IAM Solutions Engineer III
Kyruus is dedicated to its mission to make healthcare work better for everyone by connecting people to the care they need. This role will be in our HealthSparq team as we work on simplifying the complex healthcare landscape. Together, we’ll improve the lives of our users by helping them to make better healthcare choices.
As a member of the Healthsparq TechOps Team the SSO DevOps engineer will be responsible for migrating and onboarding SAML2 and OAUTH configurations for multiple identity providers based on working configurations in Forgerock OpenAM, KeyCloak/RedHat SSO and creating automated testing to verify user journeys as secure and performant in o
Responsibilities:
- Assess current environment and architect future state.
- Work with several teams to drive SSO-enablement of applications for our clients.
- Work directly with clients to assess SSO requirements and provide gap analysis.
- Deliver SSO Federation solutions for 3rd party applications.
- Conduct risk reviews of new technologies from an SSO access management perspective.
- Leverage PM, BSA, Dev and Testing resources to deliver on work streams.
- Migrate existing OpenAM configurations/COT for our IDPs to the KeyCloak.
- Implement SPs, SP initiated Auth, Auth Proxies for the full range of IP use cases.
- Shepard the migration to Keycloak using infrastructure as code (IAC) patterns.
- Provide auth consultation to the technical stakeholders.
Requirements:
- Deep understanding of authentication workflows.
- 8-10+ years’ experience in IT Security / Identity Management, Single Sign-On, Authentication, and SSO Federation.
- Experience with a minimum of two IAM Platforms required.
- Experience in Keycloak/RedHat SSO Federation preferred.
- Experience in testing and applying authentication mechanisms.
- Proven ability to read and understand the following languages: SAML, XML, HTML, JSON and Javascript.
- Experience developing SAML application connectors.
- Experience supporting LDAP and/or Active Directory.
- Security+™ Certification preferred.
- Experience maintaining Forgerock Open AM a plus.
- DevOps automation experience a plus.
Kyruus is dedicated to providing equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, gender, national origin, citizenship, age, disability, sexual orientation, genetic information. We will not discriminate, in any employment decision, against any individual or group on the basis of race, color, religion, sex, gender, national origin, citizenship, age, disability, sexual orientation, genetic information, or veterans/national guard/military reserve status. This shall be done in compliance with all applicable federal, state, and local laws in every location in which Kyruus has facilities.