Job Description :
CA SiteMinder SME Access Gateway Location: Kansas City, KS Phone then skype 6 month Note from PV: Must have gateway experience,Client is not disclosed until the interview. Summary Description The CA SiteMinder SME - Access Gateway role requires to act as an SME to install, configure, and execute Tune Broadcom Symantec SiteMinder Access Gateway to leverage the capabilities. The CA SiteMinder SME - Access Gateway role works to identify and evaluate business application security gaps, migration of code and data, integration with other systems for automation, data management, testing, configuring and deploying utilizing Access Gateway. This role is critical in the creation and execution of project plans from beginning to completion and provides advanced level expert analysis skills in identifying root cause issues and permanent fixes. Duties /Responsibilities Primary Functions: Provides SiteMinder support and advanced authentication. Assists and supports all testing for all product releases. Continually researching, studying and evaluating to optimize and improve infrastructure. Creates documents and keeps current Standard Operating Procedures (SOPs) and Configuration Management (CM) procedures and guidance to provide consistency of application performance and functionality. Provides technical expertise supporting enterprise identity and Access Management solutions. Able to identify and resolve issues for API Gateway; additional troubleshooting and production support is required. Coordination/Compliance Functions: Coordinate/consult with subject matter experts throughout the organization; helping to arrive at a consensus to determine application security requirements while translating those into effective controls within supported applications, processes, and users Provide support to ensure compliance with applicable laws and regulations (i.e., Privacy Law, PCI and/or Sarbanes-Oxley, etc verifying necessary protocols are integrated into all large-scale global enterprise applications. Installs and configures new systems and researches additional solutions and makes recommendations. Handle system changes for signature updates, patches and upgrades. Provides Oracle IDM installation and integration while maintaining knowledge of complete suite of related products. Required to periodically create, deliver and make presentations with necessary materials to support project with concise details and information geared to applicable audience. Non-Technical Functions: Able to clearly communicate verbally and in written form articulating complex thoughts and ideas in small or large group settings. Able to work well in a collaborative team environment with various personalities. Provides superior customer service to internal customers, working patiently and effectively through each issue with confidence. Skills required: Must have expertise in the following areas with at least 5 years of experience in each of the following areas: Get the Federation Services working for SAML, OIDC setup. Get the Auth/Authz SOAP & Rest API's functional by zone. Grouping the Gateways. Get Kerberos Authentication with failover to Forms login implemented. Should be able to implement Agent less SSO. Should have strong knowledge of Apache preform and MPM mode along with their repercussions while dealing with Broadcom Symantec SiteMinder/Access Gateway products. Should have in-depth knowledge of SAML2, OIDC, and Kerberos (KDC, TGT, GSSAPI, and more) both from standard and product implementation perspective. Documentation of the Activity performed. Should keep the client informed activities and roadblocks. Education/Training/Skills Requirements: Bachelors' Degree or higher in Information Technology, Computer Programming, Security Technology or other related coursework is preferred. CA SiteMinder Certification and/or equivalent amount of experience/training is required Knowledge and significant experience in competing Identity Management products with Single Sign-On (SSO) architecture with products such as Oracle Access Manager. Experience implementing message flows utilizing MQ and/or HTTP transports is a plus. Experience in various security fields including access control, authorization, identification and authentication and enterprise security architecture is required. Excellent interpersonal communication skills including heavy telephone and email communications; ability to clearly and precisely provide scope of project status, additional needs and identify problem areas. Attention to detail and excellent organizational skills with an ability to prioritize multiple tasks and meet deadlines. The ability to work under light supervision, as a self-starter and show progress in the project and/or tasks as outlined is paramount to the success of this position. Additional Requirements: Must be able to provide proof of identity and ability to legally work in the United States. Regular and predictable attendance is required. Ability to maintain confidentiality of client and customer information with access to personnel and financial data.