Sr CIAM (Customer Identity and Access Management) Engineer

Job Family

IT - General

About Us 

 

At Transamerica, hard work, innovative thinking, and personal accountability are qualities we honor and reward. We understand the potential of leveraging the talents of a diverse workforce. We embrace an environment where employees enjoy a balance between their careers, families, communities, and personal interests.  

 

Ultimately, we appreciate the uniqueness of a company where talented professionals work collaboratively in a positive environment — one focused on helping people look forward and plan for the best life possible while providing tools and solutions that make it easier to get there. 

     

Who We Are 

  

We believe everyone deserves to live their best life. More than a century ago, we were among the first financial services companies in America to serve everyday people from all walks of life.  

Today, we’re part of an international holding company, with millions of customers and thousands of employees worldwide. Our insurance, retirement, and investment solutions help people make the most of what’s important to them. 

We’re empowered by a vast agent network covering North America, with diversity to match. Together with our nonprofit research institute and foundation, we tune in, step up, and are a force for good — for our customers and the communities where we live, work, and play. United in our purpose, we help people create the financial freedom to live life on their terms. 

What We Do 

 

Transamerica is organized into three distinct businesses. These include 1) World Financial Group, including Transamerica Financial Advisors, 2) Protection Solutions and Savings & Investments, comprised of life insurance, annuities, employee benefits, retirement plans, and Transamerica Investment Solutions, and 3) Financial Assets, which includes legacy blocks of long term care, universal life, and variable and fixed annuities. These are supported by Transamerica Corporate, which includes Finance, People and Places, General Counsel, Risk, Internal Audit, Strategy and Development, and Corporate Affairs, which covers Communications, Brand, and Government and Policy Affairs. 

 

Transamerica employs nearly 7,000 people. It’s part of Aegon, an integrated, diversified, international financial services group serving approximately 23.9 million customers worldwide.* For more information, visit transamerica.com.  

Job Description Summary

Global Technology Services (GTS) is Aegon's global IT partner that provides infrastructure services, information security and global/corporate application support for Aegon's businesses around the world.

From 6 locations in the US, the Netherlands, UK, and Hungary, we support 20+ country units and 24000+ employees in the world. Our support consists of a wide range of centralized global IT services such as programming, database management, project management, agile/dev/ops, and more.

We continue to maximize the value from having a clear digital and data technology platform strategy that extends our ecosystem, as an approach to digitization, enhancing customer experience, and improving operational efficiency.

All of these teams work closely together to provide innovative and digital solutions as well as critical technology support. This is essential for enabling Aegon's businesses around the globe to be innovative, digital and competitive, efficient, and effective, and to provide the best solutions and customer experience for our customers and shareholders.

Position will be responsible for consulting with various groups to plan, architect and implement standards-based solutions in the areas of general identity management, directory, and security. Provides administrative support for several infrastructures related to web applications, identity management and the components surrounding these technologies Specifically IBM Security Access Manager and Okta Auth0. These include areas such as SharePoint, WebSphere, IIS, Tomcat, Apache, EpiServer, Proxy Internet Access, Oracle Access Manager, CMS Systems, Federation Services, Monitoring and F5 Content Switches. Also has responsibilities for Internet security, integration of 3rd party applications, domain name / SSL certificate administration and documentation.

Job Description

What You Will Do:

• Direct responsibilities on the operational team for developing and maintaining integrated strategies and solutions, with a focus on Web Access Management services for the Global Aegon environment.  Web Access Management services include the following core technologies: Okta Auth0, Ping, IBM ISAM, and Federation Services.

• Identify opportunities for using Web Access Management to leverage single sign on security with an emphasis on cost containment/reduction strategies.

• Provide assistance in project management and feasibility analysis on potential future projects.

• Support Web Access Management Systems applications and Integrations.

• Assist in documentation highlighting integration, design and SSO features of solutions.

• Provide technical assistance for internal/external customer engagements. Assist in automation and building repeatable patterns for consumption.

• Perform day to day operations to maintain SLAs and business functions

• Runs small to medium enterprise infrastructure projects from requirements gathering to post-implementation.

• Helps in the performance and availability of the Web Services environment through monitoring, patching, software tools, and process improvements

• Complies with information security policies

• Solid knowledge of project management methodologies; able to manage project phases or less complex projects

• Provide documentation highlighting integration, design, and features of solutions.

What You Will Need:

Qualifications

•  Knowledge and experience in working with IBM Security Access Manager and Okta Auth0

• Experience at delivering technology solutions at an enterprise level.

• Diagnostic and troubleshooting skills, and the ability to excel under pressure

•  Developed written and verbal skills, assignment and priority flexibility, and time management skills

• Understanding of DNS, TCP/IP addressing and networking (Internet, routers, switches)

• Knowledge of Web Services, Web and Application Services, Java and .NET technologies, and cloud services.

• Background in scripting, code development such as PowerShell, Ansible, Java, Terraform, etc.

• Ability to work in teams on small to medium projects.

• Excellent understanding of cloud and on-prem based infrastructure solutions and their Access Management needs.

•  Ability to quickly learn and apply new concepts.

• Ability to drive and achieve consensus/support from large diverse groups. 

• Written and verbal communication skills enabling effective articulation of strategy.

• Able to understand how concepts apply to design or architectural efforts

• Enterprise network security technologies including firewalls, IDS, IPS, NAC, WAF, and Web Proxies

• Working knowledge of Certificate/CA/PKI infrastructure

• Possesses and applies broad knowledge of concepts and principles or exhibits technical expertise related to server infrastructure and web-based application support.

