Capgemini
Solutions Architect - IAM
Capgemini, Oklahoma City, Oklahoma, United States,
Explore our latest thought leadership, ideas, and insights on the issues that are shaping the future of business and society.Choose a partner with intimate knowledge of your industry and first-hand experience of defining its future.Discover our portfolio – constantly evolving to keep pace with the ever-changing needs of our clients.Become part of a diverse collective of free-thinkers, entrepreneurs, and experts – and help us to make a difference.We are a global leader in partnering with companies to transform and manage their business by harnessing the power of technology.Presales:
The cyber solutions architect will work cross-functionally with the Direct Cyber Sales team to ensure comprehensive coverage on all qualified cyber deals. They will provide technical leadership and content development for client and prospect needs such as proposal responses, RFIs, Statements of Work, and other similar requests.Develop Solutions:
For client requirements, bids, RFPs.IAM System Design:
The IAM Solution Specialist designs Identity systems tailored to the Client needs, considering scalability, security, and compliance requirements from the RFPs and Bids.Technical Skills Required:
IGA platforms such as SailPoint, Saviynt, Okta IGA etc. IAM, single sign-on (SAML/OIDC), Passwordless and MFA authentication, RBAC, ABAC, PBAC, API Security, Cloud IAM, IDaaS, SIEM, Containerization, and Microservices.Authorization Policies:
Define access control policies and roles within the IAM system to ensure that users have appropriate access privileges based on their roles and responsibilities.Integration with Identity Sources:
Create solutions with integrated IAM and IGA systems with various identity sources such as HR platforms (Workday, ADP etc.), Active Directory, Entra ID, LDAP, and third-party identity providers to centralize identity management.Identity Federation:
Depending on the client requirements, establishing federated identity relationships with external partners, allowing users to access resources seamlessly across organizational boundaries.API Security:
Ensuring that APIs used for authentication and authorization are secure and adhere to industry best practices, especially in modern distributed architectures like microservices.Compliance and Audit Support:
Ensure the solution includes IAM systems stay in sync with relevant regulations and standards (such as GDPR, HIPAA, PCI DSS) and supporting audit processes by providing necessary access logs and reports.Cloud IAM:
Design IAM solutions for Private and Public cloud environments, considering the unique challenges and opportunities presented by cloud platforms such as AWS, Azure, and Google Cloud Platform.Identity as a Service (IDaaS):
Designing and creating solutions for IDaaS that provide IAM functionality as a cloud-based service, potentially reducing operational overhead and improving scalability.Portfolio Optimization:
Work with the Global Portfolio Hub to support portfolio optimization and service expansion efforts based on market trending and opportunities recognized cross-sector.Thought Leadership:
Provide thought leadership by engaging in publication of white papers, articles, podcasts, and participating in key industry events.Requirements:
10+ Years of experience in IT and should be aligned with Identity governance and access management solutions.5+ years aligned with Privileged Access Management solutions.5+ years architecture or migrations and support for identity governance solutions such as SailPoint, Saviynt, Okta IGA etc.5+ years of hands-on experience in any of Identity products such as Sailpoint, Saviynt, Active Directory, LDAP, OAuth 2.0, OpenID Connect, SAML, Kerberos, MFA methods, RBAC, ABAC, PBAC, Federations, API Security, Cloud IAM, IDaaS, SIEM, Containerization and Microservices IBM SIM, CA IDM, Oracle IDM, ForgeRock IDM, Okta etc.Should have experience in installation and configurations of at least one of the above-mentioned products.Must have a thorough understanding and work experience for user lifecycle management process such as provisioning, de-provisioning, update, disable/enable, reconciliation, delete process with any one of the IDM tools.Must have a thorough understanding and work experience for Single Sign-On, Access management, Identity Federation, Multi-factor authentication, Risk / Context-based authentication, On-time provisioning / de-provisioning with any one of the IDM tools.Must have a thorough understanding and work experience for technologies such as Header based Single Sign-On, SAML, OAuth, Ws-Fed, Ws-Trust, IWA based authentication etc.Experience with integration target systems such as Active Directory, RACF, EBS, Databases etc. with IDM.Must have working experience in workflow design and development, role management, policy development.Must have knowledge of technologies/protocols such as RBAC, ABAC, SoD, Access certification, User auto provisioning/de-provisioning etc.Hands-On experience with customization such as Connector development, writing scripts, and building workflows.Experience with directory services installation, configuration and their integration with at least one of the above-mentioned IDM products.Expertise in J2EE, JSF, Spring, JSON, REST, SCIM and SOAP-based web services.In-depth understanding of Databases/queries/stored procedures.Problem-solving skills are also a must.Should be able to work independently as a Developer, work may require the person to solution and implement IDM components.About Capgemini:
Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided every day by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of nearly 350,000 team members in more than 50 countries. To unlock the true value of technology for your business, our planet, and society for a more inclusive, sustainable future.About Cloud Infrastructure Services (CIS):
CIS powers enterprises’ business and technology digital transformation by accelerating change, reinforcing cybersecurity, empowering employees, managing complexity, and fostering adaptability.Our five key service areas are:
Cloud Services: Exploiting the cloud at speed and scale.Cybersecurity Services: Securing Foundations to Create Open Futures.We pride ourselves on our inclusive and diverse workplace, a reflection of today’s global society’s richness and diversity and a place where our people feel empowered to build and choose meaningful careers, selecting a future where they can all thrive.Come join our vibrant workforce at CIS to build an effective career that empowers you to get the future you want. Learn more about us at www.capgemini.com.Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.Please be aware that Capgemini may capture your image (video or screenshot) during the interview process. That image may be used for verification, including during the hiring and onboarding.
