Website:
Job details:
Job Description
Yum! Brands’ Cybersecurity Division is looking for a dynamic candidate to provide technical operational support for the IBM Security Access Manager (ISAM) and Ping Federate for our global business enterprise. We are a company that thrives on innovation, so to be successful you’ll have a great degree of curiosity, as well as deep knowledge of Single Sign On (SSO) and Federate Single Sign On.
This role involves day-to-day operations, troubleshooting, performance monitoring, and proactive maintenance of ISAM and Ping Federate. The Engineer will collaborate with cross-functional teams to deliver seamless SSO services.
Responsibilities
- Managing incidents, escalating critical issues to relevant teams, and tracking resolution progress.
- Administer and support ISAM environments to ensure the secure and efficient delivery of authentication and authorization services.
- Troubleshoot and resolve issues related to ISAM access management components, such as Single Sign-On (SSO), multi-factor authentication (MFA), and federation.
- Configure and maintain ISAM security policies, including web reverse proxies and authentication rules.
- Monitor ISAM system logs, alerts, and performance metrics to detect potential issues.
- Work with the security and network teams to configure and maintain SSL certificates, load balancers, and proxies for secure access to applications.
- Apply patches, updates, and upgrades to the ISAM system when required.
- Manage custom LDAP attributes, LDAP Schema
- Administer and maintain the Ping Federate environment, ensuring high availability, scalability, and optimal performance.
- Troubleshoot issues related to federation, authentication, and authorization processes.
- Manage and configure Ping Federate components such as authentication modules, identity provider (IdP), and service provider (SP) configurations.
- Ensure smooth integration between Ping Federate and other identity systems, including Active Directory, LDAP, SSO, MFA, and third-party applications.
- Apply regular system patches, updates, and upgrades to ensure the Ping Federate environment is secure and up to date.
- Provide operational support for Ping Federate connectors, including troubleshooting and configuration of federation protocols (SAML, OAuth, OpenID Connect).
- Implement and enforce security policies related to identity federation and access management.
Qualifications
- IAM Subject Matter Expertise with at least 8 -12 years hands on operation, integration and implementation experience security solution w/ business application and processes.
- Minimum of 8 years’ technical experience on ISAM and Ping Federation
- A deep understanding of Identity and Access Management Architecture is required.
- Proven experience with IBM Security (or comparable IAM solutions) and Active Directory required.
- Knowledge of Web Services Architecture required such as SOAP, REST, SCIM etc.
- Knowledge of SSO and Federation required.
- Knowledge of security and Java J2EE specification, Struts, WSDL, Web 2.0/WSRP.
- ISAM Concepts: Web security, Authentication, Authorization, Kerberos, Session Management, Web Proxy, Risk-Based Access
- A solid understanding of Information Security Architecture technologies and concepts required: Firewalls, intrusion detection, monitoring tools, encryption, certificate authority, reverse proxy, etc.
- Strong knowledge of Internet technologies and XML integration, including XML-Schema, XML-RPC, XML-SOAP, and/or Web Services/SOA
- Detailed familiarity with JSP/Servlets, SPML, DAML, JNDI, DSMLv2, LDIF, LDAP, ODBC, JDBC, JMS, JAAS, ISIM APIs
- Strong programming and scripting skills such as Java, JavaScript, PowerShell, Python etc.
Click on Apply to know more.