Job
Description
The IAM SSO/MFA Operations team is a community of dedicated professionals committed to safeguarding our organization s information security. Our values - inclusivity, transparency, and excellence - drive everything we do. We strive to ensure our users have the appropriate levels of access. Join us and make a meaningful impact on our SSO/MFA posture. Impact (Job Summary/Why this Role Matters) The IAM SSO/MFA Operations team is a community of dedicated professionals committed to safeguarding our organizations information security. Our values inclusivity, transparency, and excellence drive everything we do. Join us and make a meaningful impact on our IAM SSO/MFA Operations Team. Key Deliverables Performs installation, configuration, implementation and troubleshooting of IAM services. Documents IAM runbook, playbooks, and administration tasks as appropriate. Interfaces with Application, IT, Infrastructure and Support teams for application integration and runtime issues to the IAM platform. Delegates IAM tasks and support to Tier-1 as appropriate. Handles production change management per FCB policies. Provides primary Level 2 support on IAM issues. Skills and Qualification (Functional and Technical Skills) Functional Skills: The ideal candidate will have a background with engineering and administration of the technologies listed below as we'll as be someone who is driven and can work under pressure to support quick turn-arounds on deliverables. It is expected as a principal engineer, that the candidate will be able to lead projects, be a key resource for incident escalation and drive new technologies. The candidate must have good soft skills to work across multiple teams and domains. Technical/Business Skills: 5+ years experience supporting mission critical systems within an IT Engineering and Operations environment. 3+ years experience working with IAM tools (SailPoint IdentityIQ, PingFederate and RSA) in a regulated environment. 3+ years solid working experience with AD infrastructure tools 3+ years building or supporting Microsoft Windows Servers 2016/2019 3+ year s building or supporting Linux Application Appliances/Servers Experience with Database Administration (Oracle, MSSQL). SailPoint Id entityIQ Troubleshoot and resolve technical problems reported by end user or application team. Document problem solutions in the company knowledge base. Provide technical support to SailPoint and field personnel via multiple channels, including telephone, email, Microsoft team meetings, and ticketing system. Apply and test fixes in Non-Prod, and Production environment. Deep understanding of Joiner, Mover, and Leaver s process Hands-on experience on IAM reporting with SQL server as back end. Experience with XML, SQL and a J2EE / Java EE 5 Application Server such as Tomcat Understanding such as Identity Cubes, Connectors, Roles, Policies, and Access Certifications. Experience in Access Request and Approval Workflows Experience in configuring Application, Rules, Workflows, custom tasks and connectors. PingFederate Single Sign-On (SSO) administration (preferred) Version Upgrades Security Vulnerabilities patching Application Integration IDP/SP Initiated Auth Workflows - Using varies protocols SAML 2.0, OAuth 2.0, OIDC Creating and Managing Auth-Policy Tree Creating and Managing Authentication Adapters Able to construct complex OGNL expressions. SSL Management for Admin UI and SP Connections RSA Authentication Manager (preferred) Version Upgrades Security Vulnerabilities patching End User Role Management SSL Management for RSA Authentication Manager Security Console RSA SecurID Cloud (preferred) Trouble shoot end user MFA registration issues. Splunk Understand how create queries and alerts. Develop PowerShell scripts to automate manual functions or to perform queries. Active Directory/LDAP administration and support Expertise with MFA authentication mechanisms (eg,RSA, PingID) ITIL familiarity or certification highly desired IT Security or IT Operations experience within a Financial Services industry highly preferred
