Apex Systems, Inc. Enterprise Security-8034-IL in Chicago, Illinois

This job was posted by https://illinoisjoblink.illinois.gov : For more information, please see: https://illinoisjoblink.illinois.gov/ada/r/jobs/6090857 This role of Identity Architect, is to be the technical lead on an internal assessment of 3rd party resource that are accessed by authorized users, and document a proper Identity Management strategy to access each of these resources. This includes migration strategies for 40+ current SAML or Proxied websites to a new SSO Platform, as well as identification of additional websites or services that need to have additional security implemented. Key skills include strong documentation, organization and communication skills. Expertise with SAML, Oauth, LDAP, "Provisioning on Demand", and Security best practices is a plus. Strong knowledge of the with Ping Identity products is required.nThe Architect will partner with the Identity and Access Management team, and Security Architecture team, to understand current identity strategies. The Architect will partner with a Project Manager to organize the work to migrate approximately 40 3rd party applications to migrate to a new platform for Single Sign On Integration. This will include partnering with various Engineers and a Business Analyst to meet with various business groups (ie, Retail, Call Center etc.) to review any 3rd party websites that are accessed for various activities. The team will perform an assessment if a Single Sign On and user Provisioning strategy needs to be implemented or improved. A key starting point will be reviewing the 40+ applications currently managed through a SAML or Proxy configuration, and reviewing plans to move to a new SAML 2.0 Platform. Key considerations include if the resource contains sensitive data, if the site should be accessed simply with an ID and Password, or also requires Multi-factor, Identity provisioning, Role Based Access etc. Recommendations on these dozens of websites will be documented, and reviewed with Security Architecture. Implementation of the recommendations will be performed by engineers on the Identity and Access Management team, with some over site by this role.nRole Specific Responsibilitiesn•Create security architecture standards for adoption of new technologyn•Identify, quantify, and provide recommendations for security risks as it relates to enterprise projects.n•Produce management reporting, including appropriate metrics that inform senior leadership as to the state of information risk and exposuren•Understands security product / service cost drivers and industry and business trends impacting the CLIENT information security programn•Recognizes and identifies potential areas where existing security polices and procedures require change, or where new ones need to be developed, especially regarding future business expansionn•Provide information security matter expertise to technology teams and projectsn•Evaluate and recommend security software/hardware and its integration into existing architecture (Proof of Technology)n•Consult with business clients and 3rd parties on security architecturen•Research and benchmark security infrastructure technologies as it relates to the organizationn•Ensure that the organization is leveraging the proper technologies to meet SOX, PCI, and CPNI compliance.n•Ensure compliance with local regulations e.g. local encryption regulations and privacy lawnQualificationsn•College degree in related technical / business areas and/or 7 to 12 years equivalent work experiencen•3+ years experience as a security architect or consultant for a Fortune 500 companyn•CISSP certification a plus or other relevant security certificationsn•Professional security management certification, such as a Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials, is desired.n•In depth knowledge of information security practices elated to PCI, SOX, CPNI, and OWASP application security.n•Solid understanding of information security standards and frameworks (NIST, ISO27001, etc.)n•Experience implementing security at the application, network and operating system levelsn•Experience with mainstream IT Technologies, such as products from Oracle, and IBMnEEO EmployernApex is an Equal Employment Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at employeeservices@apexsystemsinc.com or 844-463-6178.nVEVRAA Federal ContractorWe request Priority Protected Veteran & Disabled Referrals for all of our locations within the state.We are an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic. The E