POSITION OVERVIEW

SLAC National Accelerator Laboratory¿s Computing Division seeks an experienced Identity and Access Management (IAM) Solutions Engineer with a background in enterprise IT infrastructure and information security.
The Identity and Access Management (IAM) Solutions Engineer is a senior technical member of the Identity Services team in SLAC IT. This team provides identity, authentication, authorization, directory and related integration solutions for the entire SLAC National Laboratory complex. This team is also responsible for identity management of visiting facilities users who will often be using federated authentication in order to access SLAC services.
The position reports to the Manager of Identity Services within SLAC IT.

PHYSICAL REQUIREMENTS AND WORKING CONDITIONS:

• Consistent with its obligations under the law, the University will provide reasonable accommodation to any employee with a disability who requires accommodation to perform the essential functions of his or her job.

• Apply unique skill combinations to create IT solutions for complex problems. Work may involve information theory, computing theory, or scientific computing.
• Identify applicable new technologies through research, collaboration with peers, and participation in standards organizations, industry groups, panels, etc.
• Develop, maintain and support SLAC Identity Management systems, including integrations from source systems of identity data, processes to normalize person information, and attribute interfaces to provide that information to consumers across the SLAC enterprise via standard protocols and data structures used in the IAM domain including: , LDAP, Active Directory, RESTful web services, JSON, as well as using scheduled bulk feeds.
• Develop and support enterprise SSO authentication solutions via SAML2 and OAuth/OIDC. Working knowledge of underlying authentication technologies Kerberos and X.509.
• Extend enterprise authorization management and develop functions to support self-service and automation on services pertaining to authentication, authorization, and account management.
• Team members (including this position) share an on-call rotation to provide Tier 2 support and periodic system maintenance oversight, including off hours. Strong candidates will share an interest in automating solutions to recurring issues requiring IT support at any tier.
• Act as the conceptual source for assignments involving more than one area of specialization and/or innovative system design.
• Plan and coordinate IT efforts with a high degree of dependence upon their individual unique technical contributions.
• Conceive, design, develop, optimize, integrate, and maintain information technology at a complex level.
• Troubleshoot highly complex problems for which the analysis and resolution require extensive knowledge of many diverse system components.
• Develop long range technology plans.
• Provide project management, coordination and programming for IT projects having significant impact.
• Provide leadership and IT solutions for complex problems.
• May work on enterprise-wide task forces and committees related to strategic planning efforts for information technologies.