Principal, Identity and Access Management Systems - FORGEROCK
Remote if in: IL, TX, FL, GA, MA, MD, MN, NC, NJ, NY, DC, WI
SALARY: $160k plus 15% bonus
open to h1b transfer
SELLING POINTS: ForgeRock Identity suite using Oauth methodologies is key Linux Windows Enterprise environments active directory and LDAP experience supporting ForgeRock identity platform identity gateway access manager and directory server Java Javascripts python scripting
The Identity and Access Management team is responsible for access control and all associated programs. Applications supporting these programs include ForgeRock, SailPoint and Duo. This position has an emphasis on integrating internal applications with ForgeRock Identity suite using OAuth methodologies and custom scopes, coordinating directly with application development teams and enterprise architecture. Team Members collaborate daily for IAM System design and implementation, as well as assist with operational and customer support of the OCC workforce in Identity and Access related functions. Team members assist with evaluating and supplementing our compliance readiness posture, assisting with the evaluation of control execution, process efficiency, and evidence gathering for internal and external auditors.
Qualifications
- Microsoft Active Directory and LDAP
- Experience working in and developing solutions for a highly regulated environment or organization that leverages a security framework (such as NIST, COBIT, etc).
- Experience supporting the ForgeRock Identity Platform including Identity Gateway, Access Manager, and Directory Server.
- Experience with Multi-Factor authentication protocols and systems (Entrust, Duo, or similar).
- Experience with Single-Sign on protocols (OIDC, OAuth2.0, SAML, SWA, etc) and systems (Okta, Ping, Siteminder, or similar).
- Development experience: Java, Javascript, Groovy
- Development experience: Python and shell scripting
- Solid understanding of Encryption and Network protocols (SSL, IPV4, HTTP)
- Basic knowledge of Linux operating system administration.
- Basic knowledge of Windows server and desktop operating systems
- Basic knowledge of Amazon Web Services (AWS)
- Basic knowledge of Controls, Risk Ranking/mapping, Remediation items and general IT audit
- Preferred (nice to have)
- Sailpoint Identity IQ administration or experience
- E-GRC/Archer
- ServiceNow
- Mainframe architecture
- CA-ACF2 Mainframe access control facilities
- Directory services, LDAP, and their inherent security (Active Directory, CA Directory).
Education and/or Experience
- Bachelor’s degree in Computer Science, Engineering, or other related field, or equivalent experience
- 7+ Years Identity Access Management (IAM) experience preferred
- Hands-on IT or security operations experience
- Industry recognized certifications (CISSP, ITIL, etc)