IAM Mainframe Engineer; RACF

Responsibilities

• Deliver business value by delivering and sustaining Identity and Access Management capabilities
• Participate in the day-to-day operations and maintenance of the RACF security engineering team and associated systems.
• Responsible for developing and maintaining cyber security solutions.
• Consult with IAM architects, Enterprise Architects, and Application Architects to refine work needed to implement mainframe technologies in alignment with established designs and patterns.
• Assist with vendor relationships and any evaluation or recommendations related to new vendors and technologies.
• Provide leadership and guidance to a team of Mainframe Engineers
• Foster a culture of continuous learning, skill development, and collaboration within the Role Engineering team.
• Lead the response to RACF-related security incidents and implementing any necessary corrective actions.
• Work with Portfolio Manager to deliver IAM and RACF program strategy, roadmap, objectives, and key milestones to provide business value and sustain identity and access management capabilities.
• Other duties as assigned.

• 6+ years as a RACF Administrator
• 6+ years of experience gathering requirements and demonstrating successful delivery of RACF security and mainframe technologies.
• 8+ years of production support and design of Cyber Security technologies
• 6+ years of experience in Information Security or in management of a cross functional department
• 8+ years of operational experience with security technologies
• 8+ years of implementing or utilizing technology life cycles and best practices.
• 3+ years of experience delivering and sustaining cloud IAM lifecycle holistically throughout the enterprise including in AWS, Azure, and GCP.
• 3+ years of experience administering IAM, access controls, security, and risk management, as well as a security governance framework at scale.

• Native RACF experience
• 6+ years of experience of implementing zSecure capabilities, including zAlert
• Experience with SIEM (SPLUNK) products for implementing reports and dashboards to support a Mainframe Governance program
• Experience with building out RACF reports in zSecure to support database authenticity
• Experience with onboarding and decommissioning applications into RACF structures.
• Experience in IDAM solutions both on-premises and in the cloud.
• Experience administering IDAM systems, access controls, security and risk management, as well as a security governance framework at scale.
• Experience and understanding of various regulatory requirements and laws such as, but not limited to, Payment Card Industry (PCI), Federal Financial Institutions Examination Council (FFIEC), Sarbanes-Oxley (SOX), Health Information Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and Gramm-Leach-Bliley Act (GLBA). Additionally, experience in one or more of the following is required: ISO 17799, ITIL or NIST.
• Extensive knowledge of SSO, MFA, Active Directory (AD), public key infrastructure (PKI), privileged accounts and integration application program interface (API) capabilities.
• Track record acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively
• Expert level knowledge of operating systems, e.g. Windows, Linux, & Unix
• Excellent customer facing communication skills (both written and verbal)
• Ability to research, evaluate, and devise course of action for security hardware/software and tools to make overall impact on the enterprise’s existing security environment
• Experience with both Agile and Waterfall working methods.
• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
• Extensive knowledge of Active Directory (AD) and LDAP Directories (e.g., Oracle Directory, Novell/NetIQ eDirectory)