WebSEAL Architect

Overview

On Site
Depends on Experience
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - 18 Month(s)
No Travel Required
Unable to Provide Sponsorship

Skills

IBM Security Access Manager (ISAM)
IBM WebSEAL
Reverse Proxy configuration
Authentication & Authorization systems
Access Control Policies
Web Access Management (WAM)
Identity and Access Management (IAM)
User Access Management (UAM)
Single Sign-On (SSO)
OpenID Connect (OIDC)
LDAP
OAuth
SAML
OWASP
PKI
Kerberos

Job Details

Job Title: WebSEAL Architect

Location: Windsor, CT (Onsite)
Employment Type: Full Time / Contract

Position Overview:

We are seeking a highly skilled WebSEAL Architect to design, implement, and maintain secure web access management solutions using IBM Security Access Manager (ISAM) and its WebSEAL reverse proxy component. The ideal candidate will have extensive experience in authentication, authorization, and secure web architecture — ensuring enterprise-level protection for applications and data.

Key Responsibilities:

Architecture & Design

  • Design and architect secure web access solutions using IBM WebSEAL.

  • Develop detailed design and integration documents for enterprise applications.

  • Define and enforce security policies, authentication, and access control frameworks.

Implementation & Configuration

  • Install, configure, and manage IBM WebSEAL instances.

  • Integrate WebSEAL with LDAP directories, SAML/OIDC identity providers, and backend applications.

  • Configure standard, transparent, and virtual host junctions for application access.

Security & Compliance

  • Implement SSL/TLS encryption, mutual authentication, and secure cookie handling.

  • Ensure compliance with enterprise security and regulatory standards.

  • Conduct vulnerability assessments and apply patches or updates as required.

Performance & Optimization

  • Monitor and optimize WebSEAL performance, scalability, and reliability.

  • Troubleshoot authentication, session management, and access control issues.

  • Implement caching and load-balancing strategies for high availability.

Collaboration & Documentation

  • Work closely with application, infrastructure, and security teams.

  • Provide technical leadership and mentorship to junior engineers.

  • Maintain detailed documentation of configurations, policies, and procedures.

Required Skills & Qualifications:

  • Strong hands-on experience with IBM Security Access Manager (ISAM) and WebSEAL.

  • Proficiency in LDAP, Kerberos, SAML, OAuth2, OpenID Connect.

  • Strong understanding of reverse proxy, HTTP headers, cookies, and session management.

  • Experience with scripting/automation (Shell, Python).

  • Deep understanding of web application security principles (OWASP Top 10).

  • Knowledge of SSL/TLS, PKI, certificate management, and network security fundamentals.

  • Excellent communication, documentation, and problem-solving skills.

Mandatory Skills:

  • Certified Information Security Manager (CISM)

Desirable Skills:

  • User Access Management (UAM)

  • Okta

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.