Security Consultant Identity & Access Management

Job Description

IntroductionInformation and Data are some of the most important organizational assets in today s businesses. As a Security Consultant, you will be a key advisor for IBM s clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client s organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world.Your Role and Responsibilities
• Experience in MySQL and Unix Shell/Perl scripting
• Knowledge of Web Services (REST/SOAP), Directories (LDAP, AD), etc.
• Knowledge of Application server like Tomcat, Weblogic and WebSphere.
• Demonstrate knowledge of market trends, new technology and security/Identity and Access Management services.
• Build and nurture positive working relationships with clients with the intention to exceed client expectations.
• Understand clients business environment and basic risk management approaches
• Designing and developing Identity Management, Role Based Access Control solutions, Workflows, Certification. UI Customization, Rules and Policies.
• Provide technical expertise for Account Aggregation and Group Aggregation to aggregate data from different application types.
• Implementing multiple Rules Connector rules, Aggregation rules & Provisioning rules
• Configuration of Roles, Policy and Certifications for governance compliance, Certification
• Rules, Policy Violation Rules, SODs
• Configurations for Access Request and Emergency access use cases as per customer requirements
• Design and deliver high quality security architecture and infrastructure setups and/or sub-systems to agreed deadlines.
• Assist customers in developing a secured Identity management infrastructure and also to define security policies to protect their applications from unauthorized access.
• Lead and own the security solution implementation.
• Actively participate in decision making with solution architect and seek to understand the broader impact of current decisions.
• Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services.
• Contribute towards training and mentoring the team.
• Participate in proposal development efforts
• Develop custom connectors using APIs exposed by the products.
• HLD and LLD experience
• Ability to work with the internal Project team and end customer to continue design and deployment activities and further enhance the IAM solution
• Documentation skills
Required Technical and Professional Expertise
• 2-10 years of industry experience with minimum 2 years relevant experience in Saviynt and/or SailPoint-IIQ and/or Okta and/or CyberArk and/or Azure AD , windows AD.
• Experience in development and implementation, design and architecture of the identity and access management solutions.
• Must possess the technical/functional skills necessary to understand and manage consulting project engagements.
• Experience in developing identity/access management strategies, architectures, and implementation plans.
• Experience in end-to-end implementation lifecycles of Identity/Access Management project.
• Excellent hands-on knowledge on the best practices of deploying the security solution.
• Leading facilitated workshop sessions.
• Experience with Enterprise Provisioning, Roles based Access Controls, Single Sign On, external and internal federation, and systems integration, Compliance based Attestation and Re certification.
• Experience with managing Okta Mastered Users, Application with Single Sign On (SSO) and application provisioning.
• Robust knowledge of Web Access management processes, technologies, with emphasis on federation expertise, web services , and SOA Thorough understanding of SAML specification , digital signatures , certificates management , and session management.
• Strong experience with common web access management domain related skills (e.g. understanding the concepts of cookies , sessions , header / cookie variables , HTTP traffic flow / analysis , etc.)
• Strong expertise on design and architecting highly available solutions for Identity and Access Management.
• Knowledge of network & internet security, business impact assessment and risk management
• Design & implementation of Identity/Access Management solutions on multiple flavors of operating systems.
• Develop the migration strategy, migration plans and risks for migration from previous versions of Identity/Access management systems to current versions.
• Must possess the technical/functional skills necessary to understand and manage consulting project engagements.
• Experience in development and implementation, design and architecture of privileged access solution using PAM skills like CyberArk / Secret Server
• Must possess the technical/functional skills necessary to understand and manage consulting project engagements.
• Should have a good understanding of Identity and Access Management platform framework and functions.
• Should have good basic skills and conception understanding of Windows Architecture and on Networking basics
• Should have very good knowledge on User Access Management Process, Auditing and Reporting
• Should have good understanding of Microsoft Azure Active Directory and its Features & Functionalities like AAD SSO, AAD MFA, AAD B2B, AAD B2C, PIM, RBAC, Conditional Access, SSPR, AIP, Azure AD Application Proxy, Cloud App Security, Azure RMS
• Lead the technical troubleshooting bridges on high severity issues on Identity platform, driving to resolution.
Preferred Technical and Professional Expertise
• Knowledge of Cloud architectures and complex enterprise On-Premises IT landscapes and hybrid Cloud/On-Prem architectures
• Knowledge of enterprise identity lifecycle management processes and standards
• Proven track record in working as part of a team, meeting deadlines, tutoring/mentoring
• Experience in specific industry verticals is preferred
• Experience with the following web technologies: XML, SPML/SOAP, Web and Application Servers, HTML.
• Experienced working with logging frameworks like log4j.
• Experience with JavaScript and one of the major JavaScript MVC frameworks (preferably Angular)
• SaaS deployment experience
• Experience with at least one of the following development environments/languages: J2EE, Java, JavaScript
,

Keyskills :
environmentsapcustomer relationsuse casestroubleshootinggrc