Vacancy expired!
The Senior Identity & Access Management Engineer will be responsible for ensuring that our clients Identity & Access Management platform is implemented, designed and maintained to ensure that all applications being used within the company are on-boarded for access entitlements, provisioning and de-provisioning of users. Candidate must be familiar with concepts of Entitlement Reviews, Access Request Systems, Separation of Duties in context of identity and access governance tools. Candidate must be well versed with Identity federation principles as the person will have the responsibility to set the standard for the firm in terms of identity & access management. This position requires participation in technical research and development to enable continuing innovation for Cyber Security and Information Risk management. Duties and Responsibilities
- Provides information security subject matter expertise in support of projects sponsored by business units and other departments.
- Ensures that system implementations conform to established company security standards and/or industry best practices.
- Serves as project manager for small to medium projects sponsored by the Information Security department.
- Participates in the budget process by specifying Information Security technical, resource and personnel requirements for capital projects.
- Conducts laboratory and pilot evaluations of security technologies.
- Provides information security consulting services to business units and other departments.
- Performs security assessments of proposed, new and existing systems.
- Administers and maintains various security systems and technologies as detailed under Qualifications, #3.
- Maintains support relationships with various vendors and manufacturers.
- Develops and maintains minimum security baseline configurations for various handheld, workstation and server operating systems.
- Processes Service Desk tickets assigned to the Information Security team. Responsible for problem resolution.
- Develops documentation including operations manuals, runbooks, procedures and problem resolutions.
- Minimum 8 years of experience in IT
- Minimum 5-8 years of experience in Information Security with focus on Identity and Access Management.
- Deep understanding of RBAC (Role Based Access Control), Single Sign On (SSO), and (PAM) Privileged Account Management, Identity and Access Management
- Identity Access and Governance management - Preferably skills with SailPoint, Okta, and a Privilege Access Management solution
- deprovisioning, lifecycle events
- Strong Analytical background
- Understanding of Active Directory domains, LDAP directories, Oracle Identity, Unix Identity.
- Bachelor's degree in Computer Science or Information Systems or equivalent experience required.
- One or more certification required: (ISC2 CISSP, CISM, CISA, CRISC, CGEIT, ISSAP, ISSEP, Cisco CCIE Security)
- Strong understanding of cloud computing concepts including experience with Microsoft Azure, Amazon Web Services, Google Cloud Platform
- Knowledge of scripting (Unix/Linux shell, Perl and Windows) or programming (Visual Basic and MS Access).
- Expert knowledge of Microsoft Active Directory, Azure Active Directory and Active Directory Federation Services.
- Advanced level knowledge in architecture and implementation of identity and access management solutions.
- Extensive experience in design and troubleshooting of user provisioning and deprovisioning workflows ,including automation of access and access removal to various applications and/or authorities.
- Demonstrated knowledge of identity, authentication, security, privacy, and compliance and how they factor into cloud and hybrid solutions.
- Strong working knowledge of network architecture and standards for large enterprise
- Knowledge of compliance standards and practices such as PCI DSS, Sarbanes Oxley, and Department of Justice National Security Agreement
- One or more of the following professional certifications in information security:
- CISSP - Certified Information Systems Security Professional
- SSCP - System Security Certified Practitioner
- CEH- Certified Ethical Hacker
- GIAC - Global Information Assurance Certification
- CCNP - Cisco Certified Network Professional
- CISM - Certified Information Security Manager
- BS Degree in IT Security, Cybersecurity, Computer Science or equivalent work experience.
- Ability to assemble project requirements and contribute to a security design implementation from inception to completion.
- Ability to identify and completely resolve technical issues.
- Strong verbal and written communication skills.
- Strong interpersonal and teamwork skills.
- Flexible working hours.
- Moderate travel with little or no notice.
Vacancy expired!