Engineer II, Information Security - Hyderabad - Advance Auto Parts

Date de Publication: 6/7/2021

Résumé de l'offre

  • Type de contrat:
    Employé à plein temps
  • Type de poste:
  • Date de Publication:

Description de l'offre

Job Description

Security Engineer - Identify and Access Management (IAM)

Advance Auto Parts, Inc., a leading automotive aftermarket parts provider in North America, serves both the professional installer and do-it-yourself customers. Advance operates approximately 5,100 stores, 126 Worldpac branches and serves approximately 1,300 independently owned CARQUEST branded stores in the United States, Puerto Rico, the U.S. Virgin Islands and Canada.

We are currently searching for an Security Engineer IAM who will be part of Identity and Access Management (IAM) within Advance Auto Parts’s Information Security Team. The Security Engineer will provide advance engineering, support & operations for Identity and Access (IAM) management activities related to the day to day operations of IAM tools, systems, solutions, applications (e.g. Okta, IBM’s Security Identity Management (ISIM) solution, Privileged Access Management (PAM,), Windows Active Directory etc.).

Location:    Hyderabad, India

Job Responsibilities:

  • Assist with the day to day support, operations, troubleshooting and enhancement of IAM tools stack e.g. IBM ISIM, Thycotic, Okta and Active Directory
  • Execute day to day operations of Privileged Access Management (PAM) functions across the organization, including Password Vault, Session Login, Session Recording and standardization of tool management.
  • Demonstrate deep understanding of risk and change management, security policies and controls, user life-cycle management, roles based access, access management, and directory
  • Work closely with IT, business, banners, applications, and solution owners to ensure user and role definitions and associated access rights are appropriately implemented
  • Provide insight during discussions on new technologies and tools related to Identity and Access Management
  • Create and maintain documentation for the operation and administration of IAM processes, procedures and KPIs related to IAM solutions within the company
  • Provide level 1 and 2 technical support while assisting to resolve service requests through SNOW tickets, investigate root cause of issues and ensure tasks are completed and tickets updated

Required Skills:

  • Bachelor of Science degree in Computer Science, Engineering, Computer Security, Information Systems, or an equivalents technical field
  • Strong understanding of Directory Services, AD, LDAP, and DNS
  • Strong familiarity with authentication methods, SSO, OAuth, MFA, SAML, Federation services Deep expertise in IGA and PAM architecture, configuration, and support
  • Working knowledge of designing and developing applications using Java EE platforms.
  • Working knowledge troubleshooting and resolving issues for Java-based applications.
  • Understanding of ISIM is required including an understanding of policies, workflows, reconciliation, recertification, and reports.
  • Understanding of components of the IBM Tivoli / IBM Security IDM suite-WebSphere Application Server, Message Queues, DB2, Tivoli Directory Integrator (SDI), Tivoli Directory Server, Adapter development tool
  • Hands-on experience of deploying identity solutions using IBM ISIM
  • Custom code development in Java / JavaScript for augmenting out of the box features.
  • Creating custom adapters and interfaces, utilizing APIs from IBM Tivoli / IBM Security
  • Very good with concepts of databases, directory servers, Linux/Unix and computer networks.
  • Intermediate to expert knowledge of Thycotic, Okta, or other IAM tool sets
  • Knowledge of Federation, SAML, OpenID Connect, OAuth and other industry standard authentication/authorization solutions
  • Comprehensive understanding of role-based access control (RBAC)
  • Prior experience implementing IAM best practices in Active Directory including implementation of RBAC in an Active Directory environment
  • Experience working with OKTA, ISIM HR Feed with Workday Application, IGA/IGI is a plus
  • Experience in integrations with ServiceNow for request and workflow automation is a plus
  • Other duties as directed by Director IAM

Minimum Requirements:

  • Bachelor of Science degree in Computer Science, Engineering, Computer Security, Information Systems, or an equivalents technical field
  • Strong understanding and experience with Directory Services, AD, LDAP, AD FS and authentication methods, SSO, OAuth, MFA, SAML, Federation and Certificates
  • Minimum of 3-5 years’ experience as a software developer.
  • Minimum of 3-5 years’ experience in ISIM development and support
  • Minimum of 3 years’ experience with one of the PAM Solution (Thycotic, CyberArk) etc.
  • 3-5 years’ experience with application programming/scripting languages (C, C#, Go, Java, Perl, Power Shell)
  • Deep expertise in IGA and PAM architecture, configuration, operations and support
  • Relevant industry certification in security or information technology (CISSP, Security+, CIAM, CAMS, CCNA, CCNP or Vendor Certifications e.g. Okta) preferred