IAM Lead Architect at Kforce Inc in Jersey City, New Jersey

Posted in Other 14 days ago.




Job Description:


RESPONSIBILITIES:

Kforce has a client in Jersey City, NJ that is seeking an IAM Lead Architect.

Responsibilities:


  • Produce security architecture deliverables as part of initiatives related to certificate services and identity and access management

  • Partner with IT teams to design and deliver architectures to enable federated access and single sign on in cloud and hybrid environments

  • Proactively identify security gaps, propose solutions, and follow through with engineering teams for implementation

  • Innovate and lead others to solve complex issues

  • Drive the Identity & Access Management and secrets management architecture roadmap and share with AES stakeholders

  • Participate in discovery workshops to understand client's & Workforce IAM and security needs and provide best practice recommendations to meet IAM use cases; Develop design and architectural diagrams that clearly communicate the proposed solution and flows

  • Actively participate in the cross-functional team meeting, developing project plans, implementation, testing, pre/post go-live activities, risk management and issue management

  • Architect solutions utilizing Ping Identity Products, PlainID and similar IAM products, such as IGA tools, Virtual Directory, PAM and Secret Management solutions

  • Create IT security standards easily consumed by stakeholders; Evaluate the existing application security controls, (on-premise and cloud), identify improvements, and build plans into the application security capability roadmap for implementation

  • Build access management security patterns (standardizing authentication/authorization flows, single-sign-on/MFA, provisioning, user behavior analytics, access governance system controls, privileged/secrets mgt) and designs as part of initiatives to modernize the DTCC access management security posture

  • Mentor junior security engineers and architects to enhance their cybersecurity and architecture skills







REQUIREMENTS:



  • Bachelor's degree preferred

  • 8-10 years of related experience

  • Strong cybersecurity experience in architecting implementations using Ping Identity products (especially PingFed, PingOne, PingID, and PingAuthorize)

  • Experience with most standard IAM security protocols (Eg: OAuth, OIDC, RACF, SAML, LDAP, ID Federation, SSO, MFA, UEBA)

  • Experience architecting solution using products like API Gateway, IGA and Virtual Directory

  • Strong experience in identifying access management control gaps

  • Experience with Information Security frameworks (e.g., ISO 27001, CIS, MITRE ATT&K and NIST) & security architecture frameworks

  • Experience architecting automated data centre processes, including provisioning, application, and patch management, monitoring and alerting, capacity monitoring and planning, leveraging execution and human approval workflow design and implementation

  • Strong communication skills with the ability to present in front of large audience

  • Experience in OS security (Windows, Linux), Network security (Firewall, Proxy, WAF) and RDMS is preferred






The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.



We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.



Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless
and until paid and may be modified in its discretion consistent with the law.



This job is not eligible for bonuses, incentives or commissions.



Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.





More jobs in Jersey City, New Jersey
Information Technology
30+ days ago
Sr. Systems Analyst

Mizuho Bank
Jersey City, New Jersey
Other
about 6 hours ago
Automation Test Lead

Cygnus Professionals Inc.
Jersey City, New Jersey
Other
about 6 hours ago
Capital Markets Analyst

Dexian
Jersey City, New Jersey
More jobs in Other
Other
less than a minute ago
Customer Service Associate

Ollie's Bargain Outlet, Inc.
Homewood, Alabama
Other
4 minutes ago
Staff Methodology Engineer

ARM
Austin, Texas
Other
4 minutes ago
Staff Performance Modeling Engineer

ARM
Austin, Texas

  • About
  • disABLEDperson, Inc. is a 501(c)3 non-profit organization whose mission is to reduce the high unemployment rate of individuals with disabilities.
  • "We are simply here to serve."
© 1999 - 2024 Disabled Person, Inc. | Terms and Privacy Policy