Keyrus is an international consulting firm, specializing in the integration of data intelligence and Digital solutions. With over 3,500 employees spread across 25 countries, Keyrus continues to deliver on such projects to a wide range of clients from various industries including but not limited to Banking/Finance, Healthcare/pharmaceuticals, FMCG, Oil & Gas, and more.
As part of Keyrus’ solution delivery, we are also in a position to recruit and place technical consultants to complement on existing client projects with their expertise. As such, we seek innovative and agile people to support ambitious and forthcoming technological challenges.
We are seeking a highly motivated Identity Access Management Engineer/Consultant to support our client's SSO Identity Management team in Singapore.
Responsibilities:
- Provide architectural expertise to drive technological improvements and develop SSO and LDAP roadmaps while collaborating with architecture teams.
- Lead the delivery of key SSO and LDAP projects, working with production support and application developers to implement new functionalities and resolve ongoing issues.
- Proactively monitor and improve the availability and performance of production environments and manage application capacity.
- Collaborate with partner teams to analyze major incidents and identify improvements to reduce ongoing issues in the SSO and LDAP areas.
- Ensure all changes to the production environment follow the change management framework, maintaining high standards in planning and execution.
- Work cooperatively with team members, seek necessary training, escalate risks promptly, and contribute to minimizing operational failures through effective controls.
Requirements
- Bachelor’s degree in Computer Science or equivalent.
- ITIL Foundation certification is preferable.
- Practical experience in identity and access management, particularly in a production support role.
- Experience with CA Siteminder Web SSO and SOA security (SAML, WS-Security).
- Familiarity with auto-provisioning tools (BMC ControlSA, SailPoint, ForgeRock) and LDAP.
- Knowledge of Kerberos, SSL/TLS, PKI, GSS-API, SPNEGO, OAuth2, and OpenID Connect.
- Proficiency in IIS, WCF, WIF, and WAS security models.
- Understanding of infrastructure standards for networks and servers.
- Experience with automation tools like Ansible and scripting in Python, JavaScript, or shell.
- Good exposure to configuring web technologies (Tomcat, Apache, nginx, IIS).