Formal Education Required: Bachelor’s in computer science, Management Information Systems, Information Security, or related field.
Experience Required
8-10+ years of experience in architecture engineering with emphasis on Identity Lifecyle Management, designing complex systems for large enterprise-level organizations.
8-10 years of experience in implementing and supporting of at least one of the following Identity and Access Management Solutions:
Microsoft Identity Manager
Forefront Identity Manager 2010
Forefront Identity Manager 2010 R2
Experience with SSO domains realms, rules, responses, and policies is expected with a minimum of 15 years of implementation experience with SSO and federation using SAML, OAuth, OIDC, Federation, APIs as well as experience with automating provisioning and deprovisioning access solutions.
8-10+ years of experience and understanding of Active Directory, Azure AD, ADFS, including LDAP directories, OU structures, schemas, including experience updating schemas and attributes.
10+ years of experience with Azure and Office 365, including deploying and/or migrating multiple environments to Azure. Integration experience with SAML, OpenID Connect, OAuth, Multifactor Authentication, password less authentication, and migrating multiple environments to Azure.
Experience scripting in SQL, PowerShell, and/or Python.
Serves as project lead, subject matter expert and primary engineer in IAM-related security design related to Azure AD design and implementation, to enable the migration of multiple environments to Azure.
User directories: Understanding of LDAP, Virtual Directory Services, Directory Services, and Active Directory. Experience with PCI and SOX audits. Experience with Web Access Management Single Sign On tools: PingAccess, PingFederate, OKTA, Azure.
Certifications (preferred)
Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
Certified Identity Governance Expert (CIGE)
Certified Identity and Security Technologist (CIST)
Certified Identity and Access Manager (CIAM)
Certified Identity Management Professional (CIMP)
Knowledge, Skills and Abilities Required (as demonstrated by prior work experience):
Knowledge and understanding of the key principles and processes of Identity and Access Management.
Knowledge of access controls (i.e., RBAC, DAC, MAC) and usage of least privilege.
Knowledge of Active Directory, LDAP, DB, UNIX/Linux, AWS IAM.
Knowledge of ABAC methodologies and DevOps tools.
Knowledge of security design and solution development related to Identity Lifecyle Management.
Ability to manage competing deadlines and multiple projects at various stages of development using effective organization skills and attention to detail.
Ability to define issues, establish facts and draw valid conclusions and apply to work environment.
Ability to communicate, both verbally and in writing, with a diverse membership, employees and/or vendors in a clear and precise manner.
Ability to use Microsoft Office tools (Excel, Word, Outlook, Power Point, MS Teams) in the day-to-day essential duties of the job.
Ability to operate various office equipment such as personal computer, copier, printer, fax machine or other job-related equipment.
Ability to provide service excellence by building relationships, being resourceful, responsive and respectful.
Interpersonal skills, member service orientation and ability to work in a team environment.
Required profile
Experience
Level of experience:Expert & Leadership (>10 years)
Spoken language(s):
English
Check out the description to know which languages are mandatory.