Job Description :
Description
About the Role:
Do you have experience with identity and access management software at an enterprise level Are you interested in being a key contributor in a corporate modernization effort to reengineer vendor based on-premise solution to open source and SaaS based solutions that integrates with the AWS cloud If so, this may be the job for you!
This position is responsible for the replacement of Oracle Identity and Access Management (IAM) software and becoming the subject matter expert within the Clearinghouse for all application security aspects related to identity and access management. Currently, the clientdeploys a variety of methods for authentication and access management – Oracle OIM/OAM, OAuth, basic authentication, SAML 2.0 and Shibboleth.
In this role, you will be the Okta subject matter expert as well as the key resource to determine what method will be used for system to system authentication as well as with authenticating with external partners. This will require the ability to work with application development teams to advise which approach to use. The incumbent will also be responsible for identifying opportunities to leverage new technology and practices to better serve the customer, enhance system/process efficiency and create a competitive advantage. Such investigation and changes in market trends may also require the incumbent to work with Solutions Architects to develop proofs of concept to create prototypes and validate technical approaches. The ideal candidate has demonstrated experience working in a transformative environment and the ability to prove technical concepts quickly through a wide range of approaches. How You Contribute:

  • Be the subject matter expert in the identity and access management domain at the client. Contribute to the development of the workforce and customer identity and access management strategy.
  • Make strategic architectural recommendations related to technology direction and standards for application security.
  • Provide technical support for external customers to integrated with clientapplications using SAML SSO, OAuth 2, Open ID frameworks.
  • Be the internal expert using Okta, stay current on new releases of Okta capabilities, assess which features should be implemented and coordinate such upgrades internally.
  • Configure users, groups and policies in Okta to comply with enterprise cybersecurity policies and application security requirements.
  • Collaborate with internal architecture team on establishing application security standards.
  • Collaborate with infrastructure and application development teams on methods to integrate with third parties from application security and integration perspective.
  • Work independently or as part of a team to prototype solutions.
  • Develop and maintain the code for authentication service and utility libraries that integrate with NSC web and API applications.
  • Partner with application development teams to integrate with authentication service and implement best practices for authentication and authorization requirements for NSC internal and external applications.
  • Customize COTS IDM solution to meet business requirements.
  • Diagnose and troubleshoot application integration issues with application development teams during various SDLC phases including development, testing, UAT.
  • Provide level 3 production support to help diagnose and troubleshoot production issues related to identity and access management.
  • Collaborate with Solutions Architects, Application Development, Cybersecurity, and Infrastructure to define the enterprise IAM strategy and communicate it to all application development teams.
  • Develop artifacts that depict application design components, how they are invoked, and how they exchange data to form the composite solution.
  • Collaborate with Enterprise Architecture (AB), application development teams and Architecture Review Board (ARB) members to develop and refine application designs prior to presenting to the ARB.
  • Adapt the architecture to evolving security conditions and support security guidelines.
  • Develop applications security standards and participate in the ARB.
    • Core competencies include for the client:Customer Focus, Optimizes Work Processes, Collaborates, Communicates Effectively, and Be Open and Authentic.
    • Manager will provide more detail as needed.

Qualifications:

  • Bachelor’s degree in Computer Engineering, Computer Science, or related field. A combination of education and experience, including military service will also be considered.
  • 10+ years of overall IT experience and 5 years’ experience in software development using Java, Spring and REST API in mid to large organizations.
  • 3+ years’ experience using identity and access management tools, such as Okta, Ping, Onelogin, Centrify, Auth0, AWS Cognito or Oracle Identity Manager.
  • Prior experience performing in a technical leadership role.
  • Demonstrated experience with:
    • Experience securing commercial, open source, and cloud-based applications with IDP platforms including developing prototypes and integration models.
    • Authorization concepts such as OAuth framework, JWT.
    • Enterprise SSO, Federated SSO such as Open ID connect, SAML2.
    • Multi-Factor Authentication (MFA), Common factors such as SMS, Email, App based Authenticator.
    • Provisioning/de-provisioning accounts, entitlements, roles/groups, policies.
    • IDP customizations for enterprise needs using API extensions or hooks.
    • SSO across various applications in different platforms like API, SPA, Java EE, Web applications.
  • Demonstrated ability to:
    • Troubleshoot application security issues that cross team boundaries (OS, networks, firewall, etc.).
    • Developing applications using micro service architecture.
    • Create logical/physical/functional views, process flow diagrams, and system integration diagrams.
  • Knowledge of scripting languages such as BASH, PERL or Python.
  • Excellent communication and strong negotiation skills; demonstrated ability to influence decisions.
  • Strong problem-solving and analytical skills.
  • Self-motivated with demonstrated ability to make timely decisions.
  • Live within a commutable distance of Herndon, VA.

Desired:

  • Master’s degree preferred.
  • Experience with:
    • API design/development including API security, API Gateways or similar application integration development to use established API standards for internal and external customers
    • UI development experience using JavaScript frameworks such as Angular, React.
    • AWS services such as API Gateway, Lambda, S3, Aurora, Dynamo DB, Elastic Cache.
    • Build custom UI using Okta widgets.
    • Integrating Okta with third party enterprise applications like Salesforce using Federated SSO.
    • Technology platform migrations.
    • Application migration from data center to cloud platforms.
    • Adaptive Multifactor authentication (Adaptive MFA with context-based policies).

Source link