Sr. Cybersecurity Engineer – Iam – Forgerock

Sr. Cybersecurity Engineer – Iam – Forgerock

Requirements

• Deep understanding of web applications integration for single sign on using ForgeRock
• Setting up federation agreements using SAML 2, OpenID and OAuth protocols
• Setting up authorization policies and configuring authentication chains in ForgeRock AM
• Installation and configuration of ForgeRock AM
• Deep understanding of session management across geographically distributed locations
• Installation and configuration of ForgeRock Directory Server (DS)
• Deep understanding of replication and user directory synchronization
• Good knowledge of OpenID connects and OAuth protocols
• Setting up LDAP password policies and ACIs using custom scripts
• Building a performance lab and setting up scripts to load test the different access management functions
• Building scripts to monitor production traffic patterns and translate the numbers into scripts for performance lab
• Familiarity with all different flavors of web servers and app servers including IIS, Apache, MGINX, Apache Tomcat and Node.js
• Installation of configuration of ForgeRock agents on web servers and app servers
• Demonstrate ability to work in a complex organization to determine business and customer needs, providing the best solution to meet those needs
• Operate with little supervision and oversight
• Able to collaborate effectively with teams spread across different time zones
• Serve as the Subject Matter Expert (SME) for the team, acting as the primary point of contact for cross-functional teams and various support groups within Technology’s global teams
• Take on decision-making responsibilities that directly and significantly impact the productivity of individual support teams and the users they support
• Develop technical design and build documentation for all aspects of the technical infrastructure
• Proficiency in Multi-Factor Authentication and its various implementations

Responsibilities

• Work closely with Operations, database, and middleware engineering teams to maintain high system up time according to agreed SLA
• Take on decision-making responsibilities that directly and significantly impact the productivity of individual support teams and the users they support
• Develop technical design and build documentation for all aspects of the technical infrastructure

Preferred Qualifications

• 6 or more years of work experience with a Bachelors Degree or 4 or more years of relevant experience with an Advanced Degree (e.g. Masters, MBA, JD, MD) or up to 3 years of relevant experience with a PhD
• Knowledgeable and working experience with Http web servers, Apache, IIS, Tomcat, JWS
• Knowledgeable and working experience with LDAP technologies
• Knowledgeable and working experience with Linux & Windows operating systems
• Knowledgeable and working experience with application system and performance monitoring software tools
• Experience in managing global enterprise-wide platform solutions
• Able to work with cross-functional teams from different geographic locations globally
• Understand various development methodology, including waterfall and Agile/Scrum
• Proven track record of executing and driving result in a collaborative and thoughtful manner
• Excellent verbal and written communication skills
• Understands release managements and familiar with tools like Jira
• Familiarity with various industry audit/security standards including PCI-DSS, NIST and FFIEC
• Strong knowledge of web-based 3-tier application and security architecture. Good knowledge of overall network architecture including firewalls, load balancer and WAF
• Knowledge and working experience of API authentication and authorization
• Known for building and growing first class engineering team
• Understanding of incident, change, and problem management, as well as software release management processes
• Familiarity with Cloud-based Identity and Access Management (IAM) solutions