Es 16 Lead Engineer Identity And Access Management Iam Talent500 10 Years T693
Job Responsibilities: Required Skills and Knowledge: Qualifications:
- Establish and lead the enterprise access management strategy and technology roadmaps that enable the business.
- Work extensively with domain and application architects to identify, design, and deliver modern zero-trust authentication patterns and services.
- Collaborate with vendors and partners to drive product and service fit to solution and architecture roadmaps and gap areas.
- Demonstrate a deep understanding of risk and change management, security policies and controls, user account life-cycle management, roles based access, access management, and directory.
- Support continuous improvement by investigating alternatives and technologies and presenting these for architectural review.
- Propose and Create Solution requirement and design for IAM implementation.
- Strong knowledge of various security area like user life cycle, Privilege user management, single-sign-on, federation, etc.
- Work independently or as part of Global team to design and deploy identity management solutions, use case design and development of various process of IAM.
- Specialized in Identity and Access Management process, Identity Application Security, Authentication, Authorization, Web Service Security, Security and Risk, Security Operations, User\'s Account Provisioning, Web Single Sign-On and Audit.
- Good understanding of a variety of user repositories, including databases, LDAP servers, Microsoft Active Directory and Exchange, UNIX, and enterprise services such as Human Resources systems, Application Servers, CRM, etc.
- Create various life cycle rule to perform suspend user, delete user and Notification.
- Deep Knowledge of various Security Access Management tools (Isam, Ping, OAM, Site Minder etc.)
- Knowledge of Azure AD Connect Sync and Connect Health Agent, Azure AD Identity Management, Application onboarding and registrations on Azure, Azure App Proxy, Azure Conditional Access Policy and MFA.
- Knowledge of IDM process around O365, cloud and hybrid cloud solutions.
- Understanding of IAM connector design and coding, including requisite Application Programming Interfaces (APIs).
- Must have experience with managing SSO/Federation integration Tools (Okta) with various protocols (SAML, OIDC, WS Fed).
- experience with Thycotic-Privileged Account Management (PAM) Solution.
- Must have experience with scripting languages (Power Shell, Python, bash).
- Must have experience implementing Identity and Access Management solutions with either of cloud providers AWS, Azure.
- experience with automating access control processes such as user provisioning, onboarding, Role-Based Access Control (RBAC), authorization models, Single Sign-On(SSO),and LDAP.
- Understanding of SSO provisioning capabilities (JIT, SCIM, API).
- experience working with OKTA, ISIM Human Resources Feed with Workday Application, IGA/IGI.
- experience with developing integrations with Service Now for request and workflow automation is a Plus.
- Excellent interpersonal skills and ability to work both independently and as part of a team.
- 10 Plus years of Information Security experience/IAM related.
- Lead for providing Planning, Implementation of Identity and Access Management Solutions.
- experience leading large security access system upgrades/projects. Advanced understanding of IAM solutions and related technologies including Azure AD, FIM/MIM, Kerberos, LDAP, claims, group and role mapping, PKI, PIM, DNS, DHCP and GPO implementations.
- Proven expertise designing and implementing solutions leveraging OAuth, OpenID Connect, SAML, and MFA.
- MSCE and CISSP (preferred). Must have an excellent level of understanding around Identity and Access Management process, standards, frameworks.