Description:

To research, evaluate, design, implement, and maintain system and product solutions, applying knowledge of engineering principles related to Client Identity Access, Authorization, and Authentication (IAM). To provide technical direction and engineering support for projects and infrastructure build for IAM solutions. Develop and maintain a working knowledge of evolving IT engineering industry technologies/competition, vendors, concepts, and trends directly related to Identity, Authorization, and Authentication for business to client (E.g., Navy Federal Online Banking and other channels).

Responsibilities:

Ability to administer and provide support for IAM applications such as ForgeRock, SailPoint, RSA, Daon, Ping, Azure, SiteMinder components policy servers, databases, and directoriesExperience in setup, configuration, and management of Policy servers, Web agents, Secure Proxy Server, and FederationDevelop and support federations with internal systems and external organizationsImplement changes through multiple environments utilizing the Change Management processApply engineering principles into the design and enhancement of new and existing systemsProvide input and make budgetary recommendations regarding staffing and equipment Document new system components, or modifications to existing componentsEnsure the security and integrity of system and product solutions, including compliance with Navy Federal, industry engineering, and Information Security principles and practicesPresent clear, organized, and concise information to all audiences through a variety of media to enable effective business decisionsPerform engineering tasks and assignments in support of business needsPerform engineering technology research, procurement, deployment, and configuration for new and modified systemsPerform other duties as assigned

Qualifications (all required unless otherwise noted)

Extensive experience that demonstrates a strong knowledge and skill of information security technology focusing on IAM Applications (e.g., ForgeRock, SailPoint, RSA, Daon, Ping, Azure, SiteMinder, etc.)Extensive experience deploying ForgeRock on Azure Kubernetes Service (AKS)Extensive experience supporting multiple IAM environments. Must be confident implementing, configuring, managing, and deploying IAM productsExtensive experience and expert knowledge of information security analysis and design techniquesExpert knowledge of data security practices and procedures, including systems analysis, authentication technologies, and access controls. Priorities will be given to those with expert knowledge and skill in UNIX/Linux system administration and scripting, Identity Federation, SAML, JBoss, and Directory Services/LDAP.Extensive experience in project planning and resource managementStrong planning and organizational skillsStrong research, analytical, and problem-solving skillsStrong verbal, written, and interpersonal communication skills, including proficiency in negotiating and persuading othersAbility to present findings and conclusions clearly and conciselyDesired: Extensive IAM applications experienceBachelor Degree in business, information technology, or related fieldsCISSP, CISA, CCSP, or other related Information Security certificationsBA, Master’s degree, PMP, MSCE/MCITP, Linux certificationsExperience with Agile methodologies (e.g., SAFe)ForgeRock Identity & Access Specialist or Professional certification(s)Experience with multiple open-source authentication protocols including SAML, OAuth, and OpenIDExperience with Ping Identity productsExperience with Azure Active Directory FederationExperience with Kubernetes and Docker servicesKnowledge of the financial services industryExperience with Daon IdentityX PlatformHours: Monday – Friday; 8:00 am – 4:30 pm EST