Security Administrator

Job Responsibilities:

• Experience with ISIM (IBM Security Identity Manager) - Role based access control (RBAC), workflows, Identity Reconciliations, repository, and data feed integrations.
• Experience with ISAM (IBM Security Access Manager) - Groups, ACLS, object space. SAML 2.0, OAuth 2.0, OIDC Federation - building mapping rules, IdP/Authorization server configuration, creating new federations to integrated with enterprise business applications.
• Working on IBM Security Access and Identity Management, Systems Architecture, Operating Systems, and data/communications networks.
• Installation, Configuration, and maintenance of IBM Security Access Manager (SAM), Security Identity Manager (ISIM), IBM Security Verify Governance, IBM Security Verify Access, IBM Directory Server, IBM Directory Integrator, IBM integration adapters and other IBM Security Tools.
• Configuring multiple instances of ISAM and other IBM Security products for High Availability (HA).
• Working on IBM Security Provisioning, WebSEAL, Access Control List, Protected Object Policies. And Advance Access Control.

Experience Required :

• 5 years’ experience in the documentation of solution designs and process flows.
• 5 years’ in IdM protocols and standards.
• 5 years’ experience in implementing IAM technologies and services.
• Experience with Unix/Linux/AIX.
• Experience with scripting and development (Java, JavaScript, Powershell).
• Experience with ISIM adapters, including Active Directory Adapter, SAP Adapter.
• Experience with WebSphere, TDS and DB2.
• Expert understanding of standard engineering concepts such as high availability, redundancy, reliability, and performance.
• Providing security analysis and remediation of security vulnerabilities for application using IBM Security tools
• Experience with supporting system Authority to Operate (ATO) processes and creating artifacts, control implementation details, DISA STIGs, and POAMs
• Experience with managing complex system records in the Cyber Security Assessment and Management (CSAM) or comparable system.
• Experience with Information Security Continuous Monitoring (ISCM)
• Experience with National Institute of Standards and Technology (NIST) security controls, the Governance, Risk Management, and Compliance (GRC) security documentation tool, Risk Management Framework (RMF), and security compliance processes
• Experience with Federal Information Security Management Act (FISMA) and Federal Information System Controls Audit Manual (FISCAM) criteria
• Ability to facilitate meetings, analyze authorization documents and associated artifacts against authorization requirements to identify gaps, establish a schedule to address outstanding authorization requirements, and coordinate directly with system team stakeholders
• Experience working with Federal customers and information systems
• Experience in analyzing and implementing security requirements at all levels
• Familiar with DHS Guidelines, OMB Memorandum, Executive Orders, Laws and Regulations
• Prefer knowledge of/experience with FedRAMP
• Prefer knowledge of/experience with cloud technology
• Prefer knowledge of IRS Publication 1075 security controls and requirements
• Ability to obtain a public trust clearance