Notes

• IAM Configuration 20%

web interface-based configuration and non-coding development for the IdentityIQ solution

Skills required: TCP/IP networking internals and debugging, Linux, Security, Authorization, Single-sign-on, web application servers (Tomcat, WebSphere, WebLogic, JBOSS, etc.)





• IAM Engineering 20%

Working with IdentityIQ to install, customize and implement the solution. Configuration of code in support of all components of the IdentityIQ solution. This ranges from workflows to adapters and system configuration

Skills required: strong experience in XML, Java, IDE/Code Repository, Server OS, and familiarity with IdentityIQ configuration and API



• IAM Building DevOps Capabilities 20%

Design capabilities to automate the onboarding of applications for Single Sign On, Identity and Privileged Identity;

integrating and building adaptors as needed for IAM





• IAM Change Management Handling 10%

Tasked with validating code and deployment packages and promoting finalized code into the production environment







• IAM Reporting & Dashboard Development 10%

Create reporting and dashboard sites to drive compliance and adoption of the IAM Program

Maintain the CA Governance Minder software product utilized to produce and maintain the Access Management Reporting campaigns for Monthly, Quarterly, and Annual compliance reporting cycles.

Establish and perform data extraction, translation, and loading (ETL) activities to perform automated Web based reporting for the appropriate reporting requirements Ensure the success of required reporting campaigns to meet Customer Service Level Agreement (SLA) for Monthly, Quarterly, and Annual federal regulatory compliance requirements

Perform account deletions in accordance with internal procedures.

Provide all requested artifacts and documentation for audit purposes.

data gathering for compliance and data governance

Assist in auditing tasks to ensure data integrity and other Systems Analyst type tasks

Implement IAM data feeds from access certification workflows, provisioning / de-provisioning workflows

Implement enterprise-wide IAM data repositories, reporting solutions and audit services

Update Reporting log

Complete required reporting campaigns per schedule

Archive Reporting artifacts as required for cords of the incident

Update metrics for campaign execution





• IAM Gathering requirements and technical information 5%

gather information needed for business application integration with IAM solutions

Gather technical info in support of design/configuration for roles, applications, workflows and other IdentityIQ configuration components.

Work with various application owners and business leaders to define business roles based on RBAC;

Analyzes security alerts, incidents, and requests; identifies root cause; determines and executes appropriate steps for resolution.

+ Escalates security incidents/problems as required and monitors progress towards resolution until the incident/problem is closed/resolved.

+ Performs threat hunting using available security tools, indicators, and intelligence.

+ Builds, maintains, and manages strong relationships across internal and external teams to resolve problems and deliver information security services.

+ Ensures that information security assets are maintained and inventoried.

+ Drafts, reviews, and edits operating procedures and reports.

Gathers and documents security requirements to support enterprise security initiatives.

responsible for leading the design and review of test cases and process change requests.

discuss requirements with business team members and translate them into technical security requirements.

Gathering and understanding business processes / user requirements, and shaping them with the business so that functional requirements can be defined

• Communicating detailed requirements and business rules through user stories, use cases and other supporting documentation

• Engage with business users and application teams to gather functional requirements and reporting needs

• Documenting existing processes and to be processes

• Collaborating with solution architects, vendors and other members of GISCS

• Defining test procedures and assist during user acceptance testing

• Perform first level of end user testing

• Ensuring adherence to project management process, systems development methodology and quality standards for producing project deliverables

Provide overall support to ensure the successful design, testing, and implementation of applications that support the business unit, Also, provide support in developing training materials and conducting training

• Document and manage issues and actions for IT applications and projects

• Prepare and make presentations using MS PowerPoint and Visio to project stakeholders and management

• Participate in the evaluation of new products or initiatives to determine the technology support required

Collaborating with key stakeholders and other available resources, facilitating discussions, analyzing and evaluating options and providing recommended course of action to remain compliant, meeting both policy and integration requirements

• Conducting business needs and functional/non-functional requirements elicitation and completing functional requirements documentation through the full sign-off process for SailPoint integration and maintenance requirements

• Ensuring tasks adhere to policy and guidelines and managing impacts and changes through the full sign-off process for SailPoint integration and maintenance requirements

• Managing all tasks assigned within scope, quality and time-frame allocated and be accountable for those tasks

• Proactively identifying and recording risks, issues, dependencies and assumptions in accordance with policy and process standards. Agreeing on escalation level with Management, then managing those risks through to resolution, including the required evidence



• IAM Administration and testing 5%

Day-to-Day administration of the IAM application, able to review logs and error reports to solve or escalate issues, handle system/server restarts, and manage the overall solution

Support IAM Application stack, including troubleshooting with networking and computer systems.

Operational review and analysis of access requests to ensure compliance;

Execution of controls around Identity lifecycle management;

Various testing capacities, including Unit Testing, User Acceptance/Pilot Team Management, Performance Testing, etc.

Managing/responding to issues on the IdentityIQ Repository (database) from initial setup to ongoing maintenance/troubleshooting





• Program Management 5%

Organizational sponsorship and leadership on the road map and execution of the overall IAM/RBAC program. Defines direction, prioritization and phases of implementation.

Strong analytical skills and ability to use data and information to convey a concise message to team members, leadership, and other relevant parties

interacting with internal and external customers with respect to transition to production, production planning, problem resolution, and process improvement

Coordinate with product, business, technical, and other partners to prioritize, plan, and execute development schedules in-line with product development initiatives and regulatory needs.

Provide transparency into gaps, issues, risks and opportunities across scrum teams, tackle impediments

Drive program, release level and enterprise improvement and standardization activities





• Architect Roles and Governance 5%

This is a combination of various gathering requirements and modeling/defining roles to be used for birthright, access request, departments/business unit roles and specific jobs or individual applications’ use. This responsibility has to do with performing certifications and setting policies across certifications, Separations of Duty and reporting.