The Authentication Security Engineer will play a key role in the Cybersecurity Engineering team in managing risks to the information assets and systems of the organization by implementing and supporting the enterprise-wide authentication architecture. The responsibilities will include implementing, maintaining, and supporting the technology platforms that provide multi-factor authentication, single sign-on, federation, and access authorization.
- Work with various application teams to design, install, implement, architect, configure, and maintain one or more authentication and access management platforms for both on-premise and cloud environments
- Implement single sign-on and multifactor authentication integrations using SAML, OpenID Connect (OIDC) / OAuth 2.0, WS-FED, etc.
- Prepare test cases and regression test plans, as well as perform unit and peer testing
- Create documentation of the process, guidelines, standards, and technical specifications, as well as draw network and system architecture diagrams
- Perform daily ad hoc support with strong analytical skills for troubleshooting and be available for after-hours emergency support
- Perform system and application patching during monthly after-hour maintenance windows
Skills Required / Qualifications:
- 3+ years of IT professional experience working in cybersecurity, infrastructure, or network architecture organization with an emphasis on authentication and access management technology
- Experience working with SecureAuth, Oracle Access Manager (OAM), ForgeRock, Okta, Auth0, etc.
- Experience with authentication protocols (SAML, OIDC / OAuth 2.0, WS-FED)
- Experience working in Linux environments
- Experience in LDAP entries, schema, replication, best practices, and other critical aspects of LDAP is required (AD, OID, etc.)
- Experience with PowerShell and scripting experience is preferred
- Excellent verbal and written communication skills
- Security certifications (CISSP, CIAM, SecureAuth Administrator, etc.) are preferred
- Active member of one or more security associations (ISSA, ISACA, InfraGard, etc.) is preferred