RACF Engineer

Job Description:

Duties and responsibilities will include but are not limited to the following:

• Design / support firm’s mainframe initiatives related to authentication (such as Kerberos, Digital Certificates, encryption, MFA), authorization (such as role-based security, privileged access, sensitive data protection, etc.), automation (tooling, reports, utilities, and batch)
• Assist the mainframe Security Architecture and engineering in develop technical solutions, and testing.
• Work with Security Operations and Security Engineering in executing security solutions including deployment, process change, and training of security teams.
•  Designing and assessing technical feasibility of proposals to achieve the security requirement utilizing various tooling and process.
•  Work with various technology and security teams (such as application development, other security product owners, systems programming, DBA, CICS/MQ, business users, and auditors) on their requirements to design and implementation solutions.
•  Create security monitoring, automation, and reporting as needed utilizing various tools (zSecure, Compliance manager, Admin Express, Multifactor Authentication, Key Management)
•  Monitor and analyze key performance indicators and establish processes and methodologies for preventative actions.
•  Participate address questions/issues related to mainframe security best practice.

Qualifications Required:

• At least 4 years of related work experience as a RACF Engineer or Administrator
• Advanced experience with IBM RACF and IBM-ZSecure configuration/ internals (engineering focus)
• Ability to program in JCL, REXX and CarLa
•  Experience with z/OS utilities and facilities (such as: TSO, ISPF, SDSF)
•  Experience with database technology (such as: Sybase, DB2, SQL)
•  Experience with implementing Digital Certificates, encryption, MFA
•  Experience with and knowledge of common aspects of zOS installations (System Programming, Storage,
•  Networks, Unix Services, CICS, DB2, Performance, Tooling
•  Capable of working independently with limited oversight
•  Capable of project planning, organization, time management skills and ability to multi-task
•  MS Office business application experience (Excel, Word, Access, Power Point)
•  Excellent verbal and written communication skills
•  Must be a team player and foster a team first environment and inclusive culture

Desired:

• Experience with CA/Broadcom Top Secret Security
• Experience with distributed technology (such as: UNIX, USS file systems)
•  Prior experience with Systems Programming, Mainframe Network engineering, Middleware (such as: MQ Series, etc.)
• Knowledge of PERL, shell scripting, OpenSSL, SSH