ISD Engineer (Identity Management and Governance)

Location: VA Vienna - Headquarters Full/Part Time: Full-Time Regular/Temporary: Regular

Job Description

Employee Perks

Why You Will Love Being Part of the Navy Federal Team:

*Competitive compensation with opportunities for annual raises, promotions, and bonus potential
*Best-in-Class Benefits! (7% 401k match / Pension plan / Tuition reimbursement / Great insurance options)
*On-site amenities include fitness center, wellness center, cafeteria, etc. at Pensacola, FL; Vienna, VA and Winchester, VA campuses
*Consistently Awarded Top Workplace
*Nationally recognized training department by TRAINING Magazine IND123
*An employee-focused, diverse, and service-oriented workplace environment

Basic Purpose

To research, evaluate, design, implement, and maintain Identity Management and Governance solutions by applying knowledge of engineering principles. To provide Identity Management and Governance consultancy and engineering support for projects and maintain working knowledge of evolving Identity Management and Governance Technologies, concepts and trends.

The Identity Engineer is a team member with an intermediate to advanced level of skills in the areas of Identity Management and Identity Governance Service which includes engineering, architecture, deployment, configuration, upgrades and system administration of Identity Management Systems and Identity Governance Systems. The general responsibilities include performing tasks related to full life-cycle project management, establishing and leading project teams, developing and communicating project plan/scope/schedule/cost, identifying risks, resolving issues, following change management process, delivering successful project deployments, performing documentation tasks and engineering tasks in support of business needs.

Identity Engineer Responsibilities:

• Responsible for all aspects of providing intermediate to advanced level of technical support for Identity Management and Governance Service Life Cycle including requirement analysis, research, evaluate, design, install, configure, test, deploy, implement, maintain, and administer
• Execute daily operational tasks for the mission of delivering the World-Class Identity Management and Governance Services
• Perform script-based automation of day-to-day business activities including network maintenance events, patching events, resiliency events, server and application deployments
• Partner closely with other internal team members to deliver exceptional service fulfillments, timely service restoration by following incident management process and successful production implementations by following change management process
• Participate in design workshop and attend project meetings
• Provide escalated technical support by handling system-related issues
• Actively monitor new and emerging Identity Management and Governance Technologies, trends, issues, and solutions and assess their applicability to Navy Federal’s Identity Management and Governance Strategy
• Monitor and remediate compliance with the organization’s information security policies and procedures among employees, contractors and third parties.
• Monitor and remediate system security vulnerabilities
• Troubleshoot and perform problem determination systematically to restore services efficiently and effectively
• Create and maintain documentation to accomplish the goal of developing and maintaining reusable Knowledge Assets
• Provide rotational 24x7 on-call technical support
• Perform other duties as assigned/required.

Required Qualifications:

• Ability to perform day-to-day Identity Management and Governance systems tasks including but not limited to installation, migration, break-fix, upgrades, patches, creating identity profiles, designing approval workflow polices, developing connectors, and managing Access Certification Campaign Programs
• Intermediate to advanced systems troubleshooting skills in an enterprise environment with RHEL/Linux Systems, AIX/UNIX Systems, and Windows Systems
• Intermediate to advanced experience with Identity Management Systems, Identity Provisioning Systems, LDAP Directories, and Identity Governance Systems
• Intermediate to advanced experiences with supporting JBOSS Application Server/WebSphere Application Server/or other similar JEE Application Server
• Scripting skills – PowerShell, PHP, Bash and/or Perl
• Experience with developing and maintaining custom connectors for the endpoints with Identity Management systems
• Ability to collect and analyze performance statistics and recommend changes
• Excellent troubleshooting and problem determination skills with a systematic approach in solving technical problems
• Excellent decision-making, problem-solving and collaboration skills
• Excellent communication and documentation skills
• Excellent organization and interpersonal skills with emphasis on detail and follow-up
• Bachelor’s Degree in Computer Science, Information Technology or the equivalent combination of training, education, and experience


Desired Qualifications:

• Experience with one of the following Identity Management Systems from CA/Broadcom, SailPoint, IBM, Oracle, ForgeRock
• Experience with Pentaho Data Integration (PDI) Tool to extract, transform, load Identity Accounts data between different type of directory systems and user registry databases
• Experience with Identity Management systems migration
• Experience provisioning identities with provisioning systems
• Experience with creating workflow and approval flow for access provisioning
• Experience in implementing one or more methods: Role Based Access Control (RBAC), Policy Based Access Control (PBAC), and Attribute Based Access Control (ABAC)
• Experience with Chef or Ansible or similar configuration management tools
• Experience with the following endpoint type system: Active Directory Domain Service, Active Directory Lightweight Directory Service, eDirectory, CA/Broadcom SLAPD LDAP Server, CA/Broadcom Directory, Azure AD, Cloud Endpoints, Database etc

Experience with the following IAM technologies is a plus:
• RSA SecureID Appliances Administration
• eDirectory Server Administration
• CA/Broadcom Privileged Access Manager System or similar Privileged Access Management Systems
• CyberArk Enterprise Password Vault and Application Access Manager or similar Vault technologies

Hours: Monday through Friday, TBD and on-call Availability 24x7 on a rotational on-call basis
Location:  820 Follin Lane Vienna VA 22180 

Equal Employment Opportunity

Navy Federal values, celebrates, and enacts diversity in the workplace.  Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans.  EOE/AA/M/F/Veteran/Disability


Disclaimer

Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need.


Bank Secrecy Act

Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.