Position: senior Identity & Access Management Engineer
Location: NYC
Duration: 6+ Months.
SCOPE OF SERVICES:
- This is a nine-month engagement for a senior Identity & Access Management Engineer to provide subject matter expertise for a comprehensive Privileged Access Management (PAM) deployment in a large, distributed environment. The candidate will work closely with business, technical and application stakeholders to achieve project objectives, from inception to production deployment.
- The scope of services includes:
- Deploying a PAM solution to 800+ Windows and Linux servers
- Installing session monitoring software on 500+ Windows and Linux servers
- Integrating high assurance level for on premise, commercial off the shelf, and cloud-based applications with Multi-Factor Authentication (MFA)
- Collaborating with Identity Management, Windows and Linux teams on updating AD roles and GPOs for privileged accounts
- Working with Infrastructure Management teams to ensure the introduction of the PAM solution does not impact production environments; documenting and completing test cycles
- Collaborating with Cybersecurity and Identity Management teams to develop processes and track actions, and mitigate unauthorized activity of privileged accounts
- Coordinating Change Control activities for application and server software installations
- Documenting server installations and processes
- Documenting gaps in Access Management processes and recommending controls to resolve the gaps
- Assisting with troubleshooting service disruptions
MANDATORY SKILLS/EXPERIENCE Note: Candidates who do not have the mandatory skills will not be considered
- Minimum twelve (12) years of experience as an Identity Management Engineer, solutions architect, or technical leadership role in identity management, providing specialized knowledge of complex customer processes and requirements; applying technical expertise in defining analyzing, validating, and documenting complex operation environments, states of technology and current engineering processes; conducting complex technical investigations through advanced research techniques, analysis or development phases of engineering projects.
- Master of Science (MS) in Computer Science and/or Engineering
- Certified Information Systems Security Professional (CISSP) Certification
- Experience architecting and deploying Centrify PAM in a large, distributed environment of 4000+ servers
- Experience integrating PAM with multi-factor authentication for end users
DESIREABLE SKILLS/EXPERIENCE:
- Experience working with LDAP based directory service management suites
- Good understanding of NIST framework as it related to Identity & Access Management
- Good understanding of Cloud architecture
- Linux experience in a complex enterprise environment with understanding of Kerberos and PAM authentication protocols
- Linux experience with account and group management
- Good understanding OAuth, Smartcards and MFA keys
- Good understanding of how strong authentication integrates with applications residing on Windows, Linux and Cloud platforms
- Hands on experience integrating security and event logs into SIEM platforms, including log filtering and event correlation
- In depth knowledge of authentication methods/protocols including LDAP, federation and SAML
- Strong Active Directory skills including multi-factor, multi-domain, and multi-tenant environments; domain trust relationships, organizational units, rights inheritance, DNS and GPOs; group assignments and role delegations
Regards
Philip
You received this message because you are subscribed to the Google Groups "SureShotJobs" group.
To unsubscribe from this group and stop receiving emails from it, send an email to sureshotjobs+unsubscribe@googlegroups.com.
To post to this group, send email to sureshotjobs@googlegroups.com.
Visit this group at https://groups.google.com/group/sureshotjobs.
For more options, visit https://groups.google.com/d/optout.
No comments:
Post a Comment