Mainframe Logical Security Engineer

About The Position

Requirements

• Strong hands-on experience with RACF administration on z/OS
• Deep knowledge of RACF profiles, classes, and dataset security
• User/group management and access control models
• Experience with SMF data analysis
• Experience with security reporting and audit tools
• Strong understanding of z/OS security concepts and system internals

Nice To Haves

• Experience in banking or financial services environments
• Exposure to ACF2 or Top Secret
• Exposure to SIEM tools (Splunk, QRadar, etc.)
• Experience with Automation (REXX, Python)
• Experience with identity governance tools
• Experience with enterprise-wide security transformations or IAM integration
• Knowledge of Zero Trust or modern security frameworks
• Experience supporting regulatory audits in large enterprises

Responsibilities

• Administer and maintain RACF security environment across z/OS systems
• Create, modify, and revoke: User IDs, Groups, Resource profiles, Dataset and subsystem access permissions
• Implement and maintain least-privilege access controls for: Datasets, Applications (CICS, DB2, IMS, MQ), System resources
• Configure and maintain security policies aligned with enterprise standards
• Perform periodic access reviews, audits, and compliance checks
• Support regulatory compliance (e.g., SOX, PCI, HIPAA where applicable)
• Implement data protection controls and access monitoring mechanisms
• Analyze security logs and reports: SMF records, RACF reports, SIEM alerts
• Investigate: Access violations, Unauthorized access attempts, Security incidents
• Troubleshoot and resolve: Authorization failures, RACF-related abends or access issues
• Secure mainframe subsystems and integrations: CICS, DB2, IMS, MQ, TCP/IP, USS
• Support integration with: Enterprise IAM solutions, Single Sign-On (SSO) / MFA (where applicable)
• Define and maintain RACF classes, profiles, and rules for system-wide protection
• Support Encryption & Advanced Security: Digital certificates, TLS/SSL configuration, ICSF (crypto services) at a high level
• Ensure secure key management and encryption practices

Benefits

• Opportunities to work with clients in a variety of industries
• Chance to share expertise by recommending modernization options, identifying new business opportunities, and cultivating relationships
• Collaboration with a diverse group of talented people
• Invaluable management and organizational skills development
• Career growth opportunities from Junior System Administrator to Architect
• Opportunities for Cloud Hyperscalers with hands-on experience, learning opportunities, and certification chances
• Employee learning programs with access to certifications from Microsoft, Google, Amazon, Skillsoft, and many more
• Company-wide volunteering and giving platform
• Benefits that give you choice, reflect the diversity of employees, and support you and your family