Identity and Access Management Engineer
Hire IT People, LLC
Job Seekers, Please send resumes to resumes@hireitpeople.com This position is for integrating and implementing Security in DevOps. Integrating requires familiarity with DevOps tools such as VSTS and TFS. Implementing requires familiarity with Security tools. Implementing requires programming background in Python and PowerShell and leveraging AWS, Azure, and ADAL SDKs for Python. Selenium scripting is a bonus.
Position Overview:
The Enterprise Computing & Cloud Services (ITSEC) department is responsible for providing and maintaining the IT infrastructure framework, which supports staff and business applications in an efficient and cost-effective manner. The department strives to provide quality services to meet a variety of business requirements, and its performance is regularly assessed by means of industry relevant benchmarks and annual certification/compliance with standards frameworks, including SOX, ISO20000, and ISO27001.
The scope of activities for ITSEC department includes a wide range of services, including data center operations, desktop and server support for Windows, UNIX and Linux, and Identity and Access Management infrastructure. The services are tightly integrated and standardized in a way to provide 24x7 availability and transparency to employees and clients around the world.
The department's Identity and Access Management (ITSES) Unit is responsible for inter alia, evaluation, testing, and implementation of emerging technologies related to authentication and authorization, web access management, the enterprise directory, identity and access governance, and encryption and Certification Authority (PKI) services.
Essential Job Functions:Support the SailPoint IIQ service for the clientSystem administration tasks include:Maintain the infrastructure with system patches and upgradeTroubleshoot and resolve SailPoint IIQ infrastructure related issuesWork with application developers (workflow), application teams (DB, Web, and Server Admins), and Network and Security teamsEngage with the SailPoint technical support, if necessaryDevelop necessary scripts to produce specific SailPoint IIQ reports requested by service usersSupport the AD FS and FIM services for Office 365 cloud messaging and SharePoint applications environmentsWork with different project teams to understand their specific authentication and authorization needs and support them by integrating their applications with the available identity and access solutionsEvaluate and provide feedback on future authentication and authorization technologiesAssess and provide recommendations on their business relevance and deploymentMaintain the optimal performance of IAM infrastructure resources by monitoring and assessing hardware/software performanceEnsure that performance meets present and future business needsRecommend changes/enhancements to improve system availability, reliability, and performanceProvide third-level engineering support for resolving client issues within an ITIL Methodology, including adherence to ISO20000 and ISO27001Participate in data center load shift and disaster Recovery exercisesReview all system documentation to be delivered according to specified guidelines (e.g., Standard Operating Procedures)Maintain technical documentationConduct regular or emergency maintenance or software upgrades following the formal change management processPerform troubleshooting for security incidents that require software and network forensic analysis, in close collaboration with OIS and other ITS Shared Services teamsDefine metrics to be used for management status and statistical reportsProvide on-going knowledge transfer to team members and clients on security products and standardsEducational Qualifications and Experience:Education: Master's degree in Computer Science in Computer Science or Electrical EngineeringRole Specific Experience: 7+ years of experience in computer/electrical/software engineering experience in information security and identity management fields2+ years of experience in configuring, deploying, and maintaining SailPoint IIQ infrastructure in an enterprise settingExtensive experience in supporting Windows Active Directory, including AD group policy deployment, and GPO for securing corporate computersExperience in troubleshooting system hardware and software, particularly to investigate problems related to device driversOperational experience with Microsoft Forefront Identity Manager (FIM) is a plusExperience with configuring, deploying, and maintaining Microsoft Active Directory Federation Services (AD FS) for cloud applicationsExperience with Identity Federation solutions such as CA SiteMinder FederationCertification Requirements:Certified Information Systems Security Professional (CISSP) by (ISC)2 and GIAC Certified Forensic Examiner (GCFE), or advanced information security training by educational organizations, such as SANS InstituteRequired Skills/Abilities:Expert knowledge of Web Access Management (WAM) and Enterprise Directory concepts (such as LDAP, Virtual Directory, Meta Directory, and LDIF)Expert knowledge in the areas of Microsoft Exchange, Office 365, Lync, SQL, and Certification AuthorityExpert understanding of Context-based Authentication and Risk-based Authentication solutions, particularly their effective use on mobile and unmanaged devices accessing corporate and cloud applicationsExpert understanding of system software design and development methodologies and implementation experienceExpert knowledge of TCP/IP networking and protocols (DNS, ICMP, SMB, SSL/TLS, etc.)Familiarity with performance analysis using performance monitoring and tuning toolsStrong analytical thinking skillsExcellent interpersonal skills, including an ability to work effectively in a team/task force as a participant or team leaderFlexibility to manage environment changes and emerging opportunitiesAbility to balance risks and reprioritize, as neededDemonstrate continuing professional developmentSuperior verbal and written communication/presentation skills in EnglishDesired Skills/Abilities (not required but a plus):Experience with Oracle Directory Server Enterprise Edition and Radiant Logic VDS in a business environmentC++, C#, Java, or Python programming and scripting knowledge in Linux and Windows environments.
