Identity Access Management Engineer (IAM Engineer) Morgan Stanley
New York, NY

Job Description

Description:

We (Enterprise Security Platforms) are looking for a highly motivated individual to join our Authentication DevOps group. The successful candidate will be part of a team responsible for supporting authentication platforms for both

on-prem and for the cloud.

An ideal candidate should previously have worked with enterprise authentication products previously and have at least light-weight scripting experience.

Responsibilities:

Providing senior-level support for firm authentication solutions.

Solutions range from industry-standard applications to homegrown tooling.

Create lightweight tooling (as required) in support and maintenance of the infrastructure.

Participate on calls with internal users and external clients or vendors.

Provide senior level 3 and DevOps support, serving as a subject matter expert. Technical Skills:

An acute understanding of Authentication and Identity Systems and Infrastructure.

Experience working with moderate to large scale enterprise architectures.

Experience working with CA Single Sign-On (SiteMinder) and PingFederate products

Knowledge on open-source authentication protocols and related technology including OpenID Connect, oAuth2.0, and SAML.

Knowledge on LDAP, Kerberos, RSA SecurID, SSL, Mutual SSL.

Familiarity with full-stack development tools and an intermediate knowledge of at least one scripting language such as Perl, Python.

Understanding of load balancing, clustering, high availability and disaster recovery

Basic knowledge of operating system administration on Linux [Redhat] platforms

Optional: IAM Cloud platforms such as those offered by Azure or AWS.

Optional: Experience with Git, Jenkins and other CI/CD tools will be a plus.

Experience:

At Least 3 years experience with CA Single Sign-On (SiteMinder) (Must)

At Least 3 years experience with PingFederate (Must)

5 to 6 years of experience working with authentication and authorization solutions.

CISSP, AWS Certified SysOps Administrator, Certified DevOps Engineer, Azure Administrator Associate or similar certifications (optional).

Soft Skills:

Active interest in Authentication and Information Security.

Excellent written and oral English communication skills: capable of writing comprehensive documentation, making presentations to an internal audience and interacting positively with upper management, colleagues and customers.

Independent problem-solving, highly motivated and self-directing.

Comfortable working support calls with internal end user interaction and with periodic on-call responsibilities.

Must be a self-starter who recognizes the value of working as a member of a team.