Job Details

  • Title: ForgeRock Access Management Engineer
  • Code: RCI-47877-1
  • Location: Princeton, NJ 08543
  • Posted Date: 05/23/2022
  • Duration: 9 Months
Talk to our Recruiter

  Job Description

Responsibilities will include, but are not limited to:

  • Responsible for administration of the SiteMinder system
  • Provide day to day Production support
  • Integrate multi-domain web applications
  • Create / modify SiteMinder policies, realms, rules, and responses
  • Have a complete understanding of the entire enterprise SSO infrastructure
  • Review business requirements
  • Perform application analysis
  • Apply vendor-released software patches as needed
  • Perform software upgrades periodically
  • Design, create and implement SSO configurations in DEV, QA, and Production policy servers
  • Work with the webmasters in setting up web and application agents
  • Modify existing policies to address new business requirements and/or application infrastructure changes
  • Help diagnose authentication problems and troubleshooting issues in all environments
  • Work with LDAP and design SSO policies using LDAP groups
  • Integrate vendor hosted applications, via affiliation agents or SAML, and interact with external vendors
  • Work with external business partners to develop and deploy federated identity systems
  • Participate in project planning sessions with project managers, business analysts, and application teams to develop application authentication methods
  • Must be able to function as the highest level of technical resource and resolve and consult on the most complex issues.

Required Skills include:

  • 5+ years experience implementing SiteMinder 5.x and 6.x (including installation and configuration parameters)
  • 5+ years experience in implementing SSO for multi domain applications environment supporting a minimum of 20,000 users
  • 5+ years experience with LDAP and design of SSO policies using LDAP groups
  • 5+ years experience in creating policies, adding new user domains, policy domains, authentication schemes, redirections etc.
  • 3+ years experience with SiteMinder policy server clustering, policy migration & SiteMinder testing
  • Significant experience in analyzing SiteMinder server logs and identifying problems with authentication and authorization
  • Significant experience in installing and configuring SiteMinder WebAgent under Unix, Linux and Windows
  • Strong troubleshooting experience is a must
  • Production support experience with ability to provide quick turnaround solutions
  • Understanding in integrating SSO with externally hosted vendor (3rd party) applications using SAML
  • Experience in load testing, performance analysis & tuning & vulnerability analysis
  • Knowledgeable in configuring server parameters and fine-tuning
  • Experience in defining and configuring different types of web server instances
  • The ability to perform Server product installs upgrades and modify configurations
  • Good understanding of Networking, LAN, SSL, Firewall, Load Balancer, Intranet, DMZ configurations.
  • Basic Networking skills, knowledge of network protocols (TCP/IP), load balancing software and equipment and caching servers
  • Good understanding of telecommunications. WAN, and LAN troubleshooting a strong plus
  • Basic Database fundamentals required. Familiarity with how web applications connect to Oracle 8 & 9i databases
  • Familiarity with common Unix utilities (netstat, top tools, iostat, vmstat etc.), diagnostic and monitoring tools
  • Understanding of Solaris OS and Linux OS
  • Understanding of SunOne LDAP Directory
  • Understanding of Microsoft Active Directory
  • Understanding of LLAWP process
  • Understanding of Apache
  • Understanding of BEA Weblogic
  • Understanding of Tomcat
  • Understanding of Websphere 5.x and 6.x

Requirement

  • Typically requires BS/CS/Business or equivalent plus 5+ years experience in a software or telecommunications environment.
  • MS strongly preferred.
  • Hands-on experience in design, development, implementation, and support of ForgeRock OpenAM and OpenDJ stack to meet authentication, authorization, and Single-Sign-On (SSO) requirements.
  • Design and implement SAML, OIDC/OAuth2 protocol-based solutions
  • Design and implement Identity Gateway and Agent-based solutions
  • Design, develop and implement OpenAM custom authentication modules
  • Experience in deploying ForgeRock OpneAM and OpenDJ in AWS DevOps env
  • Hands-on experience in JavaScript, Groovy, and Java to customize ForgeRock tools
  • Application migration experience from SiteMinder to ForgeRock