Senior IAM Engineer - Platform Security

About The Position

Requirements

• 6+ years' experience in IAM roles as it relates to the experience requirements below.
• 4+ years of hands-on Java/J2EE programming experience.
• 2+ years' experience scripting in Unix/Linux environments.
• Strong proficiency with Java IDEs (Eclipse), API testing tools (SOAP UI, Postman), LDAP clients, source control utilities (e.g., Git), and build/packaging tools (Ansible, Jenkins, Maven).
• Extensive application security experience, with deep knowledge of SSO, Federation protocols (SAML, OpenID Connect, OAuth2), and Multi-factor Authentication (MFA).
• Proven experience in architecting, designing, and implementing large-scale IAM solutions.
• Ability to customize, configure, and develop IAM solution integrations and independently manage project deliverables.
• Strong knowledge of application architecture, System Integration Testing (SIT), Functional Testing, and Regression Testing.
• Bachelor's Degree in Computer Science, IT, or a related field, or equivalent work experience.

Nice To Haves

• Expertise in at least one of the following application servers: IBM WebSphere or IBM WebSphere Liberty is a plus.
• Experience with containerization and orchestration technologies (e.g., Docker, OpenShift, Kubernetes) is a plus.
• Working experience with LDAP and databases is a plus.
• Knowledge of mobile application development is a plus.

Responsibilities

• Design, implement, and maintain secure, scalable applications and infrastructure with a primary focus on Identity and Access Management (IAM) solutions.
• Manage franchise-critical security application infrastructure, including project delivery, integration, and operational subject matter expertise.
• Collaborate with cross-functional teams to gather requirements and ensure IAM solutions are strategically aligned with business needs.
• Develop robust scripts and/or Java/J2EE code to facilitate system monitoring, enhance process automation, and deliver project requirements.
• Create and diligently maintain comprehensive documentation for all IAM systems, processes, and problem resolutions within Knowledge Base tools.
• Provide expert technical application support for the security infrastructure, proactively troubleshooting and expediently resolving IAM-related issues to ensure minimal disruption.
• Conduct regular, thorough security audits, penetration testing, and SDLC validation to systematically identify and mitigate potential vulnerabilities before production deployment.
• Ensure strict adherence to internal controls and compliance standards defined by Citi.
• Proactively identify and implement automation opportunities for repetitive processes using tools like Ansible.
• Actively contribute to the strategic development, ongoing refinement, and roadmap planning for the firm's IAM initiatives.
• Strategically engage with vendors and internal support teams to maintain an up-to-date technology stack and promptly address End-Of-Vendor-Support (EOVS) issues.
• Serve as an Identity and Access Management Subject Matter Expert (SME) to senior stakeholders and team members, offering guidance, specialized knowledge, and targeted training.

Benefits

• medical, dental & vision coverage
• 401(k)
• life, accident, and disability insurance
• wellness programs
• paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays.