Identity Management Systems Engineer (0520U) #24227

  • University of California, Berkeley,
  • Berkeley, CA
Identity Management Systems Engineer
Telecommuting not available Travel not required

Job Description

Job Title:
Identity Management Systems Engineer (0520U) #24227

Job ID:

Main Campus-Berkeley

Full/Part Time:


Info Svcs & Tech Imm Office

About Berkeley

The University of California, Berkeley, is one of the world's most iconic teaching and research institutions. Since 1868, Berkeley has fueled a perpetual renaissance, generating unparalleled intellectual, economic and social value in California, the United States and the world. Berkeley's culture of openness, freedom and acceptance—academic and artistic, political and cultural—make it a very special place for students, faculty and staff.

Berkeley is committed to hiring and developing staff who want to work in a high performing culture that supports the outstanding work of our faculty and students. In deciding whether to apply for a staff position at Berkeley, candidates are strongly encouraged to consider the alignment of the Berkeley Workplace Culture with their potential for success at .

Departmental Overview

CalNet provides secure, effective and flexible identity and access control solutions for UC Berkeley. CalNet operates a large portfolio of services to meet the identity and access needs of UC Berkeley. These services can be broken down into five primary categories:
Identity Data Services
Access Services
Account Services
User Support Services
Internal Services

The Identity Management Systems Administrator/Engineer is responsible for designing, building, testing, deploying, and maintaining hardware systems and software applications which handle user authentication and authorization for campus electronic resources, user account provisioning and de-provisioning, roles definition and assignment, and the delegated administration of these functions. The incumbent researches, conceptualizes, plans and implements complete and integrated identity management technical solutions for the UC Berkeley campus.

These systems include but are not limited to central campus directory services, single sign-on technologies, federated identity management technologies, systems for integrating data from upstream authoritative sources and for providing identity and access information to downstream application providers, and web applications for users and administrators to update identity management systems. As new technologies emerge, the incumbent is expected to learn these technologies quickly, evaluate them, and if appropriate, determine best strategies for integrating new technologies with existing UCB identity management infrastructure.


- Applies advanced systems/infrastructure concepts to define, design and implement highly complex middleware solutions, specifically technologies that manage the integration of identity data from multiple authoritative sources, user authentication and authorization for campus electronic resources, user account provisioning and de-provisioning, roles definition and assignment, and the delegated administration of these functions.
- Initiates, plans, designs and implements middleware solutions for the campus. Designs and deploys an identity management systems and software environment that is highly available, fault tolerant, scalable, and meets campus business needs.
- Proposes and implements highly complex system enhancements (software and hardware updates) that will improve the performance and reliability of campus identity management and data integration solutions.
- Manages centralized identity management and makes recommendations for purchase or upgrade of new computer hardware and software.
- Analyzes, acquires, installs, modifies and supports hardware and software components of UC Berkeley identity management infrastructure.
- Conducts highly complex systems programming and systems support activities on a variety of platforms, particularly REL, as well as integration with Microsoft Windows. Integrates data across systems and DB platforms
- Conducts highly complex programming tasks, including conceptualizing, designing, writing, testing, and deploying web applications (particularly Java and Groovy applications), ensuring proper configuration of web servers, supporting applications written in Java and Groovy on Grails.
- Work with other IST staff to ensure security of identity management systems and data.
- Executes security control to prevent malicious intrusion of campus identity management systems.
- Writes technical documentation and advises other technical staff on documentation for internal and external audiences.
- Administers security policies to control access to systems including working with campus data proprietors to process requests for privileged access to identity data
- Interacts with senior internal and external personnel. May lead a team of systems/infrastructure professionals.

Required Qualifications

- Expert-level knowledge of system and applications design and implementation.
- Solid understanding of and preferably experience managing LDAP directory services and integration, especially OpenDJ.
- Substantial experience with *NIX systems, particularly Redhat Enterprise Linux.
- Familiarity with web servers (especially Apache/Tomcat), loadbalancers, firewalls, DNS.
- Familiarity with technologies/frameworks/concepts critical to implementing middleware solutions, including messaging technologies, a variety to DB platforms (especially PostgreSQL), and SOA/REST/Web Services/etc.
- Ability to write complex code in one or more of the following: Perl, Groovy, Java, Javascript.
- Experience developing and maintaining secure web applications.
- Must be able to communicate technical information in a clear and concise manner across the organization and at varying levels.
- Advanced level judgment and leadership to solve the most complex technical problems.
- Ability to establish and maintain effective working relationships at all levels with staff internal and external to IST as well as with vendors and clients.
- Ability to produce clearly written technical documentation.
- Has knowledge, skills and abilities associated with problem identification and resolution.
- Has knowledge necessary to design, set-up, operate, and correct malfunctions involving application of technology systems.
- Requires knowledge of other areas of IT.
- Bachelors degree in related area and/or equivalent experience/training

Salary & Benefits

For information on the comprehensive benefits package offered by the University visit:

How to Apply

Please submit your cover letter and resume as a single attachment when applying.

Conviction History Background

This is a designated position requiring fingerprinting and a background check due to the nature of the job responsibilities. Berkeley does hire people with conviction histories and reviews information received in the context of the job responsibilities. The University reserves the right to make employment contingent upon successful completion of the background check.

Equal Employment Opportunity

The University of California is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. For more information about your rights as an applicant see:
For the complete University of California nondiscrimination and affirmative action policy see:

To Apply, visit:

Copyright -2017 Inc. All rights reserved.

Posted by the FREE value-added recruitment advertising agency


Posted By

Berkeley, CA, 94701

Dice Id : jobeblok
Position Id : 24227
Have a Job? Post it

Similar Positions

Access Engineer
  • First Republic Bank
  • San Francisco, CA
Active Directory Engineer
  • Talent Navigation Experts
  • San Francisco, CA
Identity and Access Management Engineer
  • Mainz Brady Group
  • San Francisco, CA
Identity Management Developer
  • Calabria Group
  • San Francisco, CA
IAM Architect
  • SGIC Cloud Technologies Inc.
  • San Francisco, CA
API Gateway Engineer
  • Software Guidance & Assistance
  • San Francisco, CA
OAM with ping federate experts
  • Ulinkedus Initiatives
  • San Francisco, CA
IDM Consultant
  • Savera Solutions
  • Fremont, CA
Sailpoint/IAM Developer
  • Phoenix 2.0, Inc
  • San Francisco, CA
Axway API Gateway Engineer
  • Compunnel Software Group Inc.
  • San Ramon, CA
Sr. Systems Engineer
  • Robert Half Technology
  • San Ramon, CA
Investments Operations Systems Engineer (2018-5937)
  • Fisher Investments
  • San Mateo, CA
Senior Weblogic Portal Developer
  • WWT Advanced Solutions
  • San Ramon, CA