***Must be a US Citizen or Permanent Resident***

Prestigious Fortune 500 Company is currently seeking a Tivoli Security Engineer with TAM, TFIM, and SSIO experience. Candidate will focus on WAM and SSO, particularly responsible for the architecture of IBM Tivoli Access Manager (TAM) and Tivoli Federated Identity Manager (TFIM).

Responsibilities:

• Create, maintain and drive the technology strategies and roadmaps within the area of the responsibility, e.g. WAM and SSO

• Partner with the security group to plan and drive the implementation of the technology and its capabilities. Responsible for the architecture of the technology, e.g. IBM Tivoli Access Manager (TAM) and Tivoli Federated Identity Manager (TFIM).

• Set up best practices and provide directions and guidance of how to utilize the technology and its capabilities

• Serve as asecurity architect to architect and design the security solutions for the applications or systems, and/or provide expertise and consulting to the project teams on security controls needed

• Design major changes to the TAM/SSO service to onboard new internal, external and federated applications

• Work with application, network, infrastructure areas to design SSO solution

• Review policies and procedures for modifications to the SSO environment configuration and associated infrastructure settings.

• Work with security team to plan major maintenance and ensure availability of the environment.

• Provide level 4 troubleshooting of any issues related to SSO systems

• Lead and/or participate in discussions requiring modifications to the SSO and on issues involving the SSO and underlying infrastructure

• Help leadership to promote and enforce execution of change management and standard operating procedures to maintain structure and effectiveness of the environment


Qualifications:

Extensive knowledge and skills in architecting Access Management/SSO & Federation system in a large, complex organization. Experience with IBM Tivoli Access Manager (TAM) and Tivoli Federated Identity Management (TFIM) is required.
Demonstrated experience in interfacing WAM/SSO systems to other enterprise systems such as:
Experience with Enterprise Directory/Directory Integration (ITDS, SDS, AD, LDAP)
Experience with enterprise class security products (TAMeb, TFIM, Netegrity, ISA Server)
Experience designing and evaluating load tests, capacity planning for TAMeb, and application configuration on UNIX and other platforms
Scripting/programming using PERL, Shell, PHP, C or Python
Experience with Web Services and SOA
Experience with Java and/or .NET technologies
Experience with PKI Technology
Experience with relational databases (DB2, SQL Server, Oracle)
Experience with Identity Management solutions (ITIM, Waveset, Identity Manager
Strong record of operational success managing Enterprise applications using Tivoli Access Manager, Tibco, Websphere environments including outstanding uptime and throughput.
Demonstrated knowledge and skills operating Directory systems in a large, complex organization. Experience with Sun Directory Server and Active Directory preferred
Demonstrated knowledge and awareness of operating & interfacing with various Platforms such as Websphere, Portal, SAP, .NET and J2EE applications
Minimum of three years experience with Identity Management, Provisioning, User Lifecycle operations.
General knowledge of information security, including network security, infrastructure security, application security, compliance frameworks, and other regulatory requirements such as PCI and SOX.