Senior CIAM Engineer

Senior CIAM Engineer at Aegon

The Senior CIAM Engineer position will be responsible for consulting with various groups to plan, architect, and implement standards-based solutions in the areas of general identity management, directory, and security. This role provides administrative support for several infrastructures related to web applications, identity management, and the components surrounding these technologies, specifically IBM Security Access Manager and Okta Auth0. These include areas such as SharePoint, WebSphere, IIS, Tomcat, Apache, EpiServer, Proxy Internet Access, Oracle Access Manager, CMS Systems, Federation Services, Monitoring, and F5 Content Switches. Additionally, responsibilities cover Internet security, integration of 3rd party applications, domain name / SSL certificate administration, and documentation.

Please be aware that this position requires you to work non-traditional hours, with shifts scheduled from 2:00 PM to 10:00 PM CET to collaborate in real-time with colleagues in the US.

What You Will Do:

• Directly responsible for developing and maintaining integrated strategies and solutions, with a focus on Web Access Management services for the Global Aegon environment.
• Manage Web Access Management services including core technologies like Okta Auth0, Ping, IBM ISAM, and Federation Services.
• Identify opportunities to leverage single sign-on security for cost containment/reduction.
• Provide assistance in project management and feasibility analysis for future projects.
• Support Web Access Management Systems applications and Integrations.
• Assist in documenting integration, design, and SSO features of solutions.
• Provide technical assistance for internal/external customer engagements.
• Help in automation and building repeatable patterns for consumption.
• Perform day-to-day operations to maintain SLAs and business functions.
• Run small to medium enterprise infrastructure projects from requirements gathering to post-implementation.
• Contribute to the performance and availability of the Web Services environment through monitoring, patching, software tools, and process improvements.
• Comply with information security policies and project management methodologies.
• Provide documentation highlighting integration, design, and features of solutions.

What You Will Need:

Qualifications

• Knowledge and experience in working with IBM Security Access Manager and Okta Auth0.
• Experience in delivering technology solutions at an enterprise level.
• Strong diagnostic and troubleshooting skills, with the ability to perform under pressure.
• Developed written and verbal communication skills, assignment and priority flexibility, and time management skills.
• Understanding of DNS, TCP/IP addressing, and networking (Internet, routers, switches).
• Knowledge of Web Services, Web and Application Services, Java and .NET technologies, and cloud services.
• Background in scripting and code development such as PowerShell, Ansible, Java, Terraform.
• Ability to work effectively in teams on small to medium projects.
• Excellent understanding of cloud and on-prem-based infrastructure solutions and their Access Management needs.
• Ability to quickly learn and apply new concepts and drive consensus among diverse groups.
• Able to understand how concepts apply to design or architectural efforts.
• Experience with enterprise network security technologies including firewalls, IDS, IPS, NAC, WAF, and Web Proxies.
• Working knowledge of Certificate/CA/PKI infrastructure.
• Applies broad knowledge of concepts and principles or exhibits technical expertise related to server infrastructure and web-based application support.
• A four-year computer science or related technical degree or a minimum of 5 years of solid related work experience.
• Breadth of knowledge across many technology disciplines, including various access management solutions.
• 5+ years of progressive related IT experience.

Preferred

• Experience in federation using SAML 2.0, Open ID Connect, REST, and oAuth standards.
• Understanding of SDS and experience with managing HA replicas.
• Managing environments with 500K-1MM external users.
• Understanding of SAML and SSO federated identities.
• Experience with installing, upgrading, and configuring Okta Auth0, ISAM/Security Access Manager/WebSEAL version 7.x, ISAM 9-10.
• Expertise in Access Management: Web security, Authentication, Authorization, Kerberos, Session Management, Web Proxy, Risk-Based Access.
• Understanding of microservices-based architecture, API-based system integration, and Amazon Web Services cloud Identity & Access.
• Understanding of working in a hybrid cloud environment and working knowledge of AWS Cloud Principles.
• Knowledge in scripting, code development such as PowerShell, Ansible, Java, .NET, and automating developments by code.
• Hands-on experience mentoring small to medium teams.
• Ability to convert complex information into simple, explainable solutions.
• Possesses a planning orientation with integrative and strategic thinking skills.
• Demonstrated project management and client relationship skills.
• Understanding of a zero-trust network environment.

What we offer:

• Competitive salary
• Comprehensive health package
• Cafeteria benefits
• Remote working flexibility
• Opportunities for growth and advancement
• A highly people-centric, positive, and supportive work environment

About Aegon

Aegon is an international financial service holding company headquartered in Schiphol, the Netherlands. Our ambition is to build leading businesses that offer their customers investment, protection, and retirement solutions. Our purpose is to help people live their best lives, a goal that runs through all of our activities. The company has multiple locations across the globe, with core markets in the UK and the US, partnerships in Spain & Portugal, Brazil, and China, and an Asset Management organization with locations in the UK, US, NL, and Hungary. In the Netherlands, Aegon generates value via strategic shareholding in a market-leading insurance and pensions company. Aegon Global Business Solutions Center is supporting these businesses with IT, Finance, Risk, Model Validation, Actuarial, Audit, and Asset management services with a growing team of approximately 300 people, based in Budapest, Hungary.

Key skills/competency

• Identity Management
• Web Access Management
• IBM Security Access Manager
• Okta Auth0
• Federation Services
• Single Sign-On (SSO)
• Scripting (PowerShell, Ansible)
• Cloud Security (AWS)
• Project Management
• Network Security