#J-18808-Ljbffr
The cyber solutions architect will work cross-functionally with the Direct Cyber Sales team to ensure comprehensive coverage on all qualified cyber deals. They will provide technical leadership and content development for client and prospect needs such as proposal responses, RFIs, Statements of Work, and other similar requests.Develop Solutions:
For client requirements, bids, RFPs.IAM System Design:
The IAM Solution Specialist designs Identity systems tailored to the Client needs, considering scalability, security, and compliance requirements from the RFPs and Bids.Technical Skills Required:
IGA platforms such as SailPoint, Saviynt, Okta IGA etc. IAM, single sign-on (SAML/OIDC), Passwordless and MFA authentication, RBAC, ABAC, PBAC, API Security, Cloud IAM, IDaaS, SIEM, Containerization, and Microservices.Authorization Policies:
Define access control policies and roles within the IAM system to ensure that users have appropriate access privileges based on their roles and responsibilities.Integration with Identity Sources:
Create solutions with integrated IAM and IGA systems with various identity sources such as HR platforms (Workday, ADP etc.), Active Directory, Entra ID, LDAP, and third-party identity providers to centralize identity management.Identity Federation:
Depending on the client requirements, establishing federated identity relationships with external partners, allowing users to access resources seamlessly across organizational boundaries.API Security:
Ensuring that APIs used for authentication and authorization are secure and adhere to industry best practices, especially in modern distributed architectures like microservices.Compliance and Audit Support:
Ensure the solution includes IAM systems stay in sync with relevant regulations and standards (such as GDPR, HIPAA, PCI DSS) and supporting audit processes by providing necessary access logs and reports.Cloud IAM:
Design IAM solutions for Private and Public cloud environments, considering the unique challenges and opportunities presented by cloud platforms such as AWS, Azure, and Google Cloud Platform.Identity as a Service (IDaaS):
Designing and creating solutions for IDaaS that provide IAM functionality as a cloud-based service, potentially reducing operational overhead and improving scalability.Portfolio Optimization:
Work with the Global Portfolio Hub to support portfolio optimization and service expansion efforts based on market trending and opportunities recognized cross-sector.Thought Leadership:
Provide thought leadership by engaging in publication of white papers, articles, podcasts, and participating in key industry events.Requirements:
10+ Years of experience in IT and should be aligned with Identity governance and access management solutions.5+ years aligned with Privileged Access Management solutions.5+ years architecture or migrations and support for identity governance solutions such as SailPoint, Saviynt, Okta IGA etc.5+ years of hands-on experience in any of Identity products such as Sailpoint, Saviynt, Active Directory, LDAP, OAuth 2.0, OpenID Connect, SAML, Kerberos, MFA methods, RBAC, ABAC, PBAC, Federations, API Security, Cloud IAM, IDaaS, SIEM, Containerization and Microservices IBM SIM, CA IDM, Oracle IDM, ForgeRock IDM, Okta etc.Should have experience in installation and configurations of at least one of the above-mentioned products.Must have a thorough understanding and work experience for user lifecycle management process such as provisioning, de-provisioning, update, disable/enable, reconciliation, delete process with any one of the IDM tools.Must have a thorough understanding and work experience for Single Sign-On, Access management, Identity Federation, Multi-factor authentication, Risk / Context-based authentication, On-time provisioning / de-provisioning with any one of the IDM tools.Must have a thorough understanding and work experience for technologies such as Header based Single Sign-On, SAML, OAuth, Ws-Fed, Ws-Trust, IWA based authentication etc.Experience with integration target systems such as Active Directory, RACF, EBS, Databases etc. with IDM.Must have working experience in workflow design and development, role management, policy development.Must have knowledge of technologies/protocols such as RBAC, ABAC, SoD, Access certification, User auto provisioning/de-provisioning etc.Hands-On experience with customization such as Connector development, writing scripts, and building workflows.Experience with directory services installation, configuration and their integration with at least one of the above-mentioned IDM products.Expertise in J2EE, JSF, Spring, JSON, REST, SCIM and SOAP-based web services.In-depth understanding of Databases/queries/stored procedures.Problem-solving skills are also a must.Should be able to work independently as a Developer, work may require the person to solution and implement IDM components.About Capgemini:
Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided every day by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of nearly 350,000 team members in more than 50 countries. To unlock the true value of technology for your business, our planet, and society for a more inclusive, sustainable future.About Cloud Infrastructure Services (CIS):
CIS powers enterprises’ business and technology digital transformation by accelerating change, reinforcing cybersecurity, empowering employees, managing complexity, and fostering adaptability.Our five key service areas are:
Cloud Services: Exploiting the cloud at speed and scale.Cybersecurity Services: Securing Foundations to Create Open Futures.We pride ourselves on our inclusive and diverse workplace, a reflection of today’s global society’s richness and diversity and a place where our people feel empowered to build and choose meaningful careers, selecting a future where they can all thrive.Come join our vibrant workforce at CIS to build an effective career that empowers you to get the future you want. Learn more about us at www.capgemini.com.Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.Please be aware that Capgemini may capture your image (video or screenshot) during the interview process. That image may be used for verification, including during the hiring and onboarding.
#J-18808-Ljbffr