No more applications are being accepted for this job
PAM / Secrets Architect - New York, United States - Gardner Resources Consulting
Description
Key responsibilities:
Gather use cases & requirements from different businesses and technology teams.
Technical solution designs as per requirements
Drive IAM PAM roadmap and adoption of the technology
Research & design the technical solution of new IAM capabilities with POC.
Publish necessary documentation for businesses and other technology teams
Technical requirements:
Overall, 10+ years of hands-on working experience in IAM technology and products.
Overall, 7+ years of hands-on working experience in the Privileged Access Management (PAM) area at the enterprise level.
Privileged Access Management (7+ years)
Develop PAM solutions with industry standards for on-premises and cloud systems.
Intimately familiar with authentication technology, including Multi-Factor Authentication (MFA) for user-based and application-based access controls.
Must have working experience in Password vault and secret management technology.
Must have working experience in enabling PAM solutions for servers, databases, Kubernetes, Cloud PaaS, Cloud IaaS, and other systems with a good understanding of PAM security controls.
Working knowledge of some of the IAM products is required.BeyondTrust, Delinea (Centrify), CyberARK, Cloud native PAM solution, etc.
Preferred skills set:
Authentication space:
Multi-factor authentication (MFA), including password-less MFA
Security knowledge of various technologies & protocols - FIDO, PKI, Mobile MFA, OTP, FIDO key, Biometric authentication, behavior & risk-based authentication
Implementation experience with web, device (laptop, etc.), infrastructure, and API authentication use cases.
Mobile security knowledge is a plus.
Access Management space:
Identity Federation & Single Sign-On (SSO)
Expert knowledge of implementing SAML, OpenID Connect (OIDC), and OAuth 2.0
Security knowledge about session management
Identity gateway (proxy) and similar implementation knowledge
Risk/Adaptive access control, including continuous access control
Integration with cloud and on-premises systems, including Azure AD, GCP, Salesforce, etc.