Interviews: Both webcam and in-person.
Job Description:
The Identity and Authentication Security Engineer will be responsible for technical support to security technologies supporting implementation and operations of multi-layer secure authentication infrastructure (SAML, SSO, MFA).
The primary role of the Identity and Access Management Security Engineer will be the implementation, deployment and maintenance of the Secure Authentication, Access Management Systems, and Identity as a Service (IDaaS) technologies.
Specifically, he/she will implement, deploy and maintain one or more of the following Security Assertion Markup Language (SAML) and Single Sign On (SSO) technologies: SecureAuth, Microsoft, Cisco ACS, OneLogin.
He/she will Partner with system and application teams to develop/create Enterprise Architecture integration strategies that allow secure access across district programs and applications.
Provide support services to define security requirements, identify the appropriate configuration for each unique District environment, and perform tasks associated with the day-to-day operations and maintenance on installed Cyber Security systems and applications.
Required Skills:
Experience with Secure Authentication, Access Management Systems, and Identity as a Service (IDaaS) technologies deployment and operationExperience with Security Assertion Markup Language (SAML) and associated Single Sign On (SSO) technologies: SecureAuth, Microsoft, Cisco ACS, OneLogin.Experience with Active Directory, LDAP, Radius, NTLM, SAML, AADL, IWA and Open directory platform.Experience with Wireless Authentication, OTP and multi-factor authentication platforms.Experience with strong authentication technologies and protocols (PKI, S/Mime, SSL).Experience with Managed Public Key Infrastructure (PKI) Solution, deployment and operation.Troubleshooting, Scanning & Analysis tools.Networking and Network Operations.Qualifications:
Bachelor of Science in Electrical Engineering, Computer Science, Information Technology, or equivalent data security and networking experience required.CISSP, CISM, or relevant Vendor training/certification preferred.Background check and credit check will be required.Experience and Skills:
Specific knowledge, skills, and abilities required by the incumbent to successfully fulfill the Major Duties and perform the Tasks required for this position include:
Server Administration background – Windows and/or Linux/UnixKnowledge of network security architecture concepts, including topology, protocols, components, and principles (e.g., application of defense-in-depth).Knowledge of defense-in-depth principles and network security architecture.Knowledge of communication methods, principles, and concepts that support network infrastructure.Skill in implementing the methods, standards, and approaches for describing, analyzing, and documenting an organization's enterprise IT architecture.Skill in analyzing and securing an enterprise architecture.Knowledge of engineering concepts.Skill in integrating and supporting information system security architecture.Specific Tasks:
Analysis, design, configuration, implementation, documentation and operation of Intrusion Prevention System devices.Manage system deployments, upgrades, ongoing maintenance and operations.Configuration and operation of security device authentication, management & logging platforms.Assist in requirement gathering related to implementation of security infrastructure technology solutions across enterprise and service provider networks.Provide Tier3 support for NOC personnel troubleshooting network issues.Identify, troubleshoot, and resolve complex network connectivity issues as well as advise on network security related issues. Provide occasional off-hours support for planned maintenance work and unplanned support issues. May occasionally require on-site work at a data center during off-hours.Travel Requirements: No travel anticipatedCONTRACT JOB DESCRIPTION:
Responsibilities:
Coordinates IT project management, engineering, maintenance, QA, and risk management.Plans, coordinates, and monitors project activities.Develops technical applications to support users.Develops, implements, maintains and enforces documented standards and procedures for the design, development, installation, modification, and documentation of assigned systems.Provides training for system products and procedures.Performs application upgrades.Performs, monitoring, maintenance, or reporting on real- time databases, real-time network and serial data communications, and real-time graphics and logic applications.Troubleshoots problems.Ensures project life-cycle is in compliance with District standards and procedures.Minimum Education/Certification Requirements:
Bachelor’s degree in Information Technology or related field or equivalent experience.SKILLS:SKILL
YEARS USED
LAST USED
Overall IT Exp. (16+ yrs.)
Education:
Certifications:
Prior experience as technical support to security technologies for implementation, evolution and operations of the authentication insfrastructure. Required 5 Years.
Experience with Secure Authentication Systems, deployment and operation. Required 5 Years.
Experience with Managed Public Key Infrastructure (PKI) Solution, deployment and operation. Required. 5 Years.
Experience with strong authentication technologies and protocols. Required. 5 Years.
Prior hands on experience with SSL. Required. 5 Years.
Experience with Active Directory. Required. 5 Years.
Experience with LDAP. Required. 5 Years.
Experience with Radius. Required. 5 Years.
Experience with NTLM. Required. 5 Years.
Experience with SAML. Required. 5 Years.
Experience/familiarity with one or more of these technologies: RSA Secure ID, Cisco ACS, SecureAuth, OneLogin, Okta. Required. 5 Years.
16+ yrs. planning, coordinating, and monitoring project activities. Required.
16+ yrs. leading projects, ensuring they are in compliance with established standards/procedures. Not Required.
Bachelor’s degree in IT or related field or equivalent experience. Required.