Mainframe Security Engineer - ACF2 Administrator

For immediate consideration, please connect with me on LinkedIn at https://www.linkedin.com/in/dpotapenko and then email your resume, work authorization status, current location, availability, and compensation expectations directly to denis.potapenkosystemone.com - make sure to include the exact job title and job location in your email message. The job is on-site with a HYBRID work schedule. Candidates must be local or willing to relocate within commuting distance of Pittsburgh PA, Cleveland OH, Birmingham AL, Dallas TX, Phoenix AZ Mainframe Security Engineer (ACF2 Administrator) : - Senior-level ACF2 administrator will work on redesigning of ACF2 security from UID to ROLE-based. - This position requires extensive experience in ACF2 administration and the ability to analyze and restructure application rulekey structures. - Analyze ACF2 access reports for applications to integrate access into identity management tool, Oracle Identity Manager (OIM) - Collaborate with stakeholders to discuss existing access and identify user/access commonalities for OIM entitlements - Redesign application rulekey structures, including creating and collapsing multiple NEXTKEYS for each application - Convert access from UID-based to ROLE-based systems - Create and manage Cross-Reference Groups (XREF, X-ROL) - Implement and test new rulekeys for successful authorization Required Technical Skills and Experience : - This role focuses on ACF2 administration, not software engineering, development, or Multiple Virtual Storage (MVS) support - Senior-level experience in ACF2 Mainframe rule administration - Expertise in ACF2 security administration for dataset and resource rules - Strong understanding of ACF2 access validation workflow for dataset and resource rules - Experience in analyzing rules, splitting rulekeys, and building new rulekeys - Proficiency in creating and collapsing NEXTKEYS - Thorough understanding of masking characters for rules and user IDs - Training will be provided on OIM, corporate mainframe naming conventions, and standards for rules and user IDs - The ideal candidate should be able to effectively communicate with stakeholders about ACF2 access to their applications For immediate consideration, please connect with me on LinkedIn at https://www.linkedin.com/in/dpotapenko and then email your resume, work authorization status, current location, availability, and compensation expectations directly to denis.potapenkosystemone.com - make sure to include the exact job title and job location in your email message. M1 .