Lead Engineer - Identity & Access Management (IAM) en Hyderabad a Advance Auto Parts

Fecha de publicación: 9/13/2021

Resumen de la oferta

  • Tipo de contrato:
  • Ubicación:
  • Tipo de empleo:
  • Fecha de publicación:

Descripción del empleo

Job Description

Advance Auto Parts, Inc., a leading automotive aftermarket parts provider in North America, serves both the professional installer and do-it-yourself customers. Advance operates approximately 5,100 stores, 126 Worldpac branches and serves approximately 1,300 independently owned CARQUEST branded stores in the United States, Puerto Rico, the U.S. Virgin Islands and Canada.

We are currently searching for an IAM Architect Responsible for developing and implementing IAM architecture and technology solutions to address current and emerging security and business requirements of the organization. Delivers enterprise IAM management and systems solutions to enable system development projects involving multiple platforms, distributed processing, public cloud hosted multi-tier client server and web based applications.

Job Responsibilities:

  • Establish and lead the enterprise access management strategy and technology roadmaps that enable the business.

  • Work extensively with domain and application architects to identify, design, and deliver modern zero-trust authentication patterns and services.

  • Collaborate with vendors and partners to drive product and service fit to solution and architecture roadmaps and gap areas.

  • Demonstrate a deep understanding of risk and change management, security policies and controls, user account life-cycle management, roles based access, access management, and directory.

  • Support continuous improvement by investigating alternatives and technologies and presenting these for architectural review.

  • Propose and Create Solution requirement and design for IAM implementation

  • Strong knowledge of various security area like user life cycle, Privilege user management, single-sign-on, federation, etc.

  • Work independently or as part of Global team to design and deploy identity management solutions, use case design and development of various process of IAM.

  • Specialized in Identity and Access Management process, Identity Application Security, Authentication, Authorization, Web Service Security, Security & Risk, Security Operations, User's Account Provisioning, Web Single Sign-On and Audit

Required Skills and Knowledge:

  • Good understanding of a variety of user repositories, including databases, LDAP servers, Microsoft Active Directory and Exchange, UNIX, and enterprise services such as HR systems, Application Servers, CRM, etc

  • Create various lifecycle rule to perform suspend user, delete user and Notification

  • Deep Knowledge of various Security Access Management tools (ISAM, Ping, OAM, SiteMinder etc.)

  • Knowledge of Azure AD Connect Sync & Connect Health Agent, Azure AD Identity Management, Application onboarding and registrations on Azure, Azure App Proxy, Azure Conditional Access Policy & MFA.

  • Knowledge of IDM process around O365, cloud and hybrid cloud solutions.

  • Understanding of IAM connector design and coding, including requisite Application Programming Interfaces (APIs).

  • Must have experience with managing SSO/Federation integration Tools (Okta) with various protocols (SAML, OIDC, WS Fed).

  • Experience with Thycotic - Privileged Account Management (PAM) Solution.

  • Must have experience with scripting languages (PowerShell, Python, bash).

  • Must have experience implementing Identity and Access Management solutions with either of cloud providers AWS, Azure.

  • Experience with automating access control processes such as user provisioning, onboarding, Role-Based Access Control (RBAC), authorization models, Single Sign-On (SSO), and LDAP.

  • Understanding of SSO provisioning capabilities (JIT, SCIM, API).

  • Experience working with OKTA, ISIM HR Feed with Workday Application, IGA/IGI.

  • Experience with developing integrations with ServiceNow for request and workflow automation is a Plus.

  • Excellent interpersonal skills and ability to work both independently and as part of a team.


  • 8 - 10 Years plus years of Information Security experience/IAM related

  • Security Architect for providing Planning, Implementation of Identity and Access Management Solutions

  • Experience leading large security access system upgrades/projects. Advanced understanding of IAM solutions and related technologies including Azure AD, FIM/MIM, Kerberos, LDAP, claims, group and role mapping, PKI, PIM, DNS, DHCP and GPO implementations.

  • Proven expertise designing and implementing solutions leveraging OAuth, OpenID Connect, SAML, and MFA.

  • MSCE and CISSP (preferred). Must have an excellent level of understanding around Identity and Access Management process, standards, frameworks