• A four-year computer science or related technical degree or minimum of 5 (five) years of solid related work experience.

• Breadth of knowledge across many technology disciplines; including various access management solutions

• 5+ years of progressive related IT experience.

Preferred

• Experience in federation using SAML 2.0, Open ID connect, REST, oAuth standards

• Understanding of SDS and experience with managing HA replicas

• Managing environments 500K-1MM external users

• Understanding of SAML and SSO federated identities

• Experience with installing, upgrading, and configuring Okta Auth0, ISAM/Security Access Manager/WebSEAL version 7.x, ISAM 9-10

• Access Management: Web security, Authentication, Authorization, Kerberos, Session Management, Web Proxy, Risk-Based Access

• Understanding of microservices-based architecture, API based system integration and Amazon Web Services cloud Identity & Access

• Understanding of working in a hybrid cloud environment and working knowledge of AWS Cloud Principles.

• Knowledge in scripting, code development such as PowerShell, Ansible, Java, .NET, etc. and automating developments by code

• Ability to work in teams on small to medium projects.

• Excellent understanding of cloud and on-prem based infrastructure solutions and their Access Management needs.

• Understanding of microservices-based architecture, API based system integration and Amazon Web Services cloud Identity & Access

• A four-year computer science or related technical degree or equivalent experience

• Hands on experience mentoring small to medium teams

• Ability to convert complex information into simple, explainable solutions.

• Possesses a planning orientation with integrative and strategic thinking skills.

• Demonstrated project management and client relationship skills.

• Understanding of a zero trust network environment.

Working Conditions

• Non-traditional work hours may be required

• On-call rotation for 24/7/365 coverage required.

• May require work during non-standard work hours due to global projects and support.

**Please note that the compensation information that follows is a good faith estimate for this position only and is provided pursuant to applicable pay transparency and compensation posting laws. It is estimated based on what a successful candidate might be paid in certain Company locations.**

Compensation:

The US salary for this position generally ranges between $100,000 - $135,000 annually. This range is an estimate, based on potential employee qualifications and operational needs. Salary may vary above and below the stated amounts, as permitted by applicable law.

Additionally in the US, this position is typically eligible for an Annual Bonus based on the Company Bonus Plan/Individual Performance and is at the Company’s discretion.

What we offer:

• A Comprehensive Wealth + Health package. 

• Wealth Benefits; Competitive Pay, Bonus, and Benefits Package

• Health and Work/Life Balance Benefits

​

Our commitment to inclusion & diversity means that we value differences. We encourage the unique perspectives of persons and are dedicated to creating a respectful and inclusive work environment.

What We Offer  

 

For eligible employees, we offer a comprehensive benefits package designed to support both the personal and financial well-being of our employees. 

 

Compensation Benefits 

• Competitive Pay 

• Bonus for Eligible Employees 

 

Benefits Package 

• Pension Plan 

• 401k Match

• Employee Stock Purchase Plan

• Tuition Reimbursement

• Disability Insurance

• Medical Insurance

• Dental Insurance

• Vision Insurance

• Employee Discounts

• Career Training & Development Opportunities

 

Health and Work/Life Balance Benefits 

• Paid Time Off starting at 160 hours annually for employees in their first year of service.

• Ten (10) paid holidays per year (typically mirroring the New York Stock Exchange (NYSE) holidays).

• Be Well Company holistic wellness program, which includes Wellness Coaching and Reward Dollars 

• Parental Leave – fifteen (15) days of paid parental leave per calendar year to eligible employees with at least one year of service at the time of birth, placement of an adopted child, or placement of a foster care child.

• Adoption Assistance

• Employee Assistance Program

• College Coach Program

• Back-Up Care Program

• PTO for Volunteer Hours

• Employee Matching Gifts Program

• Employee Resource Groups

• Inclusion and Diversity Programs

• Employee Recognition Program

• Referral Bonus Programs

 

Inclusion & Diversity  

  

We believe our commitment to diversity and inclusion creates a work environment filled with exceptional individuals. We’re thrilled to have been recognized for our efforts through the Human Rights Campaign Corporate Equality Index, Dave Thomas Adoption Friendly Advocate, and several Seramount lists, including the Inclusion Index, 100 Best Companies for Working Parents, Best Companies for Dads, and Top 75 Companies for Executive Women. 

  

To foster a culture of inclusivity throughout our workforce, workplace, and marketplace, Transamerica offers a wide range of diversity and inclusion programs. This includes our company-sponsored, employee-driven Employee Resource Groups (ERGs), which are formed around a shared interest or a common characteristic of diversity. ERGs are open to all employees. They provide a supportive environment to help us better appreciate our similarities and differences and understand how they benefit us all. 

   

Giving Back  

  

We believe our responsibilities extend beyond our corporate walls. That's why we created the Aegon Transamerica Foundation in 1994. Through a mix of financial grants and the volunteer efforts of our employees, the foundation supports nonprofit organizations focused on the things that matter most to our people in the communities where we live and work.     

  

Transamerica’s Parent Company  

 

Aegon acquired the Transamerica business in 1999. Since its start in 1844, Aegon has  grown into an international company serving more than 23.9 million people across the globe.* It offers investment, protection, and retirement solutions, always with a clear purpose: Helping people live their best lives. As a leading global investor and employer, the company seeks to have a positive impact by addressing critical environmental and societal issues, with a focus on climate change and inclusion and diversity.   

* As of December 31, 2023