Senior Security Infrastructure Specialist
April 17 2024
Expected expiry date: May 1 2024
Industries
Public administration
Categories Security, Continuity, Risk, Systems architect, Design
Toronto, ON • Full time
Effective January 1st, 2024 the salary range for this position is $1,852.71 to $2,314.51 per week in compliance with OPSEU Unified Bargaining Unit collective agreement provisions. The new rates, effective retroactive to January 1, 2024, were recently confirmed and dates for implementation of the new salary rates are still to be determined.
The Ministry of Public and Business Service Delivery, Identity & Access Management (IAM) Branch is seeking a dynamic and innovative hands-on software technology expert to join our team as we modernize the enterprise identity and access systems for the Ontario Government.
We invite all interested individuals to apply and encourage applications from people with disabilities, Indigenous, Black, and racialized individuals, as well as people from a diversity of ethnic and cultural origins, sexual orientations, gender identities and expressions.
Visit the OPS Anti-Racism Policy and the OPS Diversity and Inclusion Blueprint pages to learn more about the OPS commitment to advance racial equity, accessibility, diversity, and inclusion in the public service.
We offer employment accommodation across the recruitment process and all aspects of employment consistent with the requirements of Ontario's Human Rights Code. Refer to the "How to apply" section if you require a disability-related accommodation.
• Sustain multiple identity and access management COTS such as Oracle Identity Governance suite, Oracle Access Management suite, Active Directory suite, Azure AD, Entrust PKI suite and ministry developed custom components by installing, configuring, tuning, testing, patching, supporting, troubleshooting, monitoring, and scripting software modules as the senior software subject matter expert (SME).
• Inform architectures and designs for enterprise IAM systems by providing advice, analysis, and guidance on the capabilities, functions, interfaces, and system requirements for IAM COTS, and ministry developed custom components in order to attain strategic business objectives especially those related to identity, access, and security.
• Perform and lead operational support for enterprise IAM systems and their underpinning COTS such as Oracle Identity Governance suite, Oracle Access Management suite, Active Directory suite, Azure AD, Entrust PKI suite to meet service level objectives (e.g. 99.9% availability, 100,000 authentications/day, sub-second response time) and ensure the continued health and supportability (e.g. current patch levels), including working collaboratively with vendors such as Oracle, Microsoft, and Entrust and internal service partners.
• Perform and lead the implementation of enterprise IAM systems through supervision of team members, internal service providers and vendors, as a senior software SME ensuring the realization of corporate [Ontario Public Service (OPS)] security plans and objectives.
• Provide technical direction and leadership to staff and contractors on projects.
• Integrate business applications with enterprise IAM systems such as Public Secure, BPS Secure, OPS Secure in order to promote the confidentiality, integrity, availability and privacy of Ontario's critical business applications. Migrate business applications for legacy IAM services to modernized enterprise IAM services.
• Expert technical knowledge of Oracle IAM product suites such as Oracle Identity Governance, Oracle Access Management, Oracle Directory Suite, and Oracle Connector packs, including deployment in on-prem and cloud environments.
• Expert technical knowledge of Microsoft IAM products suites such as Active Directory (AD), Azure AD, Microsoft Identity Manager (MIM) - Credential Management including deployment in on-prem and cloud environments.
• Hands on experience sustaining Oracle, Entrust, and Microsoft IAM product suites (as listed above) in an enterprise implementation comprised of cloud and on-prem technologies with high availability, responsiveness and throughput.
• Hands on experience integrating those suites with 3rd party tools for monitoring, administration, and automation such as Oracle Enterprise Manager, HP OpenView, Nagios.
• Demonstrated experience with supporting and/or implementing of Single Sign-On (SSO) solutions, identity federations, including identity provisioning as well as multi factor authentication systems by utilizing enterprise-grade identity management service such as Okta.
• Experience and in-depth knowledge of identity management protocols such as OAuth2.0, OIDC and SAML 2.0.
• Knowledge of IAM frameworks and standards such as FICAM, NIST, SAML, OIDC/OAuth, and IAM/IT security technologies such as PKI, SSL, TLS, one-time password tokens, smartcards, and RFID enabled cards.
• Knowledge and experience with system development methodologies such as agile especially specialized methodologies for the implementation and sustainment of Oracle, Entrust, and Microsoft COTS.
• Knowledge of advanced and emerging security architectures, designs, and related technologies, IT security and contingency principles, methodologies, mechanisms and techniques.
• Knowledge of IT Service management such as incident, change, configuration, problem, continuity, and availability and quality methodologies, frameworks, processes, procedures, and tools.
• Knowledge of procurement policies and vendor management methods to acquire and manage services provided by external vendors, produce evaluations and proof of concept.
• Demonstrated experience in the enforcement of security policies and practices.
• You can manage project teams in the development, enhancement, installation and maintenance support of complex services.
• You have analytical skills to address client ministry identity and access needs, plan, organize and implement projects in a multi-project environment.
• You have analytical skills to conduct feasibility studies and business analyses to evaluate technological advances and prepare business cases and procurements such as RFQ, RFS, RFI, RFB, RFP, and RFT.
• You have research skills to conduct research and analysis of advances in identity, access, authorization, and security products, technology, methodologies and techniques.
• You can provide specialized technical expertise and advice and issues resolutions.
• You can prepare documentation, business cases and related resource materials.
The Ministry of Public and Business Service Delivery, Identity & Access Management (IAM) Branch is seeking a dynamic and innovative hands-on software technology expert to join our team as we modernize the enterprise identity and access systems for the Ontario Government.
