Job Description :
- A strong technical leader in Privileged Access Management, Identity & Access Management technologies and application and data security concepts; utilizes technical and organizational skills in order to implement a wide range of Identity & Access Management systems and platforms.
- The Identity and Access Management Tools within Application Development delivers secure, reliable technology solutions that ensures access to Client information assets is available only to those persons and systems legitimately given authority to do so.
- It looks to achieve these goals by supporting the systems that enforce Privileged Access Management and IAM policies, centralizing access requests, implementing policy bases access management, role oriented methodology, automating access provisioning/de-provisioning, system to system integrations and simplifying and strengthening authentication and authorizations.
Specific responsibilities :
- Serves as a key member of the Privileged Access Management implementation team, providing leadership in detailed design architecture and implementation analysis that will identify requirements related to people, processes and technology
- Implements Hitachi-ID PAM integrations with a variety of technology platforms (Mainframe, Distributed and Cloud) and applications; automate onboarding and management of accounts
- Implements automation through PAMUtil and other available APIs, implements custom solutions in Hitachi Password Manager and IDM products, and other identity and access management systems
- Planning and executing product upgrades
- Provide technical guidance to development teams and oversee the technical aspects
- Supervise and oversee the technical aspects of all projects
Qualifications :
- 10+ years- overall experience in IT with emphasis on privileged and identity & access management, preferably in Financial Services systems and operations
- 3+ years security architect/technical lead in Privilege Access Management
- 6+ years- prior experience in application development & programming
- Bachelor's degree in technical discipline or related field
- CISSP or CISM certification is a major plus (not required)
Specific Skills & Technologies :
- Privileged Access Management - similar to HiPAM, HashiCorp Vault, AWS Secrets, RACF
- Identity and Access Management - similar to RSA IGL
- Prior experience in programming languages like Python, PowerShell, Perl, PHP, Shell Script, API, Java and JavaScript
- Cloud IAM - AWS Identity and Access Management (IAM), Azure AzureAD
- Zero Trust modeling - BeyondCorp, Palo Alto, etc.
- Attribute and Policy Based Access Management (PBAC) - PlainID or Axiomatics
- Network based IA & VPN - Palo Alto User-ID, App-ID, CheckPoint IA, Junos Pulse VPN, etc.
- Security Proxies - (NetScaler, Bluecoat, ZScaler, F5, Akamai)
- Information security policies, standards, industry best practices, and frameworks (NIST 800-53, NIST CSF, HITRUST, ISO 27K, etc.)
Ability to design, configure and manage most of the following systems or similar PAM and IAM systems:
- Hitachi-ID Systems (HiPAM, HiPM and IDM)
- HashiCorp, PING, AWS IAM
- Windows servers
- Unix/Linux systems
- IIS or Apache (including writing HTML, CSS)
- Active Directory or LDAP, ISAM
- MSSQL, Oracle or MySQL (including writing SQL queries)
- Networks (IP routing, TCP filters)
- RSA Secure ID, RSA IGL
- HashiCorp, PING, AWS IAM