PAM / Secrets Architect - New York, United States - Gardner Resources Consulting

    Gardner Resources Consulting
    Gardner Resources Consulting New York, United States

    1 month ago

    Default job background
    Description

    Key responsibilities:
    Gather use cases & requirements from different businesses and technology teams.
    Technical solution designs as per requirements
    Drive IAM PAM roadmap and adoption of the technology
    Research & design the technical solution of new IAM capabilities with POC.
    Publish necessary documentation for businesses and other technology teams


    Technical requirements:
    Overall, 10+ years of hands-on working experience in IAM technology and products.
    Overall, 7+ years of hands-on working experience in the Privileged Access Management (PAM) area at the enterprise level.
    Privileged Access Management (7+ years)
    Develop PAM solutions with industry standards for on-premises and cloud systems.
    Intimately familiar with authentication technology, including Multi-Factor Authentication (MFA) for user-based and application-based access controls.
    Must have working experience in Password vault and secret management technology.

    Must have working experience in enabling PAM solutions for servers, databases, Kubernetes, Cloud PaaS, Cloud IaaS, and other systems with a good understanding of PAM security controls.

    Working knowledge of some of the IAM products is required.
    BeyondTrust, Delinea (Centrify), CyberARK, Cloud native PAM solution, etc.


    Preferred skills set:

    Authentication space:
    Multi-factor authentication (MFA), including password-less MFA
    Security knowledge of various technologies & protocols - FIDO, PKI, Mobile MFA, OTP, FIDO key, Biometric authentication, behavior & risk-based authentication
    Implementation experience with web, device (laptop, etc.), infrastructure, and API authentication use cases.
    Mobile security knowledge is a plus.

    Access Management space:
    Identity Federation & Single Sign-On (SSO)
    Expert knowledge of implementing SAML, OpenID Connect (OIDC), and OAuth 2.0
    Security knowledge about session management
    Identity gateway (proxy) and similar implementation knowledge
    Risk/Adaptive access control, including continuous access control
    Integration with cloud and on-premises systems, including Azure AD, GCP, Salesforce, etc.