CareersExplore the world of opportunities

ROLE DESCRIPTION:

Information and Data are some of the most important organizational assets in today s businesses. As a IAM Security Consultant, you will be a key IAM consultant and operations SME for clients, analyzing business requirements to design, implement and operate the Identity & Access Management platforms. High level requirements are:

POSITION REQUIREMENTS:

• Experience in MySQL and Unix Shell/Perl scripting
• Knowledge of Web Services (REST/SOAP), Directories (LDAP, AD), etc.
• Knowledge of Application server like Tomcat, Weblogic and WebSphere.
• Demonstrate knowledge of market trends, new technology and security/Identity and Access Management services.
• Build and nurture positive working relationships with clients with the intention to exceed client expectations.
• Understand clients business environment and basic risk management approaches
• Designing and developing Identity Management, Role Based Access Control solutions, Workflows, Certification. UI Customization, Rules and Policies.
• Provide technical expertise for Account Aggregation and Group Aggregation to aggregate data from different application types.
• Implementing multiple Rules – Connector rules, Aggregation rules & Provisioning rules
• Configuration of Roles, Policy and Certifications for governance compliance, Certification
• Rules, Policy Violation Rules, SODs
• Configurations for Access Request and Emergency access use cases as per customer requirements
• Design and deliver high quality security architecture and infrastructure setups and/or sub-systems to agreed deadlines.
• Assist customers in developing a secured Identity management infrastructure and also to define security policies to protect their applications from unauthorized access.
• Lead and own the security solution implementation.
• Actively participate in decision making with solution architect and seek to understand the broader impact of current decisions.
• Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services.
• Contribute towards training and mentoring the team.
• Participate in proposal development efforts
• Develop custom connectors using APIs exposed by the products.
• HLD and LLD experience
• Ability to work with the internal Project team and end customer to continue design and deployment activities and further enhance the IAM solution
• Documentation skills

SKILLSETS:

• 3-5 years of industry experience with minimum 2 years relevant experience in Microsoft Azure AD, Saviynt and/or SailPoint-IIQ and/or Okta and/or CyberArk and/or windows AD.
• Experience in end-to-end implementation and operations management of lifecycles of Identity/Access Management service delivery.
• Excellent hands-on knowledge on the best practices of deploying the security solution.
• Leading facilitated workshop sessions.
• Managing user accounts and permissions in the identity and access management system.
• Granting or denying access to company resources based on user role and privileges.
• Creating and managing user groups in the identity and access management system.
• Enforcing company policies and procedures related to identity and access management.
• Monitoring user activity in the identity and access management system.
• Reporting on identity and access management system activity.
• Identifying and addressing identity and access management issues.
• Working with the IAM team to resolve identity and access management problems.
• Maintaining up-to-date knowledge of identity and access management best practices.
• Documenting IAM processes and procedures.
• Experience with Enterprise Provisioning, Roles – based Access Controls, Single – Sign – On, external and internal federation, and systems integration, Compliance based Attestation and Re – certification.
• Experience with managing Okta Mastered Users, Application with Single Sign – On (SSO) and application provisioning.
• Robust knowledge of Web Access management processes, technologies, with emphasis on federation expertise, web services , and SOA Thorough understanding of SAML specification , digital signatures , certificates management , and session management.
• Participate in the collection and analysis of existing business and technical requirements to develop Enterprise-wide Identity and Access Management (IAM) processes and procedures.
• Demonstrate a deep understanding of risk and change management, security policies and controls, user account life-cycle management, roles based access, access management, and directory.
• Designs, configures, tests, implements, supports and administers centralized identity and privileged access management (IAM and PAM) solutions including local, cloud, hybrid integration services.
• Manages, maintains, and monitors IAM and PAM application environment, applies appropriate tuning and updates as necessary. Reports and provides guidance on configuration/settings.
• Responsible for technologies that enable SSO (Single Sign On), PIM/PAM (Privileged Identity and Access Management), MFA (Multi-Factor Authentication), Access Governance and Logical Access. This position also requires a strong knowledge of general Information Security practices.
• Create IAM system and process documentation, including data flows, process maps and support plans.
• Work with vendors and partners to configure, maintain and support IAM systems. Develop the migration strategy, migration plans and risks for migration from previous versions of Identity/Access management systems to current versions.
• Must possess the technical/functional skills necessary to understand and manage consulting project engagements.
• Experience in development and implementation, design and architecture of privileged access solution using PAM skills like CyberArk / Secret Server.
• Must possess the technical/functional skills necessary to understand and manage consulting project engagements.
• Should have a good understanding of Identity and Access Management platform framework and functions.
• Should have good basic skills and conception understanding of Windows Architecture and on Networking basics.
• Should have very good knowledge on User Access Management Process, Auditing and Reporting.
• Should have good understanding of Microsoft Azure Active Directory and its Features & Functionalities like AAD SSO, AAD MFA, AAD B2B, AAD B2C, PIM, RBAC, Conditional Access, SSPR, AIP, Azure AD Application Proxy, Cloud App Security, Azure RMS.
• Lead the technical troubleshooting bridges on high severity issues on Identity platform, driving to resolution.

Certification as a Certified Information Systems Security Professional (CISSP) and/or Systems Security Certified Practitioner (SSCP) is desirable.