025Strong understanding of the FSMO roles when it comes to maintaining the security and the integrity of the domain  Strong understanding of the delegation of permissions across the domain OU structureStrong PowerShell scripting skills, automation, and scheduling skillsSolid understanding of the recovery steps needed to recover a domain in the event of a disaster

OKTA

Able to demonstrate a strong understanding of IAM concepts, including identity federation, SSO, SAML, OAuth, OIDC, MFA, role-based access control (RBAC), and least privilege principlesAble to provide Okta subject matter expertise to a variety of program stakeholders on application integration, IAM functionality, and Okta’s feature roadmapCapable of designing and implementing Okta platform configurations to align with overall solution architecture and customer requirements. Willing to collaborate with Solution Architects, other solution component SMEs and stakeholders to develop and refine solution requirements. Ensuring secure and efficient access for on-premises and cloud-based applications and resources.Able to drive and support customer application integrations into Okta-based IAM solutions. Troubleshoot and resolve technical issues before, during and after application integration

Competencies

Planning

• Follow work plans, established timelines, and predefined goals for assigned work.

• Meet commitments on deadlines.

Communication

• Communicate activities, results, and observations with employees and management as appropriate.

Cost Management

• Identify areas for improvement in existing business practices.

• Perform work thoroughly in a cost-efficient manner and at a high productivity level.

Business Controls and Policies

• Comply with all corporate policies and procedures.

• Report any breakdowns in controls to management.

• Conduct all activities in a safe manner.

People Management

• No people management responsibility.

Education

4 Year / Bachelors Degree Computer Science, a related field, or the equivalent education and/or experience

Other

Knowledge and experience of CyberArk advantageous.Knowledge and experience with Rubrik advantageous.Microsoft, Azure or Okta certification are highly beneficial.

Additional Working Conditions and Physical Demands

Overtime hours may be required to fulfill job responsibilitiesMay be required to remain stationary for extended periods of timeMay be required to move up to 10 poundsMust be able to operate a computer and other devicesClose vision and ability to adjust focus, such as required to read a computer screen