Optomi is seeking an IAM Engineer who will be responsible for supporting Identity and Access Management (IAM) tools, enhance processes, and improve policies related to user access and identity management and is responsible for delivering enterprise-wide Identity, Access, Directory and Authentication Services with capability to support Cloud and On-Prem Application services

Main Identity Tools:

PingFed

***Looking for a IAM Engineer who has experience working with Ping Identity Tools, and PingFed experience directly is a nice-to-have!

OTHER REPRESENTATIVE DUTIES

• Responsible for creating IAM standards, Architecture designs against the clients policy, Identity and Access Governance strategies
• Develop solutions and recommendations for technical and process challenges, emerging threats and technology changes
• Provide senior support for the delivery team and clients and coordinate as needed with the technology vendors
• Writing various IAM related documentation such as high-level design, business and governance documentation.
• The leader in this role will drive the IAM strategy for all types of identities inclusive of both on-premise, and private and public cloud solutions
• Understand all identity repositories and user attributes flow between the different components to support business and technology processes.
• Design identity attribute mapping, schema, diagramming logical IAM deployment plan
• Build and maintain target architectures in alignment with business and technology objectives.
• Research and publish implementable architecture patterns and solutions by indulging in hands-on development and prototyping.
• Provide technical leadership to product development teams working on complex and intensive problems, basing their solution architectures on industry best practices and software techniques.
• Cultivate relationships with architects in the identity and access management discipline to maintain market knowledge of industry, products, and competitive landscape

EDUCATION AND WORK EXPERIENCE

• Bachelors/Masters Degree or related technology degree
• Certifications preferred PMP, ITIL, Identity Certifications
• CISSP, CISM, and/or International Information System Security Certification Consortium certification is a plus.

SPECIALIZED KNOWLEDGE, SKILLS & ABILITIES:

• Solid understanding of information security policies, standards, and industry best practices.
• Must be fluent in English
• Understanding of Identity and Access Management (IAM) concepts such as authentication and authorization, RBAC, SSO, Federation, Privileged Access Management, MFA, Password management etc.
• Experience architecting IAM solutions within Okta, MS Azure and other cloud providers, as well as on premise
• Experience with well-known Identity Governance and Administration platforms, including architecting and implementing new feature functionality
• Knowledge of federated identity systems, directory services, role-based access control, SSO, MFA & related identity standards (e.g., SAML, OAUTH Open ID Connect) etc.
• Strong experience with Directories, SSO, Federation, MFA, API Gateways, SOA services, Privileged Access Management platforms
• Strong critical thinking and analytical skills, providing thought leadership and innovation
• Assisting peers within the IT organization with planning and implementing complex architecture solutions
• Ability to inform Information Security policies, standards and SOPs aligned with strategic IAM vision
• Can manage across multiple competing priorities and time-sensitive initiatives
• Has strong ability to motivate and lead team members in a remote/virtual environment
• Experience in developing and running multiyear, complex technology initiatives and programs.
• Experience in managing relationships with Product and Services vendors.
• Create and maintain enterprise relationships with internal and external teams/partners.
• Good time management, communication, presentation skills
• Effective management of diverse and global teams
• Knowledge of Active Directory concepts, including users, computers, groups, policies, Cloud Infrastructure, Database, and Identity technical concepts.
• Knowledge of Agile processes and workflows
• A strong understanding of Information Security Architecture and ecosystem technologies and concepts required: Firewalls, intrusion detection, monitoring tools, encryption, certificate authority, reverse proxy, etc.
• Experience with Information Security frameworks and standards, such as NIST, SOC2, Hi Trust etc.
• Experience with Risk Management and Information Security strategy, tools, and technologies
• Experience in managing Cloud identities and implementing secure SSO capabilities.
• Experience in creating and managing tickets in ServiceNow and ITSM processes
• Good understanding of Dev Ops concepts