Engineer 4, Cyber Security Engineering - Identity...
Role details
Job location
Tech stack
Job description
Engineer 4, Cyber Security Engineering - Identity and Access Management
Provide technical leadership within a team responsible for how users within the company are given an identity - and how it is protected, including saving critical applications, data and systems from unauthorized access while managing the identities and access rights of people both inside and outside the organization; onboard applications to Microsoft Entra ID or PingFederate; configure SSO (Single Sign On) using SAML 2.0, OAuth 2.0, and OpenID Connect protocols including metadata exchange and claim mapping; write scripts using PowerShell; perform root causes analysis and resolving authentication failures for SSO issues; develop web architecture, DNS, Load Balancers, Firewalls, and Secure Communication Protocols including HTTPS and TLS; maintain enterprise security standards, and compliance frameworks; integrate M&A SSO integrations into Comcast IAM platforms; define, build, implement and maintain processes to secure the organization's resources, including user identities, as well as the wide range of business applications that users use every day to access intellectual property or confidential information; work with various teams to implement SSO solutions for their applications using technologies including OpenID Connect, OAuth, and SAML; provide subject matter expert level guidance to application teams to comply with various Comcast Security principles and requirements; monitor and support users' requests received through mailbox/slack/Jira etc.; work with cross domain IAM teams to collaborate on various IAM solutions; track and prioritize multiple projects and provide periodic status reports/metrics to senior leadership; integrate knowledge of business and functional priorities; develop industry standard documentation for various day to day and other complex implementations; and guide and mentor junior-level engineers. Position is eligible to work remotely one or more days per week, per company policy.
Requirements
***REQUIREMENTS: Bachelor's degree, or foreign equivalent, in Computer Science, Engineering, or related technical field, and five (5) years of experience onboarding applications to Microsoft Entra ID or PingFederate; configuring SSO (Single Sign On) using SAML 2.0, OAuth 2.0, and OpenID Connect protocols including metadata exchange and claim mapping; writing scripts using PowerShell; performing root causes analysis and resolving authentication failures for SSO issues; developing web architecture, DNS, Load Balancers, Firewalls, and Secure Communication Protocols including HTTPS and TLS; maintaining enterprise security standards, and compliance frameworks; and integrating M&A SSO integrations into secure identity platforms.