Enterprise Technology Systems IAM

Summary

Join Navy Federal Credit Union as an Enterprise Technology Systems-IAM professional and contribute to the design, implementation, and maintenance of system and product solutions related to Client Identity Access, Authorization, and Authentication (IAM) and fraud prevention. You will provide technical direction and engineering support for IAM solutions, ensuring secure and efficient authentication, authorization, and identity governance processes. Responsibilities include administering and supporting IAM and fraud prevention applications, developing and supporting federations, implementing changes through multiple environments, and applying engineering principles to system design and enhancement. You will also provide budgetary recommendations, document system components, and ensure system security and integrity. The role requires extensive experience deploying ForgeRock on Azure Kubernetes Service (AKS), experience with various IAM products, and expert knowledge of information security analysis and design techniques. Strong analytical, problem-solving, and presentation skills are essential.

Requirements

• Extensive experience deploying ForgeRock on Azure Kubernetes Service (AKS)
• Experience with sms communication systems such as Twilio, SalesForce
• Experience with FeatureSpace for real time Fraud Analytics
• Extensive experience supporting multiple IAM environments. Must be confident implementing, configuring, managing, and deploying IAM products (e.g., ForgeRock, RSA, Daon, Ping, Azure, SiteMinder, etc.)
• Extensive experience and expert knowledge of information security analysis and design techniques
• Expert knowledge of data security practices and procedures, including systems analysis, authentication technologies, and access controls. Priorities will be given to those with expert knowledge and skill in groovy, javascript experience, UNIX/Linux system administration and scripting, Identity Federation, SAML, JBoss, and Directory Services/LDAP
• Experience working in Agile methodologies for project planning and resource management
• Strong planning and organizational skills
• Strong research, analytical, and problem-solving skills
• Ability to present findings and conclusions clearly and concisely

Responsibilities

• Administer and provide support for IAM and Fraud prevention applications such as ForgeRock, ThreatMetrix, FeatureSpace, components policy servers, databases, and directories
• Experience in setup, configuration, and management of Policy servers, Web agents, Secure Proxy Server, and Federation
• Develop and support federations with internal systems and external organizations
• Implement changes through multiple environments utilizing the Change Management process
• Apply engineering principles into the design and enhancement of new and existing systems
• Provide input and make budgetary recommendations regarding staffing and equipment
• Document new system components, or modifications to existing components
• Ensure the security and integrity of system and product solutions, including compliance with Navy Federal, industry engineering, and Information Security principles and practices
• Present clear, organized, and concise information to all audiences through a variety of media to enable effective business decisions
• Perform engineering, development tasks and assignments in support of business needs
• Perform engineering technology research, procurement, deployment, and configuration for new and modified systems
• Perform other duties as assigned

Preferred Qualifications

• Extensive IAM applications experience
• Bachelor Degree in business, information technology, or related fields
• CISSP, CISA, CCSP, or other related Information Security certifications
• MBA, Master’s degree, PMP, MSCE/MCITP, Linux certifications
• Experience with Agile methodologies (e.g., SAFe)
• ForgeRock Identity & Access Specialist or Professional certification(s)
• Experience with multiple open-source authentication protocols including SAML, OAuth, and OpenID
• Experience with Ping Identity products
• Experience with Azure Active Directory Federation
• Experience with Kubernetes and Docker services
• Knowledge of the financial services industry
• Experience with Daon IdentityX Platform

Benefits

Hours: Monday – Friday; 8:00 am – 4:30 pm EST