ETS Engineer IV - ID & Access Management

Vienna, VA, United States

Navy Federal Credit Union

Navy Federal Credit Union is an armed forces bank serving the Navy, Army, Marine Corps, Air Force, Space Force, Coast Guard, veterans, DoD & their families. Join now!

View all jobs at Navy Federal Credit Union

Apply now Apply later

To research, evaluate, design, implement, and maintain systems and product solutions, applying knowledge of engineering principles related to Customer Identity and Access Management (CIAM). Provides technical direction, engineering support for projects, and infrastructure build for CIAM solutions. Develops and maintains a working knowledge of evolving IT engineering industry technologies, competition, vendors, concepts, and trends directly related to Identity and Access Management.

  • Drive future strategies for enterprise CIAM systems and processes by collaborating with internal business units, external partners & vendors to enhance member experience and ensure flexible and scalable architecture.
  • Provide forward-looking industry perspectives, established and emerging product and technology reviews, and sets best practices across Member/Customer IAM solutions.
  • Serve as a Subject Matter Experts (SME) in Member/Customer Identity & Access Management (CIAM) and via multiple member-facing channels.
    1. ATM
    2. Branch
    3. Contact Center
    4. Digital (Online & Mobile App)
  • Drive the modernization and implementation of Multi-Factor Authentication, FIDO, Passkeys, and other emerging technologies and methodologies related to IAM.
  • Administer and support IAM applications on platforms such as ForgeRock, Ping One,  RSA, Daon, Microsoft Azure, and SiteMinder components (e.g., Policy Servers, Databases, and Directories).
  • Design, develop, and maintain authentication journeys using the ForgeRock/Ping IAM platform to ensure secure and seamless user authentication and access control. 
  • Experience in ForgeRock products (AM, IDM, DS, IG).
  • Collaborate with the DevOps team to deploy and manage ForgeRock IAM instances in production and non-production environments. 
  • Participate in code reviews and provide constructive feedback to team members to maintain code quality and consistency. 
  • Experience in setup, configuration, and management of Policy servers, Web agents, Secure Proxy Servers, and Federation.
  • Develop and support federations with internal systems and external organizations.
  • Implement changes through multiple environments utilizing the Change Management process.
  • Develop project plans, scope, schedule, and clear and concise communications.
  • Apply engineering principles to the design and enhancement of new and existing systems.
  • Document new system components or modifications to existing components.
  • Ensure the security and integrity of system and product solutions, including compliance with Navy Federal, industry engineering, and Information Security principles and practices.
  • Present clear, organized, and concise information to all audiences through a variety of media to enable effective business decisions.
  • Perform engineering tasks and assignments in support of business needs.
  • Perform engineering technology research, procurement, deployment, and configuration for new and modified systems.
  • Perform other duties as assigned.
  • Experience demonstrating a strong knowledge and skill of information security technology focusing on IAM Applications (e.g., ForgeRock, Ping One, RSA, Daon, Microsoft Azure, and SiteMinder).
  • Experience deploying ForgeRock on Azure Kubernetes Service (AKS).
  • Experience in DEVOPS specifically CICD pipelines for AKS deployments.
  • Experience supporting multiple IAM environments.
  • Experience implementing, configuring, managing, and deploying IAM products.
  • Experience and expert knowledge of information security analysis and design techniques.
  • Effective understanding of data security practices and procedures, including systems analysis, authentication technologies, and access controls. Priority will be given to those with expert knowledge and skill in UNIX/Linux system administration and scripting, Identity Federation, SAML, JBoss, and Directory Services/LDAP.
  • Experience in project planning and time management skills.
  • Strong planning and organizational skills.
  • Strong research, analytical, and problem-solving skills.
  • Strong verbal, written, and interpersonal communication skills, including proficiency in negotiating and persuading others.
  • Ability to present findings and conclusions clearly and concisely.

Desired Qualifications

  • Bachelor's Degree in business, information technology, or related fields.
  • CISSP, CISA, CCSP, or other related Information Security certifications.
  • MBA, Master's Degree, PMP, MSCE/MCITP, Linux certifications.
  • Experience with Agile methodologies (e.g., SAFe).
  • ForgeRock Identity & Access Specialist or Professional certification(s).
  • Experience with open-source authentication protocols, including SAML, OAuth, and OpenID.
  • Experience with CA SiteMinder components, policy servers, databases, and directories.
  • Experience with Ping Identity products.
  • Experience with Azure Active Directory Federation.
  • Experience with Kubernetes and Docker services.
  • Experience with the Daon IdentityX Platform.
  • Strong experience with automated testing for Azure DevOps (ADO) pipelines using Java.
  • Experience leveraging several libraries and frameworks with tools such as NeoLoad, Selenium or RestAssured.
  • Knowledge of the financial services industry.

Hours: Monday - Friday, 8:00AM - 4:30PM

Location: 820 Follin Lane, Vienna, VA 22180 | 5510 Heritage Oaks Drive Pensacola, FL 32526

Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.

Our approach to careers is simple yet powerful: Make our mission your passion.

  • Best Companies for Latinos to Work for 2024
  • Computerworld® Best Places to Work in IT
  • Forbes® 2024 America’s Best Large Employers
  • Forbes® 2023 The Best Employers for New Grads
  • Fortune Best Workplaces for Millennials™ 2023   
  • Fortune Best Workplaces for Women ™ 2023       
  • Fortune 100 Best Companies to Work For® 2024
  • Military Times 2023 Best for Vets Employers
  • Newsweek Most Loved Workplaces 
  • Ripplematch Campus Forward Award - Excellence in Early Career Hiring
  • Yello and WayUp Top 100 Internship Programs

From Fortune. ©2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.

Equal Employment Opportunity: Navy Federal values and celebrates diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected Veteran.

Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.

Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.

Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  0  0  0

Tags: Active Directory Agile Azure CCSP CISA CISSP Compliance DevOps Docker ForgeRock IAM Java Kubernetes LDAP Linux OpenID RSA SAML Scripting Security analysis Selenium UNIX

Perks/benefits: Competitive pay Flex hours

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.