Position Overview:
The Enterprise Computing & Cloud Services (ITSEC) department is responsible for providing and maintaining the IT infrastructure framework, which supports staff and business applications in an efficient and cost-effective manner. The department strives to provide quality services to meet a variety of business requirements, and its performance is regularly assessed by means of industry relevant benchmarks and annual certification/compliance with standards frameworks, including SOX, ISO20000, and ISO27001.
The scope of activities for ITSEC department includes a wide range of services, including data center operations, desktop and server support for Windows, UNIX and Linux, and Identity and Access Management infrastructure. The services are tightly integrated and standardized in a way to provide 24x7 availability and transparency to employees and clients around the world.
The department's Identity and Access Management (ITSES) Unit is responsible for inter alia, evaluation, testing, and implementation of emerging technologies related to authentication and authorization, web access management, the enterprise directory, identity and access governance, and encryption and Certification Authority (PKI) services.
Essential Job Functions:Support the SailPoint IIQ service for the clientSystem administration tasks include:Maintain the infrastructure with system patches and upgradeTroubleshoot and resolve SailPoint IIQ infrastructure related issuesWork with application developers (workflow), application teams (DB, Web, and Server Admins), and Network and Security teamsEngage with the SailPoint technical support, if necessaryDevelop necessary scripts to produce specific SailPoint IIQ reports requested by service usersSupport the AD FS and FIM services for Office 365 cloud messaging and SharePoint applications environmentsWork with different project teams to understand their specific authentication and authorization needs and support them by integrating their applications with the available identity and access solutionsEvaluate and provide feedback on future authentication and authorization technologiesAssess and provide recommendations on their business relevance and deploymentMaintain the optimal performance of IAM infrastructure resources by monitoring and assessing hardware/software performanceEnsure that performance meets present and future business needsRecommend changes/enhancements to improve system availability, reliability, and performanceProvide third-level engineering support for resolving client issues within an ITIL Methodology, including adherence to ISO20000 and ISO27001Participate in data center load shift and disaster Recovery exercisesReview all system documentation to be delivered according to specified guidelines (e.g., Standard Operating Procedures)Maintain technical documentationConduct regular or emergency maintenance or software upgrades following the formal change management processPerform troubleshooting for security incidents that require software and network forensic analysis, in close collaboration with OIS and other ITS Shared Services teamsDefine metrics to be used for management status and statistical reportsProvide on-going knowledge transfer to team members and clients on security products and standardsEducational Qualifications and Experience:Education: Master's degree in Computer Science in Computer Science or Electrical EngineeringRole Specific Experience: 7+ years of experience in computer/electrical/software engineering experience in information security and identity management fields2+ years of experience in configuring, deploying, and maintaining SailPoint IIQ infrastructure in an enterprise settingExtensive experience in supporting Windows Active Directory, including AD group policy deployment, and GPO for securing corporate computersExperience in troubleshooting system hardware and software, particularly to investigate problems related to device driversOperational experience with Microsoft Forefront Identity Manager (FIM) is a plusExperience with configuring, deploying, and maintaining Microsoft Active Directory Federation Services (AD FS) for cloud applicationsExperience with Identity Federation solutions such as CA SiteMinder FederationCertification Requirements:Certified Information Systems Security Professional (CISSP) by (ISC)2 and GIAC Certified Forensic Examiner (GCFE), or advanced information security training by educational organizations, such as SANS InstituteRequired Skills/Abilities:Expert knowledge of Web Access Management (WAM) and Enterprise Directory concepts (such as LDAP, Virtual Directory, Meta Directory, and LDIF)Expert knowledge in the areas of Microsoft Exchange, Office 365, Lync, SQL, and Certification AuthorityExpert understanding of Context-based Authentication and Risk-based Authentication solutions, particularly their effective use on mobile and unmanaged devices accessing corporate and cloud applicationsExpert understanding of system software design and development methodologies and implementation experienceExpert knowledge of TCP/IP networking and protocols (DNS, ICMP, SMB, SSL/TLS, etc.)Familiarity with performance analysis using performance monitoring and tuning toolsStrong analytical thinking skillsExcellent interpersonal skills, including an ability to work effectively in a team/task force as a participant or team leaderFlexibility to manage environment changes and emerging opportunitiesAbility to balance risks and reprioritize, as neededDemonstrate continuing professional developmentSuperior verbal and written communication/presentation skills in EnglishDesired Skills/Abilities (not required but a plus):Experience with Oracle Directory Server Enterprise Edition and Radiant Logic VDS in a business environmentC++, C#, Java, or Python programming and scripting knowledge in Linux and Windows environments.
Confirm your E-mail: Send Email
All Jobs from Hire IT People, LLC