RBAC And RACF Engineer-Remote In Clients Footprint.
About The Position
Seeking 3 RACF and 2RBAC Engineers. • RBAC, 2 roles, ideally in footprint o Main goal will be to partner with all different areas and lines of business and perform data mining within those areas and capture access requirements, what access is needed for their job role, communicate and collaborate effectively, become champion and help business partners through this initiative o Responsible for building all these roles and perform data mining with SailPoint IdentityIQ, using product to build out on the back end specific roles and rules, defining access and entitlements for these users o Being able to adapt, being agile, documentation operational procedures, etc. o ABAC, IdentityIQ, SailPoint, RBAC o Help streamline onboarding as we develop job roles o Start rolling out a pilot, automate more within SailPoint to streamline provisioning, right now very manually o Starting with retail partners as the pilot RBAC Job Role: We are seeking an experienced Engineer to design, implement, and manage Role-Based Access Control (RBAC) solutions across our systems and applications. This role will be responsible for ensuring secure, scalable, and compliant access management aligned with business requirements and security best practices. The ideal candidate has strong experience in IAM, access governance, and enterprise security architecture.
Requirements
- Strong analytical and problem-solving skills
- Excellent communication and cross-functional collaboration
- Attention to detail
- Security-first mindset
- Ability to translate business requirements into technical access models
Nice To Haves
- Native RACF experience
- 6+ years of experience of implementing zSecure capabilities, including zAlert
- Experience with SIEM (SPLUNK) products for implementing reports and dashboards to support a Mainframe Governance program
- Experience with building out RACF reports in zSecure to support database authenticity
- Experience with onboarding and decommissioning applications into RACF structures.
- Experience in IDAM solutions both on-premises and in the cloud.
- Experience administering IDAM systems, access controls, security and risk management, as well as a security governance framework at scale.
- Experience and understanding of various regulatory requirements and laws such as, but not limited to, Payment Card Industry (PCI), Federal Financial Institutions Examination Council (FFIEC), Sarbanes-Oxley (SOX), Health Information Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and Gramm-Leach-Bliley Act (GLBA). Additionally, experience in one or more of the following is required: ISO 17799, ITIL or NIST.
- Extensive knowledge of SSO, MFA, Active Directory (AD), public key infrastructure (PKI), privileged accounts and integration application program interface (API) capabilities.
- Track record acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively
- Expert level knowledge of operating systems, e.g. Windows, Linux, & Unix
- Excellent customer facing communication skills (both written and verbal)
- Ability to research, evaluate, and devise course of action for security hardware/software and tools to make overall impact on the enterprise’s existing security environment
- Experience with both Agile and Waterfall working methods.
- Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
- Extensive knowledge of Active Directory (AD) and LDAP Directories (e.g., Oracle Directory, Novell/NetIQ eDirectory)
- Experience implementing RBAC in microservices or SaaS environments.
- Experience with policy-as-code or fine-grained authorization systems (e.g., OPA, Cedar).
- Security certifications (CISSP, CISM, Azure/AWS Security certifications).
- Experience with access governance and entitlement review tools.
Responsibilities
- Design and implement RBAC models across enterprise applications, cloud platforms, and internal systems.
- Define roles, permissions, and access policies aligned with business functions and least-privilege principles.
- Collaborate with Security, DevOps, Infrastructure, and Application teams to integrate RBAC into systems and workflows.
- Automate provisioning and de-provisioning of user access.
- Conduct access reviews, audits, and compliance reporting.
- Support integration with identity providers (IdP) and SSO solutions (e.g., Okta, Azure AD, Auth0).
- Implement and maintain access governance processes.
- Troubleshoot access-related issues and ensure minimal operational disruption.
- Document RBAC architecture, standards, and operational procedures.
- Stay current with security standards, regulations, and IAM best practices.
- Leads delivery and implementation of IAM technologies across the bank.
- Ensure that identity & access management services are designed to be compliant with security and privacy standards and other industry standards and practices.
- Consult with business units when implementing access for new systems.
Benefits
- Medical, dental & vision
- Critical Illness, Accident, and Hospital
- 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available
- Life Insurance (Voluntary Life & AD&D for the employee and dependents)
- Short and long-term disability
- Health Spending Account (HSA)
- Transportation benefits
- Employee Assistance Program
- Time Off/Leave (PTO, Vacation or Sick Leave)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
