IBM Senior Managing Consultant- Identity and Access Management (IAM) in New York, New York

IBM is Seeking Access Management ISAM (Indexed Sequential Access Method), Federated Identity Manager(FIM) and Directory Consultant partitioners that will participate in the collection and analysis of existing business and technical requirements to develop Enterprise-wide Identity and Access Management (IAM) processes and procedures. This includes a demonstrated understanding of risk and change management, security policies and controls, user account life-cycle management, roles based access, access management, and directory the ability to translate client's business requirements into specific system, application or process designs. This includes working as a team member with client personnel and other IBM teams to identify functional requirements and subsequently working with or in some instances leading others in the identification, justification and design of the client's solution.Additionally, the consultant may be required to participate in a wide range of design activities, from requirements analysis through systems, application and/or process design specification and implementation. This position requires knowledge across multiple platforms, processes or architectures. This position requires IT consulting skills with the ability to act as a trusted client advisor and the ability to shift smoothly between roles as advisory team member, team technical lead, and project lead as required. The consultant should have exposure to a broad range of Access IAM products and domains with the ability to learn new products either through self study or formal training. Knowledge and experience with IBM products is a core requirement as are Java and multi operating System (OS) Platform skills. Candidates should have demonstrated organization skills and communications skills - written/verbal.Candidate should have experience with the following:

  • Design & architecture of ISAM and FIM environments.

  • Installing and configuring ISAM and FIM products.

  • Creating WebSEAL reverse proxy instances, configuring, and integrating with client applications.

  • Integrating Lightweight Directory Access Protocol (LDAP) directories with ISAM and FIM.

  • Installing WebSphere Application Server Network Deployment and performing basic WebSphere administration tasks.

  • Implementing Federated Single Sign-On using various open standards, particularly Security Assertion Markup Language (SAML) and OpenID.

  • OAuth protocol.

  • One-time password, Risk-based access and other Multi-Factor Authentication features of FIM/ISAM.

  • FIM User Self Care.

  • Java development such as development of custom security token service (STS) modules for FIM, custom Extended Authentication Interface (EAI) for ISAM, etc.

  • Representational State Transfer (REST)interfaces.

  • JavaScript and XSL(EXtensible Stylesheet Language) skills are a plus.

  • Working knowledge of virtualization technologies such as VMware is a plus.

CSUConsultant

  • Experience in Access Management skills in Architecting and deploying solutions for ISAM, Tivoli Access Manager (TAM) to ISAM migration/upgrade.

  • Experience in Java Programming, Scripting, FIM skills in Architecting and Deploying solutions.

  • 3 years of experience in Integrating LDAP directories with ISAM and FIM.

  • 3 years of experience in producing detailed requirements, design, and test documentation.

Security Lab Services