Job Description

This position is responsible for support and maintenance of Citco's Identity Access Management and LDAP infrastructure. The incumbent will interact with and/or support various support and development groups as well as other security team staff, business management and end-users in the performance of their duties.



Technical Expectations/Professional Practices:


• Comprehensive understanding on IAM technologies and products including PING Identity, CA SSO, CA IDM , AWS IAM components, SAML, User Directory
• Identify, evaluate, design and adopt new IAM technologies suiting business requirements
• Test, troubleshoot and work independently to find solutions to address critical business needs or to resolve issues
• Help address operational issues and requirements
• Prepare technical Documentation for projects
• Coordinate with various technical teams in discussions of strategy, planning, and implementation experience
• Understanding of Privilege Access Management products, integration with Unix and Windows hosts
• Hands on experience in scripting (Unix, JSON, and Python etc.) is a must.
• Troubleshoots, manages, and solves issues related identities, systems, access, accounts, authentication, authorization, entitlements, and permissions.
• Candidate should also possess experience troubleshooting, supporting and resolving system incidents, problems and changes
• Provides analysis, development, testing, training, communication, deployment, and maintenance of IAM systems to impacted users.
• Leverages problem solving and data analysis skills to ensure projects deliver on time, implements, and maintains documentation of processes, procedures, standards, and guideline relating to Information Security.
• Collaborates, gathers information, and acts as a resource to internal stakeholders on the identification of access management requirements.
• Ability to work independently with or without direction and or supervision.
• Portray professional demeanor.
• Train other staff members and external clients.


Background / Qualifications:


• Bachelor's Degree in Computer Science or related field required.
• Graduate Degree a plus.

Previous Work Experience:


• 5 or more years developing and supporting security solutions for Identity Management and Access control. This may include configuration, monitoring, and ongoing compliance.
• 5 or more years working in a UNIX environment.
• 5 or more years working with Infrastructure systems in a global environment across multiple data centers required.
• Specific Knowledge / Skills:
• CA SiteMinder installation and administration required
• Ping Fed, Access, Ping One, Ping ID installation and administration required
• AWS code pipeline, Cognito, IAM roles and policies required
• Single Sign On, SAML and Federation required
• CA Strong Authentication support knowledge required
• Privilege Access Management knowledge required
• Certificate Authority preferred but not required
• Experience working and troubleshooting in complex distributed global systems required
• Experience with Network Security systems (firewalls, intrusion detection, vulnerability analysis, etc.) preferred but not required
• Knowledge of Microsoft Office Suite (Outlook, Word, Excel, PowerPoint)
• Excellent written and verbal communications skills. Must be able to communicate effectively with all levels of staff, including Senior Management and end users.
• Must be able to effectively management multiple concurrent projects with high attention to detail.