OPS Commitment to Diversity, Inclusion, Accessibility, and Anti-Racism:
We are committed to build a workforce that reflects the communities we serve and to promote a diverse, anti-racist, inclusive, accessible, merit-based, respectful and equitable workplace.We invite all interested individuals to apply and encourage applications from people with disabilities, Indigenous, Black, and racialized individuals, as well as people from a diversity of ethnic and cultural origins, sexual orientations, gender identities and expressions.
Visit the OPS Anti-Racism Policy and the OPS Diversity and Inclusion Blueprint pages to learn more about the OPS commitment to advance racial equity, accessibility, diversity, and inclusion in the public service.
We offer employment accommodation across the recruitment process and all aspects of employment consistent with the requirements of Ontario's Human Rights Code. Refer to the "How to apply" section if you require a disability-related accommodation.
What can I expect to do in this role?
As a Senior Security Infrastructure Specialist, you will:• Sustain multiple identity and access management COTS such as Oracle Identity Governance suite, Oracle Access Management suite, Active Directory suite, Azure AD, Entrust PKI suite and ministry developed custom components by installing, configuring, tuning, testing, patching, supporting, troubleshooting, monitoring, and scripting software modules as the senior software subject matter expert (SME).
• Inform architectures and designs for enterprise IAM systems by providing advice, analysis, and guidance on the capabilities, functions, interfaces, and system requirements for IAM COTS, and ministry developed custom components in order to attain strategic business objectives especially those related to identity, access, and security.
• Perform and lead operational support for enterprise IAM systems and their underpinning COTS such as Oracle Identity Governance suite, Oracle Access Management suite, Active Directory suite, Azure AD, Entrust PKI suite to meet service level objectives (e.g. 99.9% availability, 100,000 authentications/day, sub-second response time) and ensure the continued health and supportability (e.g. current patch levels), including working collaboratively with vendors such as Oracle, Microsoft, and Entrust and internal service partners.
• Perform and lead the implementation of enterprise IAM systems through supervision of team members, internal service providers and vendors, as a senior software SME ensuring the realization of corporate [Ontario Public Service (OPS)] security plans and objectives.
• Provide technical direction and leadership to staff and contractors on projects.
• Integrate business applications with enterprise IAM systems such as Public Secure, BPS Secure, OPS Secure in order to promote the confidentiality, integrity, availability and privacy of Ontario's critical business applications. Migrate business applications for legacy IAM services to modernized enterprise IAM services.
How do I qualify?
Technical Knowledge and Essential Skills
You have:• Expert technical knowledge of Oracle IAM product suites such as Oracle Identity Governance, Oracle Access Management, Oracle Directory Suite, and Oracle Connector packs, including deployment in on-prem and cloud environments.
• Expert technical knowledge of Microsoft IAM products suites such as Active Directory (AD), Azure AD, Microsoft Identity Manager (MIM) - Credential Management including deployment in on-prem and cloud environments.
• Hands on experience sustaining Oracle, Entrust, and Microsoft IAM product suites (as listed above) in an enterprise implementation comprised of cloud and on-prem technologies with high availability, responsiveness and throughput.
• Hands on experience integrating those suites with 3rd party tools for monitoring, administration, and automation such as Oracle Enterprise Manager, HP OpenView, Nagios.
• Demonstrated experience with supporting and/or implementing of Single Sign-On (SSO) solutions, identity federations, including identity provisioning as well as multi factor authentication systems by utilizing enterprise-grade identity management service such as Okta.
• Experience and in-depth knowledge of identity management protocols such as OAuth2.0, OIDC and SAML 2.0.
• Knowledge of IAM frameworks and standards such as FICAM, NIST, SAML, OIDC/OAuth, and IAM/IT security technologies such as PKI, SSL, TLS, one-time password tokens, smartcards, and RFID enabled cards.
• Knowledge and experience with system development methodologies such as agile especially specialized methodologies for the implementation and sustainment of Oracle, Entrust, and Microsoft COTS.
• Knowledge of advanced and emerging security architectures, designs, and related technologies, IT security and contingency principles, methodologies, mechanisms and techniques.
• Knowledge of IT Service management such as incident, change, configuration, problem, continuity, and availability and quality methodologies, frameworks, processes, procedures, and tools.
• Knowledge of procurement policies and vendor management methods to acquire and manage services provided by external vendors, produce evaluations and proof of concept.
• Demonstrated experience in the enforcement of security policies and practices.
Project Management and Leadership Skills
• You can provide team leadership to the section by assisting in the prioritization of issues, assignments and projects and the monitoring of critical project streams.• You can manage project teams in the development, enhancement, installation and maintenance support of complex services.
Analytical, Problem-Solving and Research Skills
• You have problem-solving and decision-making skills to analyze, diagnose, and resolve incidents and problems impacting multiple enterprise IAM systems which are implemented as COTS in a hybrid model (on-prem, cloud) delivered through multiple vendors, to conduct application and infrastructure design reviews, impact assessments, and to lead multi-disciplinary SWAT teams to solve critical, acute, and chronic problems related to development and operations.• You have analytical skills to address client ministry identity and access needs, plan, organize and implement projects in a multi-project environment.
• You have analytical skills to conduct feasibility studies and business analyses to evaluate technological advances and prepare business cases and procurements such as RFQ, RFS, RFI, RFB, RFP, and RFT.
• You have research skills to conduct research and analysis of advances in identity, access, authorization, and security products, technology, methodologies and techniques.
Communication Skills
• You have the ability to lead and facilitate technical discussions with vendors, client ministries, service providers, other technical staff and senior management.• You can provide specialized technical expertise and advice and issues resolutions.
• You can prepare documentation, business cases and related resource materials.
Similar offers
Searching...