Identity Access Management Administrator/Engineer
Greenbelt, MD

Job Description

ASRC Federal Technical Services (ASTS) is responsible for managing the NASA Goddard Software Engineering Services II (SES II) contract. This includes the following software engineering capabilities: Systems Engineering, Ground Software, Flight Software, Flight System V&V, IT Development, Science System Development and Data Processing. We are seeking an Identity Access Management Administrator/Engineer to join our team.

As a member of GSFC's code 700 organization, you will support newly developed Security Management programs in Cybersecurity Services & Integration (CSID).

Roles/Responsibilities:

The primary objective of this functional area is to consult, test, evaluate and enable Identity and Access Management along with web applications integrations with CA Siteminder utilizing web agents and SAML.

Provide consulting services to NASA & Missions contracts on the topics of identity management & CA Siteminder infrastructure utilizing both NASA infrastructure and DoD/NOAA infrastructure, and other customers and partners of NASA such as NOAA and USGS:

* Meeting and presenting to mission representatives.
* Determining their IT Security requirement.
* Guiding them through integration challenges CA Siteminder
* Identifying and providing solutions.
* Identification or development of 3rd party tools for projects.
* Operating infrastructure as needed (Windows, OSX, Linux).
* Provide software services such as development or data-call to support to IT Security.
* Knowledge of Security engineering, including HSPD-12.
* Providing documentation for solving integrations and updating Blogs
* Provide technical support to assist the center in meeting the agency application integration and authentication requirements.
* Provide support, workflow processes and training for NASA Access Management System (NAMS) integration processes for the following key areas:
* Meet with Application Owner to complete NAMS Application Integration form.
* Build NAMS workflow in Sandbox environment.
* Process application audit data utilizing SAP BusinessObjects (BOBJ).
* Support On-boarding process as needed.
* Maintain and support all NAMS workflows.
* Provide support to the application owners to complete all steps in the integration process.
* Perform Authentication Integration.
* Complete NAMS application integration.
* Determine methodology for authentication.
* Revise application to use Active Directory for user authentication.
* Install CA Siteminder on web service and complete integration with Launchpad.
* Test authentication methodology.
* Migrate to production environment.
* Provide support to the application owners to complete all steps in the integration process.
* Assist in development, test and implementation of the chosen authentication methodology. Provide NAMS Integration Status Worksheets, ICAM Application Integration Forms, eAuth Integration Questionnaires, eAuth Access Control Specifications, Application Code and Documentation.
* Assist in Access Management decisions as needed.
* Provide support to GSFC ICAM in executing HSPD-12 integration of smartcards.
* Understanding of common HSPD-12 challenges and mitigations.
* Building of tools to automate functions.
* Provide Authorization and Accreditation (A&A) support to ICAM and Missions.
* Performing security operations supporting ICAM A&A packages.

Requirements:

* BS degree or equivalent experience in computer science and cyber security. Advanced degree preferred.
* Minimum of 5-7 years relevant work experience.
* Eligible for a US government security clearance, must pass Public Trust Tier 2 investigation.
* Ability to communicate ideas and research both in writing and orally to team members and customers. Must be proactive and quick to respond to customer requests.
* Must have strong organizational skills, both analytical and problem solving, and the ability to work with sensitive information.
* Strong experience with multiple Operating Systems including Apple OSX, Windows, Linux.
* Experience with CA Siteminder to support Identity, Credential, and Access Management (ICAM) programs and products.

The ideal candidate will also have the following:

* Possess an active Secret clearance, or have a security clearance in process.
* Have demonstrable strong knowledge of US Government ICAM.
* Have experience working across multi-disciplinary Enterprise environments.
* Be technically proficient with IT tools, data formats, and effective IT management disciplines.
* Have experience with Active Directory Authentication, Enterprise Single Sign-on, Public Key Infrastructure, SAML, SSH, Radius, LDAP.
* Have experience with software development in multiple languages.
* Have web development experience.
* Have experience with DoD Smartcard either at NOAA, or DoD
* Have an interest in identity management and access management in the enterprise and evolving standards.
* Be prepared to support the development of new processes and tools in support of the task.
* Be capable of explaining highly-technical information security concepts to non-technical audiences in both written and verbal forms.
* Working knowledge of National Institute of Standards and Technology (NIST).
* ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.