ISAM Engineer

As an ISAM engineer for the Customer IAM team, will oversee and maintain the ISAM infrastructure supporting multiple lines of business. Partner with application teams and CIAM engineers to modernize our security posture for our new and existing applications.

Responsibilities

Administer IBM Security Access Manager 10.x (ISAM), creating objects, policies, junctions, adding identity attributes.
Support project engagements in the enablement of web security infrastructure into an application's design.
Assist application teams with issue resolution.
Install, upgrade, and configure ISAM infrastructure
Configure SAML OIDC and OAuth
Apply Security Patches and Fixpacks
Troubleshoot access issues in web applications
Triage/resolve federation challenges
Work closely with vendors, open problem tickets, and product enhancements
Willingness and ability to participate in an on-call rotation, involving off-hours / weekend support


Provides expert content/professional leadership on complex Information Protection assignments/projects. Viewed as an expert in a specific aspect of information security. Undertakes specific projects requiring additional specialized technical knowledge. Makes well-thought-out decisions on complex information security issues. Identifies, evaluates, conducts, schedules and leads technical analyses functions to ensure all applicable IS security requirements are met.

THIS ROLE IS HYBRID 3X A WEEK ON-SITE IN PHILADELPHIA, PA.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ .

5-7 years experience within the IAM industry
Hands-on experience managing large enterprise-wide ISAM deployments across multiple environments
Working experience implementing applications with modern authentication and authorization protocols (OAuth, OIDC, SAML).
Knowledge of Single Sign On, various authentication mechanisms and authorization schemas.
Working knowledge of WireShark, Fiddler, JavaScript, JAVA, JSON, PERL/CURL, XML, SOAP, WS-Security
Working knowledge of LDAP or IBM Directory Server, WebSphere Application Server, IIS, IBM HTTP Server.
Working knowledge of Unix/Linux Environments, AIX, Solaris, RedHat.
Preferred experience in technologies including ISAM, OAuth, Federation, SAML 2.0, OIDC, XML, JavaScript, HTML, TAM, LDAP, Git, x50
Secondary technologies include Python3, NodeJS, JSON, Ansible, AWS, REST, Okta, Linux shell, Postman, CyberArk, basic networking knowledge to include ISAM interfaces, Splunk
Experience with Splunk, ServiceNow, QRADAR, JIRA
Strong customer service focus
HS diploma or GED required

degree preferred

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.