The Security Engineer will serve as a GCS (Global Cyber Security) subject matter expert collaborating with the development, platform and architecture teams to implement and support various security-

related products. The Security Engineer will engage with business and support personnel to design, implement and maintain robust, secure and user friendly solutions. Product disciplines include Identity and Access management, Multi-Factor Authentication, Strong Authentication and various methods of Single SignOn.

Responsibilities will include:

• Designing highly resilient infrastructure for various Identity and access management products
• Designing and developing secure integration between security tools and the application layer. Designs will include both on-prem and SaaS applications and supporting infrastructure.
• Designing and developing Single SignOn solutions using SAML, OIDC, OAuth and Session management tools
• Managing lifecycle upgrades of identity and access management products
• Assisting application teams with integration of access control tools to ensure compliance
• Serving as subject matter expert and point of escalation for security product operations team
• Developing standard operating procedures and technical guidelines for security product operations team
• Working with multiple vendors on product issues, product roadmap and new feature requirements
• Developing operating workflows, reporting tools, and utilities
• Collaborating with other areas of the corporation to help create effective security practices

Skills/Knowledge Desired:

• Strong leadership skills
• Experience with complex software integrations and migrations
• Ability to define and manage complex projects
• Expertise with SAML and OIDC / OAuth
• Expertise with ForgeRock Access Manager
• Expertise with ForgeRock Identity Gateway
• Expertise with ForgeRock Identity Manager
• Expertise with LDAP protocol and directory design
• Ability to perform light programming and scripting using tools such as java, javascript, unix shell scripting, powershell, python, perl
• Strong knowledge of secure configuration management
• Strong knowledge of identity and access management controls and principles
• Knowledge of cloud technologies and common technology stacks
• Knowledge of common web servers, operating systems and network security
• Ability to think out of the box
• Strong communication skills

Experience Desired

• 8+ years as a security engineer
• Experience with Solaris, Linux and Windows platforms
• Experience with Apache, Nginx web servers
• Experience with SSO and MFA products such as SiteMinder
• Experience working in large complex environments (financial services a plus)

Salary Range:

$140,000 - $222,500 Annual

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.