Role Summary
The jobholder will be part of multi-geographical (presence in 3 regions and 6 locations) and multi-disciplined team, providing support and project delivery for the SSO and Identity Management platforms in the following topics: Architecture, Project Delivery, Platform Support and Maintenance, Incident and Problem Management, Change Management, General. The candidate will also be well versed with cryptographic notions such as RSA, symmetric and asymmetric encryption, certificates and digital signatures etc.
Main Responsibilities
Architecture
- To provide architectural expertise thereby driving change and improvement in technology and process.
- To contribute to the development of the SSO and LDAP technology roadmaps.
- To liaise with CIB architecture teams in undertaking architectural reviews.
- To stay abreast of emerging technologies and technology trends.
- To automatize the process to accelerate the delivery time.
Project Delivery
- To take responsibility for the delivery of key projects around SSO and LDAP which are aligned to drive significant change within the platform.
- To work with the Application Production Support project managers in defining, designing, documenting and implanting new functionality for existing and new applications.
- To liaise with the Application Developers in low-level diagnosis of on-going issues.
- To provide subject matter expertise on SSO and IDM technologies to all business application teams.
- To act as technology evangelists for the improvement of process and technology in use for the Authentication services.
Platform Support and Maintenance
- Pro-actively monitor, manage and improve availability and performance of the production environments (from presentation and application layers to Infrastructure layers).
- Pro-actively manage the capacity of production applications.
Incident and Problem Management
- To work with partner teams to conduct analysis of major and critical incidents.
- To identify tactical or strategic improvements that can be introduced to help reduce the number of on-going incidents within the SSO and LDAP area.
Change Management
- To work within the change management framework adopted by client to ensure that all changes to the production environment are planned and executed in a controlled manner.
- To take responsibility for the quality of changes within the SSO and IDM environments, ensuring that changes raised are of sufficient standard in terms of technical and planning detail.
- Attending and sharing knowledge / updates in the Weekly Change Control Board Meetings and the Weekly Problem Management Meetings.
General
- Perform pre-assigned tasks to accomplish the function responsible for. The nature of these tasks are Change The Bank or Run The Bank.
- Work cooperatively with the other members of the team.
- Ensure adherence to processes and procedures.
- Request improvement of knowledge (training) when needed.
- Apply own initiative, within the levels of acceptable risk.
- Whenever in doubt, escalate and seek advice and guidance.
- If the nature of the position is user-facing, then all the guidelines and principles of user service mentality and behaviour should be applied.
- Escalate risks / issues to the manager of the team.
- Minimise operational failure, including but not exclusively, the risk of fraud, by helping to devise, and by implementing, sufficient regular controls.
- Ensure appropriate escalation to management and/or Permanent Control (or Compliance as appropriate) as soon as an issue is identified.
- Provide a direct contribution to the client operational permanent control framework.
Qualifications & Experience
- Bachelor’s Degree in Computer Science or relevant fields.
- At least 5 – 7 years of relevant working experience.
- Very strong analytical skills.
- Strong attention to detail.
- Structured and methodical mind-set.
- Ability to operate with demanding Senior IT Management.
- Can do attitude; look at changes as opportunities to improve.
- Team oriented and Good interpersonal and communication skills.
- High English spoken and written fluent (B2/C) in order to effectively communicate with English-speaking stakeholders.
- ITIL Foundation certificate will be desirable.
- French spoken and written will be valued in order to effectively communicate with French-speaking stakeholders. (Plus)
Essential Technical Skills
- CA Siteminder Web SSO.
- SOA security - SAML / WS-Security.
- Autoprovisioning tools such as BMC ControlSA, Sailpoint, or Forgerock.
- LDAP.
- Kerberos / SSL/TLS / PKI / GSS-API / SPNEGO.
- oAuth2, OpenIDConnect.
- IIS/WCF/WIF, WAS security models.
- Infrastructure standards for network load balancers, servers, networks and storage.
- Automation mind-set with experience in using tools like Ansible.
- Scripting skills using Python/JS or shell.
- Application Server : Good exposure in configuring and supporting web technologies such as Tomcat, Apache, nginx, IIS.
- Proven logical and methodical problem analysis and troubleshooting skills.
- Working with an industry recognised service desk and project management toolset.
- Clear communicator in both written and oral forms.
Desirable Technical Skills
- Axway Security gateway.
- SQL, Database schema.
- Authentication services for APIs.
- Exposure to Apigee API gateway.
- Knowledge of Process & Quality management, ITIL v2/v3.
- Microsoft Project, Advanced Excel, PowerPoint and Word.
- Knowledge of Atlasian Jira Task Management toolset.
- Previously used ServiceNow as a Service Desk Management product.