Direct End Client: Metropolitan Transportation Authority
Job Title: Identity Access Management (IAM) Specialist
Duration: 12+ Months
Start Date: ASAP
Location: 2 Broadway, NY (Remote)
Position Type: Contract
Interview Type: Web Cam Only
Requirement ID: MTA_IAM7554_VV
Hours Per Week : 37.5 hrs
Position # : 4554-1
Description:
- The responsibilities will include the ability to develop and maintain the Enterprise-wide Identity Access Management (IAM) operation. This position is a highly skilled technical position that will perform activities related to securing and expanding the foundation to support the IAM operation for all MTA agencies.
- Desired knowledge, skills and abilities for this position include, project management expertise with implementations in a large-scale enterprise environment.
- Strong organizational skills with ability to manage multiple projects concurrently, Technical experience within, but not limited to, the following environments;
- Unix-Solaris; Java; Java frameworks; Workflow; WEB Services; XML based open source software; Directory services LDAP; and the suite of Oracle products and systems, as with Oracle Identity Management, Oracle Virtual Directory; Performance management tools, 01M connectors, and deployment/automation tools.
- Experience in network account security, compliance and access best practices.
- Experience with web services security solutions and application integration concepts, Familiarity with Governance and Compliance issues and solutions as it relates to Identity Management. Understanding and designing IAM solutions for heterogeneous environments and systems.
- Working knowledge of a broad range of current security appliances, tools, and applications and security methodologies. Excellent verbal and written communication skills, as well as ability to present and explain technical information. Strong analytical and organizational skills.
- Demonstrated competency in resolving diverse and complex business problems.
- Must be able to work outside of normal working hours as needed to support and resolve security needs.
Responsibilities include the following:
- Support, maintain and develop the security infrastructure to support all MTA Agencies under a centralized Identity Access Management (IAM) System.
- Provide administrative support for the MTA Enterprise-wide IAM Vault and the associated systems.
- Assist with validating requests connecting applications into the IAM operation.
- Test and recommend patches and upgrades related to the Directory infrastructure, test and implement advanced authentication methods and coordinate maintenance on all associated IAM servers.
- Establish and maintain the approval workflows required for each connecting application Manage the web interfaces used for user logins and user password self-service systems. Assist with coordinating the build-out of IAM connectors to requested applications or systems.
- Investigate and report back to management all issues and problems with published work flows.
- Support and maintain the user password self-service systems.
- Research and implement the upcoming technologies related to user authentication.
- Assist with the managing the login and access control lists (ACL), such as but not limited to:
- Application Client, Single Sign-On, and Client Trust services.
- Maintain production application(s) in a running state on a 24 hour, 7 days a week basis. Assist with the timely and appropriate conduct of alt mandated Security related access certifications and audits.
- Participate in all disaster recovery drills.
- Research and implement the upcoming technologies related to user authentication. Assist with the managing the login and access control lists (ACL), such as but not limited to:
- Application Client, Single Sign-On, and Client Trust services.
- Maintain production application(s) in a running state on a 24 hour, 7 days a week basis. Assist with the timely and appropriate conduct of ail mandated Security related access certifications and audits.
- Participate in all disaster recovery drills.
Additional Skills and Information:
- Hybrid Remote Contractor in Tristate.
- Strong DevSecOps skillset focused on the following:
- Checking for vulnerabilities early in the development process
- Code review skills to remediate redundancies, ineffective logic or legacy components
- Automation to detect and prevent security threats or vulnerabilities
- Skills in automation of component or integration testing
- Collaborative with team members, IT stakeholders and business owners
- Skills to mature RBAC & application onboarding programs
- Experience with WEB based APIs & Privilege management software (PAM tools)
- Provide program coding to existing identity modules, connector and workflows as directed by the Identity Manager
- Coordinate programming design, development, and testing of operational change requests
- Provide technical assistance to the operational aspects of Identity Management system
- Resolve programming coding issues