Job Title: AAA Implementation Engineer
Location: Remote
Duration: 12+ months
Job Overview
The AAA Implementation Engineer is responsible for delivering technical implementation services that support the evolution and ongoing maintenance of the AAA infrastructure. This includes involvement in a variety of projects, system upgrades, service and feature enhancements, as well as remediation and break-fix activities. All work must adhere to the organization s current architectural standards, technology roadmaps, governance, and change management policies.
While the primary focus is on implementation and validation engineering, the role also requires a strong understanding of design engineering, AAA policies, security posture, protocols, and cluster deployment and maintenance. The AAA Implementation Engineer will collaborate directly with both internal and external stakeholders including Architecture, Product Engineering, Design/Implementation Engineering, Change Management, Service and Product Management, Finance, Business Management, and Operations teams as well as various levels of senior management.
Key Responsibilities
- Attend project meetings as needed
- Create Change documents and changes (CRQs)
- Schedule changes with the assigned engineer
- Ensure change documents are peer reviewed and approved
- Represent change records (CRQs) on various calls
- Represent on regional pre-CAB weekly meetings
- Socialize changes to other peer teams regionally so they can represent changes in their region
- Coordinate with other teams for change knowledge transfer
- Follow up with testers / testing coordination for all changes
- Ensure peer reviews are attached to CRQs / chase approvals
- Attend various change review calls including AAA weekly internal change calls
- Review test plans and results; assist in driving to root cause
- Collaborate with other internal/external bank teams (Operations, Engineering, requestors) on core design requirements/standards and risk assessment
- Leverage designated tools and resources to create NCDs that will drive implementation during pre-approved change windows as necessary
- Ensure initiatives/changes are well defined with success criteria, ownership, and realistic but firm schedules
- Rehearse changes in the lab
- Work during weekends to implement changes (low-risk changes can be performed during the week)
- Ensure no risks are associated with the change
- Ensure changes are user acceptance tested and authentication logs are successful post-implementation
- Build, update, and send Change Communication templates for weekend changes
- Work with release managers to create changes
- Update schedule as changes are completed and new work orders are added
- Coordinate with vendors during changes if devices need to be swapped or any type of datacenter local onsite support is needed
- Create work orders and other requests to engage Blackbox and device, firewall, and IP services updates
- Validate changes via working with users as part of user acceptance testing, creation and implementation of test plans (automated and manual), verify logs and test results
Preferred Experience and Attributes
- Strong subject matter expertise across various enterprise identity authentication technologies ranging from AAA (RADITACACS), 802.1X technologies (Wired/Wireless), RSA and token-based systems
- Experience with Aruba ClearPass Policy Server or Cisco Identity Services Engine (ISE) required
- Experience with Network Access Control (NAC) 802.1X for Wired and Wireless networks required
- Experience working with SSL Certificate Authorities and certificate management
- Strong experience and detailed technical knowledge in security engineering, system and network security, authentication and authorization protocols, cryptography, application security, load balancing
- Experience with tools such as Splunk, Excel; ideally experience in automation
- Expert understanding of network protocols TCP/IP, HTTP, HTTPS, SSL, TLS, 802.1.X, etc.
- Experience with testing and change validation, root cause analysis, risk mitigation, security assessments, analysis of security threats, trends and architectural preferred
- Experience with Remote Access (VPN posture) preferred
- Experience with Secure Cloud Analytics (Stealthwatch) preferred
- Project Management, ITSM
- Experience with Change Management and CAB processes and procedures
- Focused on execution, delivery, and commitment to dates
- Ability to work in a high-paced environment
- Can manage risk is a good decision maker
- Understands the big picture; ability to relate to the firm s strategy and actions and how they support business results
- Leadership: self-starter, self-directed and shows initiative
- Demonstrates ownership: is accountable and influential/can hold others accountable (professionally)
- Strong written and verbal communication skills; ability to communicate and influence upward as well as laterally
- Organized and detail oriented
- Familiarity with working in regulated and/or large global enterprises is a plus
Requirements
- Bachelor s degree in engineering, computer science, business, finance or related field/technical training (Post Graduate Degree a plus)
- Must have strong analytical skills
- Minimum of 8-12 years experience required in technical role supporting network project(s)/program(s)
- Experience with: Clearpass, Stealthwatch, ICE, AAA, SPLUNK, load balancing, captive portals, NA3RC, automation, network configuration, certificates, cluster build, upgrade and configuration
- Working knowledge of Excel and MS Project
- Financial services (Insurance, Banking, Investment banking) experience is a plus
- Ability to be nimble and flexible; prioritize workload, proactively react to issues and consistently react to shifting deadlines
- Ability to work weekends (as needed) for migration work
Never miss an opportunity! Create an alert based on the job you applied for.
