send resumes to suji@jjcpl.net
Position :Specialist III – CA Siteminder Specialist
Location : NYC
Contract Length: 18months +
Job Description:
We are currently seeking a candidate who will serve as the Siteminder Specialist within a team responsible for implementing federated single sign-on within large scale system integration projects and for ongoing production support of this environment. The successful candidate must be familiar with multiple federated identity management standards to include Web Services, SAML, XACML, WS-Security (and other WS standards), WS-Federation, and other Identity and Access Management technologies as well as J2EE and Java technologies. This position requires solid understanding of single sign-on architecture concepts and integration of these technologies to both existing and newly-developed systems.
Responsibilities
· Design, implement, and maintain enterprise-wide access management and single sign-on infrastructure built on CA Siteminder r12, including Proxy and Federation components.
· Work closely with application teams to design and implement coarse- and fine-granted access control on a Java portal platform.
· Administer and support production Siteminder infrastructure components including policy servers, proxies, databases, and directories.
· Design and deploy federations with both internal systems and external organizations, providing assistance to partner IT staff where necessary.
· Establish and document standards for authentication, authorization, federation, and web services security as related to the Siteminder environment.
· Write custom code where necessary to integrate a particular application with Siteminder.
· Work closely with Identity Management team to ensure proper provisioning of Siteminder users.
Qualifications:
This position requires a Bachelor's degree (Masters degree preferred) from an accredited college or university in a technology related field and/or 10+ years of experience of implementing security in a large scale system integration projects through the entire software development life cycle from concept to post implementation support (CA education/special education experience is a plus).
· Must have extensive HANDS-ON Siteminder experience, particularly with SAML 2.0 federation.
· Must have extensive J2EE development experience.
· Knowledge and experience in developing and implementing Federated Identity Management solutions.
· Federated identity and Web Services security concepts such as SAML, Shibboleth, LibertyID-FF and ID-WSF, WS-Federation and WS-Security.
· Experience in competing Identity Management products is a plus.
· Single Sign-On architecture experience with other products such as Oracle Access Manager, Sun Access Manager (OpenSSO) and IBM Tivoli Access Manager is a plus.
· Expertise with WebSphere products (particularly WAS) and Tivoli products (ITIM, ITAM, TFIM) is a plus.
· Experience implementing message flows utilizing MQ and/or HTTP transports.
· Knowledge of SOA-based security is a plus.
· Knowledge and experience in WS standards including WS-Security.
· Experience implementing messages (XML, XSD, XSL, and XSLT) and Web Services (WSDL, SOAP, and UDDI).
· Expertise in various security fields including access control, authorization, identification and authentication, public key infrastructure, network, and enterprise security architecture is required.
· Experience developing complex multi-dimensional enterprise architectures and ability to understand and design solutions that consider integration of heterogeneous environments and systems is essential.
· Demonstrate experience applying security risk assessment methodology to system development, including threat model development, vulnerability assessments, and security risk analysis.
· Experience with detailed requirements gathering and documentation, writing approach documents, whitepapers, and design documents.