2025046 Software Engineer - Identity and Access Management (IAM)

There are over 7 billion people on this planet. And by 2050, there will be 2 billion more... many moving into urban centers at an unprecedented rate. Making sure there is enough food, fiber and infrastructure for our rapidly growing world is what we're all about at John Deere. And it's why we're investing in our people and our technology like never before! Here the world's brightest minds are tackling the world's biggest challenges. If you believe one person can make the world a better place, we'll put you to work. RIGHT NOW.

John Deere is an equal opportunity employer. All qualified applicants will receive consideration for employment without regards to, among other things, race, religion, color, national origin, sex, age, sexual orientation, gender identity or expression, status as a protected veteran, or status as a qualified individual with disability.

Primary Location: United States (US) – IL – Moline  

Function: Technology

Title: Software Engineer - Identity and Access Management (IAM)- 2025046

Onsite/Remote: Onsite Position

Your Responsibilities

As a Software Engineer - Identity and Access Management (IAM) for John Deere in Moline, IL, you will:

• Transform and continuously improve technology products to meet or exceed the stakeholder specifications of availability, quality, and user experience in the Cybersecurity space;
• Work within established guidelines such as workflow or tool standards and help improve these using DevOps principles;
• Drive product innovations leveraging the cloud and other industry-leading technologies;
• Assist with root cause analysis, debug, and fix complex application issues, and lead initiatives to prevent recurrence within the product's codebase;
• Actively contribute as a member of an Agile software delivery team to ensure strong software design, data design, and loosely coupled architectural alignment in a complex application environment;
• Ensure a high-quality and sustainable codebase by establishing Test Driven Development (TDD) as the foundation of development;
• Install, support, and administer Radiant Logic Virtual Directory Server;
• Manage and maintain IBM Security Verify Governance - Identity Manager;
• Oversee the installation, support, and administration of IBM Security Directory Server;
• Apply best security practices in administering Identity Management Systems;
• Understand the John Deere dealer, supplier, and customer networks and resolve issues encountered by these users in accessing John Deere systems;
• Hold an AWS Certification with experience in AWS services such as RDS, EC2, S3, SQS, and Lambda;
• Possess knowledge of Okta, Active Directory, and Splunk;
• Specialize in Cybersecurity with a focus on Identity and Access Management;
• Utilize TDI - IBM Tool for security purposes;
• Administer Saviynt, an Identity Governance and Access (IGA) tool;
• Demonstrate proficiency in Java development;
• Design and implement Microservices architectures;
• and possess experience in AWS migration projects, ensuring seamless and efficient transitions to cloud environments. Additionally, manage the Role Based Authorization Component (RBAC) Service, which facilitates fine-grained access control decisions for Dealers, Suppliers, and internal applications by linking user roles—whether based on RACF group membership or defined in EDS LDAP—to specific business functions within RBAC-enabled applications. Support the Unified User Component (UUC), which provides access to user profile information across the organization, retrieving data for employees, contingent workers, dealers, and suppliers, and offering a unified interface to data residing in multiple JDBC and LDAP sources.
• 20% domestic and international travel required. Must live within normal commuting distance of the worksite. Up to 20% remote work allowed.

What Skills You Need

• 4 years of experience in develop applications using AWS services and utilize AWS services such as ECS, DynamoDB, EC2, S3, SQS, and Lambda to drive product innovations, ensuring scalability, availability, and performance in the cloud environment
• 3 years of experience in hands-on experience using DevOps including (GitHub Actions, Terraform, and Docker) Identity and Access tools including (Splunk, Okta, and Active Directory) to streamline the development process, enhance automation, and maintain a robust infrastructure. This includes the installation, support, and administration of Radiant Logic Virtual Directory Server, IBM Security Directory Server, and Identity Management Systems
• 4 years of experience with highly Container as a Service (CaaS) to implement and manage using Kubernetes and containerization technologies, providing a flexible and scalable environment for deploying applications
• 2 years of experience in application security, secure coding practices, data privacy, and security architecture to ensure secure coding, data privacy, and a robust security architecture including utilizing TDI - IBM Tool for enhanced security purposes. This includes managing and maintaining IBM Security Verify Governance - Identity Manager and administering Saviynt, an Identity Governance and Access (IGA) tool
• 4 years of experience in an Agile/Scrum team utilizing TDD methodologies to maintain a high-quality and sustainable codebase, promoting iterative development and continuous improvement
• 4 years of experience in design, development, testing, and integration of complex software solutions to engage in the full software development lifecycle, utilizing Java, JavaScript, NodeJS, and RESTful APIs, Micro Services with a strong understanding of database design, data management, and infrastructure constraints to deliver high-availability software solutions
• 3 years of experience with Identity and Access Management (IAM) and Cybersecurity, focusing on authentication, authorization, and continuous monitoring to safeguard sensitive information and ensure compliance with industry regulations. Resolve issues encountered by end-user networks and manage all aspects of IAM, including Radiant Logic Virtual Directory Server, IBM Security Verify Governance - Identity Manager, and IBM Security Directory Server
• 4 years of experience in managing and implementing the Role Based Authorization Component (RBAC) Service, enabling fine-grained access control decisions for Dealers, Suppliers, and internal applications including tying user roles based on RACF group membership or purpose-defined in EDS LDAP to specific business functions within RBAC-enabled applications
• 4 years of experience in administrating the Unified User Component (UUC), ensuring efficient retrieval of user profile data for employees, contingent workers, dealers, suppliers, and organization information for specific users to provide a common interface for accessing data across multiple JDBC and LDAP data sources, supporting distributed applications with consistent and reliable user information access

Education/Experience

• Bachelor’s degree in Computer Science Engineering, Information Technology or related field plus 5 years related experience.

What You'll Get

At John Deere, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. Here, you'll enjoy the freedom to explore new projects, the support to think outside the box and the advanced tools and technology that foster innovation and achievement. Additionally, we offer a comprehensive reward package to help you get started on your new career path, including:

• Flexible work arrangements
• Highly competitive base pay and performance bonuses
• Savings & Retirement benefits (401K and Defined Contribution)
• Healthcare benefits with a generous company contribution in the Health Savings Account
• Adoption assistance
• Employee Assistance Programs
• Tuition assistance
• Fitness subsidies and on-site gyms at specific Deere locations
• Charitable contribution match
• Employee Purchase Plan & numerous discount programs for personal use

$128,024 - $138,024 per year + Benefits

Follow this link to learn more about our Total Rewards Package https://bit.ly/3XCd8fL 

Please apply on-line at www.JohnDeere.com/USJobs and search for Job Posting Number 2025046

The terms of the applicable benefit plans, and all company actions administering or interpreting these plans, continue to control. Deere & Company reserves the right to suspend, amend, modify, or terminate the Plan(s) in any manner at any time, including the right to modify or eliminate any cost-sharing between the company and participants. Changes, which can be made at any time, are made by action of the company's board of directors, or to the extent authorized by resolution of its board of directors, or by the Deere & Company Compensation Committee. In the event of a conflict between the language of the official Plan Documents and this document, the language of the official Plan Documents will control.

ACA Section 1557 Nondiscrimination Notice

The John Deere Health Benefit Plans for Salaried Employees and The John Deere Benefit Plan for Wage Employees comply with applicable Federal civil rights laws and do not discriminate on the basis of race, religion, color, national origin, sex, age, sexual orientation, gender identity or expression, status as a protected veteran, or status as a qualified individual with disability.