Previous Job
Identity & Access Management (IAM) Program
Ref No.: 16-09564
Location: Ft Worth, Texas
Job Descriptions
Role Name: IAM Access Administration-Infrastructure – Senior iSeries Security Engineer (JG21)
This position resides within the Identity & Access Management (IAM) – Infrastructure function, specifically within the Mainframe/iSeries Infrastructure team which is responsible for managing and troubleshooting security functions across Client's iSeries/AS400 platform.
The Senior iSeries Security Engineer will have extensive security experience on iSeries/AS400 platform, such as account management, access control and privilege access management in a large corporation providing global support for users, preferably in the finance industry.
Locations: Ft Worth, TX
The role is responsible for providing security services for end users across the enterprise, while adhering to Client's security policy and security standards, including the knowledge of processes for the provisioning, & de-provisioning of access to iSeries/AS400 and the usage of security tools to support these services. Process elements include procedures, knowledge management, metrics, risk identification, as well as understanding of the catalog of services the iSeries Infrastructure team provides to end users. The candidate must have an understanding of service management, including incident and problem management and be able to work across multiple business units and technologies.
  • Create, maintain and troubleshoot iSeries CL (Command Language) panels used for password resets, audit and reporting, yearly certifications.
  • Configure, monitor and maintain iSeries security software. Manage upgrades, evaluate and apply fixes (PTF's) and execute IVP's on all iSeries systems.
  • Implement, review and maintain security violation reports, iSeries command reports, and user ID listing reports.
  • Review security databases and make recommendations and implement changes that enhance or eliminate security risks within the iSeries security software.
  • Evaluate and implement iSeries access controls to third party vendor software products such as Enforcive, Robot Scheduler, etc.
  • Maintain Enforcive software and participate in upgrades and security related IVP's.
  • Via Robot Scheduler, develop and maintain automated processes for security reporting batch jobs and adhoc reports.
  • Monitor iSeries systems monthly for adherence to security and compliance standards.
  • Manage, support, and process access requests for iSeries FTPs.
  • Assist in creating, implementing and maintaining security standards, policy, procedures, documentation and guidelines.
  • Troubleshoot iSeries security related problems on the OS. Execute problem determination and resolution. Provide escalation and SEV1 support.
  • Provide technical support for decentralized security administrators in all business units.
  • Support, execute and manage client migrations and new iSeries system creations.
  • Support, execute and manage client decommissions of iSeries systems.
  • Execute and support Quarterly Data Analytics reports.
  • Vault and maintain privileged iSeries ids in TPAM.
  • Provide rotating off hour on-call and weekend support.
  • Provide Disaster Recovery / Switch and stay security support.
Individual needs to demonstrate operational excellence, IAM experience, and ability to manage challenging situations with end users. Process experience is required.
  • 10+ years of IT security work experience in iSeries/AS400 Security Management and Administration
  • Bachelor's Degree in Computer Science or related IT field
  • Strong interpersonal and communications skills, with the ability to work with users that are geographically distributed
  • Excellent working knowledge of iSeries/AS400 security software
  • Excellent working knowledge of iSeries/AS400 operating system and system security
  • Experience in ID provisioning on the iSeries/AS400
  • Ability to provision privileged access IDs and support TPAM PAR requests
  • Prepare ad hoc reports as requested by clients or for SOX, SSAE16, or Internal audit requests
  • Work with tools such as RSA Enforcive and Splunk that support logging and monitoring
  • Review incident tickets (alerts) generated by the monitoring system
  • Use the ServiceNow ticketing system for work intake
  • Monitor the environment for adherence to security standards
  • Perform troubleshooting activities and document resolutions
  • Knowledge of CL Programming a plus
  • Knowledge of 3rd party compliance and monitoring software BSafe/Enforcive, Splunk, and Robot Scheduler a plus
  • Experience with other security platforms a plus.
  • Must be customer centric with high standard of delivery
  • Proficient in Microsoft Word, Excel, Visio, PowerPoint, and Outlook
Key Working Relationships:
IAM Program leadership, Engineering, Business Engagement, and Operations team.
IAM Access Administrations teams, Executive Support team, Global Service Desk
Project managers across Client especially those in the CTO organization
IAM Access Administration – Infrastructure - High level of interaction with team members