Senior Identity Access Candidateagement Consultant

Job Description:

Responsibilities:

• Provide consultations for the team on development and support.
• Provide guidance to the Federation Broker Upgrade to 12C, particularly in integration, testing and client migration.
• Analyze and resolve the current Federation Broker and other team's operation issues.
• Support the team's modernization initiative.
• Work closely with the team to support the service.
• Produce maintainable solutions that will enhance the service's quality.
• Diagnose and troubleshoot functional and performance issues, implement corrective fixes, preventive fixes and triage as required.
• Research and implement the latest IAM standards to ensure we are always using the best techniques possible to support our applications.
• Create and maintain technical documentation as required.

• Strong experience and deep knowledge of Security Assertion Markup Language (SAML) and OpenID Connect (OIDC)/OAuth protocols.
• 7 years+ in developing using SAML for identity, authentication, and authorization
• Strong experience in PKI (Public Key Infrastructure) and other technologies to secure SAML and OAuth flows
• Proven experience with end-to-end solution design, system integration, and deployment
• 5 years+ in integrating SSO Federation
• Knowledge and experience with interfacing to IAM services
• Knowledge and experience integrating supporting systems such as databases, firewall, etc.

• College/University undergraduate degree in Computer Science or Engineering, or related discipline from a recognized institution or equivalent experience
• Strong Knowledge and experience with developing applications using SAML for Identity and Access Candidateagement.
• Knowledge and experience in agile methodologies in solution delivery
• A team player with a track record for meeting deadlines; strong relationship building, facilitation and influencing skills to successfully partner with internal and external stakeholders.
• Working knowledge of privacy policies and security principles
• Knowledge and understanding of IAM standards.
• Experience conducting design walkthrough sessions with project teams
• Experience in structured methodologies for the development, design, implementation and maintenance of applications.
• Experience in document specifications and application interfaces.
• Experience in application design, latest design patters, deployment and troubleshooting.
• Excellent analytical, problem-solving and decision-making skills; verbal and written communication skills; interpersonal and negotiation skills
• Experience reviewing, analyzing, and modifying tools to support SAML and OAuth service.
• Ability to provide post-implementation support and resolve any post-implementation technical issues.
• Ability to provide user and system documentation as required
• Knowledge of leading-edge technologies design criteria, security and recovery procedures, preparation of technical specifications for installation, testing and performance of integXXd, multi-services systems; assess performance and capacity of existing system making recommendations for improving performance and develop technical documentation.
• Experience planning, migrating, implementing, and sustaining large complex system development projects.
• Knowledge of JIRA and Confluence.
• Experience designing and developing large, complex, highly available, mission critical server applications.

• Analyze and resolve operation issues of current Federation Broker based on Oracle Identity Federation (OIF) 11G.
• Provide guidance in development, integration and testing in Federation Broker upgrade to Oracle Access Candidateager (OAM) 12C.
• Improve policy of 12C OAM Identity Provider function.
• Provide consultation and support to the team on current projects.
• Provide insights to the team modernization.
• Update specifications and related technical documentations.

• Minimum 7 years' experience in developing solution using Security Assertion Markup Language (SAML) for identity authentication and authorization - 30 points
• Minimum of 10 years' experience in delivering end-to-end system solutions - 20 points.
• Experience in developing OpenID Connect and OAuth solutions for service access - 20 points.
• Knowledge of PKI and security for IAM flows - 20 points.
• Knowledge and experience with design and implementation of the overall web application architecture.