IBM is Seeking Access Management ISAM (Indexed Sequential Access Method), Federated Identity Manager(FIM) and Directory Consultant practitioners that will participate in the collection and analysis of existing business and technical requirements to develop Enterprise-wide Access Management processes and procedures. This includes a demonstrated understanding of risk and change management, security policies and controls, user account life-cycle management, roles based access, access management, and directory the ability to translate client's business requirements into specific system, application or process designs. Working as a team member with client personnel and other IBM teams to identify functional requirements and subsequently working with or in some instances leading others in the identification, justification and design of the client's solution. As a hands on Architect you will be responsible for gathering the business and technical requirements, designing and building the solution, along with delivery and validation. Additionally, you may be required to participate in a wide range of design activities, from requirements analysis through systems, application and/or process design specification and implementation. This position requires knowledge across multiple platforms, processes or architectures. It also requires IT consulting skills with the ability to act as a trusted client advisor and the ability to shift smoothly between roles as advisory team member, team technical lead, and project lead as required. You should have exposure to a broad range of Access IAM products and domains with the ability to learn new products either through self study or formal training. Knowledge and experience with IBM products is a core requirement as are Java and multi operating System (OS) Platform skills. Candidates should have demonstrated organization skills and communications skills - written/verbal.Candidate should have experience with the following:
Design & architecture of ISAM and FIM environments.
Installing and configuring ISAM and FIM products.
Creating WebSEAL reverse proxy instances, configuring, and integrating with client applications.
Integrating Lightweight Directory Access Protocol (LDAP) directories with ISAM and FIM.
Installing WebSphere Application Server Network Deployment and performing basic WebSphere administration tasks.
Implementing Federated Single Sign-On using various open standards, particularly Security Assertion Markup Language (SAML) and OpenID.
One-time password, Risk-based access and other Multi-Factor Authentication features of FIM/ISAM.
FIM User Self Care.
Java development such as development of custom security token service (STS) modules for FIM, custom Extended Authentication Interface (EAI) for ISAM, etc.
Representational State Transfer (REST)interfaces.
Working knowledge of virtualization technologies such as VMware is a plus.
Experience in Access Management skills in Architecting and deploying solutions for ISAM, Tivoli Access Manager (TAM) to ISAM migration/upgrade.
3 years of experience in Integrating LDAP directories with ISAM and FIM.
3 years of experience in producing detailed requirements, design, and test documentation.
Experience in Java Programming and Scripting.
Experience working with FIM and OAuth
Willingness to travel 75%+
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.