Jobs

Jobs 2017-06-14T10:05:04+00:00

Identity and Access Management Systems Engineer

Glenview, Illinois

Job ID: 6564 Category: Other

Seeking to add an Identity and Access Management Systems Engineer to our client' s  Corporate Headquarters Information Security team.

This individual will be primarily responsible for testing, configuring, and setting standards and procedures, for the client' s Enterprise Directory (ISDS/TDI), Web Access Management System (ISAM), and Identity Management and Governance System (ISIM/IGI). This individual will provide guidance on integrating the identity management authentication and authorization framework into new and existing applications. In addition, this individual will share responsibility for the engineering of new security solutions as well as support for policies and standards already in-place.

As one of the primary focus areas of the position is the development and implementation of the Web Access Management System, the ideal candidate will have experience working with web applications, web application servers (IIS, WebSphere, Domino, Weblogic) and the methods for accomplishing single sign on. Must have basic web programming knowledge (HTML, HTML forms, HTTP headers, HTTP status codes, etc). 

In addition, the development of the client' s Enterprise Directory requires an in depth understanding of LDAP (schemas, object classes, attributes, queries, dynamic groups, nested groups, etc.) some database operation and SQL query design. Responsibilities will include developing directory integration solutions among directory and database systems.

The ideal candidate will have experience configuring and supporting an enterprise Identity Management system for access provisioning. Configuration includes the automation of role based access, segregation of duty, and background workflow for owner approval and periodic access review.

Experience with Windows Domain Administration is required.  Basic understanding of Windows networking is required. Experience with Java script coding is desirable, although experience with another scripting language is sufficient. Knowledge of Federated Identity and Web Services security concepts such as SAML, ADFS, WS-Federation and WS-Security is required.  Knowledge of Microsoft AD Integration with Microsoft O365 Cloud/Microsoft Azure Active Directory is a plus.

Required Qualifications:
  • Minimum 5 years of extensive and applied experience with Enterprise Access and Identity Management, working with Active Directory and Group Policy Object management, LDAP, Federations, SSO, including design, configuration, and deployment.
  • Minimum 2 years of experience with supporting various authentication protocols (Kerberos, SAML, OAUTH, LDAP, etc.).
  • Education (degree): Bachelor-level degree in engineering, information technology, computer science, or equivalent educational or professional experience.
  • Excellent troubleshooting skills, including the troubleshooting and debugging Active Directory technologies as well as troubleshooting network connectivity issues as they pertain to authentication and authorization.
  • Must be able to think out of the box. Must have the ability to troubleshoot non-standard issues/undocumented issues, to look at the big picture and see how a problem fits in and determine a solution that fits within the existing framework.
  • Provide input to assist with continual improvement.

Not ready to apply?

Send an email reminder to:

Share This Job:

Related Jobs: