Information Security Engineering Analyst II

Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services. Our worldwide team helps over 3 million companies, more than 1,300 financial institutions and over 600 million cardholders grow with confidence and achieve amazing results. We are driven by our passion for success and we are proud to deliver best-in-class payment technology and software solutions. Join our dynamic team and make your mark on the payments technology landscape of tomorrow.

Summary of This Role

IAM Engineering Manager will be hands-on manager who will be leading an IAM DevSecOps Team to design, develop and deliver Identity and Access Management and Identity Governance and Administration and Privileged Access Management technical solutions for both Cloud and On-Premises. Development will adopt and follow Agile and DevSecOps models for delivery based on CI/CD Automate for on-boarding and configuration of applications for IGA to support general IAM and PAM solutions and tools. Define access review and new certifications processes and manage the certification campaign cycles until completion and for continued maintenance and support of data security policies and procedures. The candidate must be able to collaborate with Product and Capability owners to capture IAM use cases and define epics and user stories to IAM processes. The candidate will work closely with IAM management, Analysts, Engineers, Architects working in the Privileged and Standard Access Management, Certification Governance team.

What Part Will You Play?

Leads and oversees development, configuration, debugging, and support for IAM, PAM and IGA Solutions

Leads field and corporate roll-outs of technology

Leads the stand up of necessary system software, hardware, and equipment (physical or virtual) to meet changing IAM PAM & IGA needs

Creates and optimizes specifications for technology solutions

Produces and manages purchase requests for hardware and software

Stay current with industry trends and best practices in identity governance and access management to continuously enhance our service offerings.

Manages incident handling processes which include implementation of containment, protection and remediation activities.

Keeps up-to-date knowledge of new and emerging threats that can affect the organization's information assets by analyzing of third party software/solutions, IT configuration changes (including access control requests), and network/system architecture from risk perspective

Responsible for the design and configuration of security systems, including proxy, remote access, mail gateway, intrusion prevention, wireless networking, data leak prevention, security information and event management and web application firewalls.

Guides on creating cost effective solutions for system/application development regarding Information Security processes and concepts in applicable systems and software.

Performs day-to-day Information Security functions pertaining to computer security software products and processes. Works closely with subject matter experts and management to develop a skill set for non-routine work.

Enhance understanding of business objectives and help provide direction based on risk, Corporate Security Policy, and association and regulatory guidelines.

What Are We Looking For in This Role?

Minimum Qualifications

Bachelor's Degree

Relevant Experience or Degree in: in Information Security or Computer Science preferred. Other majors will be considered.

Typically Minimum 3 Years Relevant Exp

Experience within Information Security or Information Technology. Experience managing projects. Additional 4 years related experience may be considered in lieu of a degree.

Preferred Qualifications

Hands on (limited) experience with following IAM solutions such as IBM ISIM, PingFederate and Ping Access

Hands on experience working Roles, Provisioning policies, TDI and ldap.

Must be familiar with identity creation workflows, Role Based Access Control and the policies for Identity Management

Experience supporting identity management and the infrastructure. Experience working with linux based systems is preferred

Automation and scripting using Powershell, python or similar language.

A bachelor's degree in engineering, computer science, information security, or information systems 3-5 years of experience in Identity and Access Management domain

Experience in implementing Identity & Access Management or a similar role within the Identity & Access management work environment is desired

Good knowledge of Web / Application servers (e.g. IIS, WebSphere, WebLogic, JBoss, and Apache etc.)

Strong technical knowledge of authentication and authorization including Authz and Authn, OIDC, SAML, XACML, LDAP, OAuth, OpenID

Experience working on various operating systems such as Windows, Linux, Solaris etc.

Working knowledge on Databases such as MS SQL, Oracle, mySQL

Good understanding or hands-on experience on JSON, REST and SOAP

Advanced knowledge of cloud platforms (AWS, Azure, GCP etc.) experience in deploying and managing AM solutions on cloud platforms. AWS is preferred

Deep knowledge and experience working with technology infrastructure including Windows, Active Directory, LDAP, Unix/Linux, databases, authentication protocols, and containers

What Are Our Desired Skills and Capabilities?

This role will focus on providing technical support for the Global Payment IAM systems and will be responsible for overall maintenance and configuration standards of the tools

This role will support the Identity Management and Governance for existing software platforms across multiple businesses under the Global Payments umbrella.

Will assist in operational support of Identity Management and its supporting applications like LDAP, TDI and Policy Servers.

Will work to ensure optimization of the operational processes and procedures for maximum efficiency while maintaining quality standards.

Will create and maintain IDM process and troubleshooting documentation.

Will serve as a Tier 2 troubleshooter for issues with Identity Management.

Minimum 4+ years experiences in Managing and Leading Team one or more of the following: IAM, Cybersecurity or Information Security

Excellent written, presentation, and verbal communication skills.

Effective understanding and working knowledge of authentication, authorization, and identity governance and administration standards such as Single Sign-On (SSO), Multi Factor Authentication (MFA), Access Gateway, Entitlement Management, Just in Time Administration, Principles of Least Privilege, Federation, Conditional Access, Zero Trust Architectures and Concepts and Security Assertion Markup Language (SAML), OpenID (OIDC), Open Authentication (OAuth)

Experience in working with or have deep knowledge of Sailpoint, PingIdentiy, CyberArk, Okta, Azure AD, Active Directory, and other similar IAM and IGA Tools

Ability to develop architecture design deliverables that map business requirements to solutions and technologies. An analytical mind with problem-solving abilities

Experienced with various development languages such as Java, NodeJS and scripting methods such as PowerShell or Python and Proficiency with creation and editing of XML files.

Self-motivated and self directed in fulfilling assigned tasks and responsibilities.

Ensure Audit and other requested information is provided within a timely manner

Drive global standardization and adoption efforts across the organization.

Action Oriented: Taking on new opportunities and tough challenges with a sense of urgency, high energy, and enthusiasm

Business Insight: Applying knowledge of business and the marketplace to advance the organization's goals

Collaborates: Building partnerships and working collaboratively with others to meet shared objectives

Drives Results: Consistently achieving results, even under tough circumstances

Manages Ambiguity: Operating effectively, even when things are not certain or the way forward is not clear

Optimizes Work Processes: Knowing the most effective and efficient processes to get things done, with a focus on continuous improvement

Situational Adaptability: Adapting approach and demeanor in real time to match the shifting demands of different situations

Responsible for the solution planning, architecture, development, and delivery of Azure AD, Okta, SailPoint, leading MFA solutions and related solutions.

Deliver high quality work in both large-scale project environments and smaller, single-staffed engagement models.

Knowledge transfer and sharing best practices to enhance the quality of the Security Product Catalog including the definition and delivery of new offerings.

Collaborate with the appropriate internal teams to develop and maintain a technology plan that supports the client's needs.

Manage escalation internally to ensure appropriate servicing of client needs.

Experience implementing cloud-based security policies and procedures, control standards, and operational practices.

Global Payments Inc. is an equal opportunity employer. Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other basis protected by law. If you wish to request reasonable accommodations related to applying for employment or provide feedback about the accessibility of this website, please contact .

R0051380