Logo
Saxon Global

Saxon Global is hiring: Security Engineer in Chicago

Saxon Global, Chicago, IL, United States


Description:

Seeking a contractor who has extensive and practical experience with Security Products, Protocols, authentication, authorization, directory services, federation, identity management, and MFA. Candidate should have experience in the maintenance and testing of software programs and solutions supporting the Information Security program. The ideal candidate is passionate about security, has experience building large scale enterprise software, and has direct experience in SSO, Multifactor authentication, identity, and security.

MAJOR DUTIES INCLUDE:
• Develop, implement, and maintain Identity and Access Management solutions for the organization.
• Demonstrate understanding of Ping Identity and Okta platform, tools, and capabilities.
• Strong understanding of Authenticating technologies such as SAML, OAuth/OIDC, WS-FED authentication and other authentication methods.
• Strong working knowledge of PingFederate, Ping Access (required), Okta, Okta Access Gateway (basic understanding), Azure AD products/Concepts.
• Good understanding of access management, federated identity, 2-factor solutions, and LDAP Directories.
• Demonstrate deployment capabilities of Ping tools across different environments.
• Support Application onboarding and migration activities.
• Responsible for installing, configuring, upgrading, and deploying Ping Identity and Okta products.
• Design and implement access controls, authorization rules, and role-based access policies.
• Design, develop and implement Single Sign-On and Multi-Factor authentication (MFA) solutions for external and internal applications using SAML and OAuth in Ping Federate and Okta.
• Migrating applications from Ping Federate to Okta.
• Work with application teams to help them in understanding the functionality of security protocols (SAML, OAuth, OpenID) and security tools (Ping Access, Ping Federate, Okta)
• Develop custom plugins and adapters in Ping Federate using Java/J2EE backend technologies.
• Provide on-call support, attend fire calls and troubleshoot issues.
• Administer and support production deployments and troubleshoot access control issues including service vulnerability mitigation and Disaster Recovery planning/ testing.
• Work with IAM and other teams to help architect IAM solutions that are secure, compliant, automated, and scalable.

REQUIRED KNOWLEDGE AND SKILLS
• Minimum 8 years IT experience with at least 5 of those years focused on Information Technology.
• Strong knowledge of information security, IAM principles and Security best practices.
• Advanced knowledge of IAM technologies including, but not limited to the Ping Identity Suite (Ping Federate, Ping Access), Okta, Azure AD.
• Java /J2EE knowledge and ability to write custom adapters /SDK using PingFederate API's.
• In-depth knowledge on security standards and identity protocols (SAML, WS-Federation, WS-Trust, SCIM, JIT and OAuth/OpenID Connect).
• Knowledge of security standards and policies such as SOC2, HIPAA, and GDPR.
• Strong technical expertise in Deploying, Configuring and Upgrading PingFederate, Okta.
• Experience in Migration strategy and implementation from Ping Federate to Okta.
• Experience with Linux operating systems and application servers.
• Ability to manage and prioritize multiple projects and tasks effectively.
• Excellent communication skills with ability to communicate clearly with peers, managers and clients.

Required Skills : PingFederate, Ping Access (required), Okta, Okta Access Gateway (basic understanding), Azure AD products/Concepts. Monday - Friday (8AM-5PM) Location: Chicago, IL (Hybrid 3x onsite) Contract: 5 months plus extensions 1-2 rounds of interviews (online)
Background Check :Yes
Drug Screen :Yes
Notes :
Selling points for candidate :Monday - Friday (8AM-5PM) Location: Chicago, IL (Hybrid 3x onsite) Contract: 5 months plus extensions 1-2 rounds of interviews (online)
Project Verification Info :"The information provided below is for Apex Systems AV use only and is not to be distributed publicly, or to any third party. Any distribution of the below information will result in corrective action from Apex Systems Vendor Management. MSA: Blanket Approval Received Client Letter: Will Provide"
Candidate must be your W2 Employee :Yes
Exclusive to Apex :No
Face to face interview required :No
Candidate must be local :No
Candidate must be authorized to work without sponsorship ::No
Interview times set : :No
Type of project :
Master Job Title :
Branch Code :