US Citizenship is Required - • Ability to pass enhanced background screen (criminal, financial, drug) for Public Trust clearance.
The candidate applies subject matter expertise of LDAP (Directory services) and IAM best practices to support a web application hosting infrastructure. Candidate must possess intermediate or higher PingDirectory (or other non-Active Directory/ADAM) experience working in a medium to large enterprise. Candidate is responsible for deployment, development and performing ongoing maintenance, to include ensuring compliance with enterprise security policies. Candidate works with different teams to help them integrate with LDAP Directory infrastructure. Candidate coordinates with architecture groups to generate product roadmaps and create capacity plans. This position requires development and deployment expertise, as well as experience troubleshooting incidents.
Design, build, test, and document PingDirectory platform. Works with architects and SMEs to configure PingDirectory, role/owner/group membership management, user life-cycle management, re-certification, and report generation in accordance with business requirements and enterprise security policies. Troubleshoots incidents in development and production environments. Meets with auditors to provide implementation details and compliance data. Works with application and operations teams to ensure successful upgrades of infrastructure components and application code. Participates in incident and change management processes. Creates and maintains work instructions and deployment documentation. Provides after-hours on-call support.
Required Skills and/or Product Knowledge:
Possess intermediate or higher PingDirectory experience.
Experience with PingDirectory deployment, configuration, integration with target systems.
Experience with complete Identity and Access Management landscape, including the role of user provisioning systems; directories and virtual directories; public-key infrastructure as an authentication technology; and access compliance and reporting systems.
Experience with initial design/definitions, business/system analysis for user provisioning.
Experience with managing LDAP ACI, schema, replication, and data.
Experience with creating/renewing/installing LDAP server certificates for LDAP over SSL protocol.
Experience with upgrading PingDirectory infrastructure.
Experience with PingDirectory plug-in configuration.
Experience with n-tier architecture.
Experience troubleshooting time-sensitive production issues.
Knowledge of PKI certificates and their use in secure environments, to include obtaining and installing PKI certificates, trust chaining, mutual authentication, and working with private CAs.
Knowledge of service-oriented architecture (SOA), B2B and cloud layers
Understanding of software development life cycle
Possess strong troubleshooting skills.
Able to consistently apply quality and security standards.
Able to work effectively with technical team members and work diplomatically with customers.
Preferred Skills and Experience:
PingDirectory or similar LDAP Directory certified.
Experience working with Directories (AD and/or ADAM).
Experience working with Access Management tools (PingOne, SiteMinder, PingFederate)
Experience working with on-prem and in an Enterprise Cloud environment.
Experience with Unix/Linux commands, shell scripting, or other scripting languages to automate and/or improve productivity.
Experience with understanding basic network related work like TCP/IP, Firewall rules, DNS, and F5 pools.
Experience in an ITIL environment and working with a service ticketing system.