Security Systems Engineer
Under the supervision of the Director of Infrastructure Architecture and Security Services, the incumbents accountabilities include, but are not limited to the following:
Supports Enterprise Identity and Access Management (EIAM) systems, including Symphony WAM, IBM Webseal, IBM Security Access Manager, IBM Federated Identity Manager, IBM Security Identity Manager, IBM Security Policy Manager IBM Directory Integrator and IBM Directory Server, ISAM, ISIM, TFIM, TSPM: developing scripts for bulk or automated modifications to LDAP objects; implement appropriate protection for EIAM systems, develop and maintain documentation on ACLs, structure, schemas, etc.; coordination with support areas for OS and database upgrades/patches for EIAM systems; upgrades and routine maintenance; troubleshooting support; performance monitoring.
Leads design efforts for security and related portions of new applications along with application development areas; supports EIAM tools; supports troubleshooting application issues related to EIAM tools; manages vendor relationships for EIAM and other security tools
Manages identity provisioning systems for access to various systems; provision IDs for associates; managing access, roles, permissions etc. to various systems including windows servers, sharepoint sites, and midrange unix servers.
Research, design, and implement solutions involving data encryption, data masking, secure file transfers, and data leakage prevention. Support new initiatives related to HIPAA and other mandates.
Designs and implements solutions to perform regular penetration and vulnerability tests on developed applications.
Provides mentoring and coaching to team members and other technical areas, assists management and provides input to performance plans and reviews. Recognized as subject matter expert for all security-related technologies. Trains new Associates and Contractors on FEPOC security technologies and operating procedures. Facilitates communication between all key IT groups and the customer community on security-related items.
Required:. College Degree in an Information Security or Technology related field or equivalent experience plus 5-8 years related experience. The incumbent will possess an extensive knowledge of information security concepts, information security policies and system architecture concepts. The incumbent should have a demonstrated ability to work effectively with Information Security tools in a large, complex, multi-platform environment.
Excellent written, presentation and verbal communication skills.
Ability to coordinate projects and tasks in line with department and company goals and objectives.
Ability to self- direct and work independently.
Ability to keep associates motivated and interested in their responsibilities and opportunities.
Possess an excellent understanding of Unix, Windows, and Mainframe (TSO, CICS) environments and their related security capabilities and functions.
Strong analytical / problem solving skills
Working knowledge of typical application life cycle development processes
In-depth knowledge and proven experience working with identity management / credential stores
Ability to readily understand and apply appropriate policies and procedures.
Extensive knowledge of security related regulations.
In-depth knowledge of web-application attack vectors and strong work experience implementing security controls for browser-based applications
Working knowledge of data encryption schemes and experience working with data encryption technologies
Strong work experience with scripting languages
Working knowledge of various programming languages preferred; JAVA experience a plus