Skip to content
Country
India
Working Schedule
Full-Time
Work Arrangement
Virtual
Commutable Distance Required
No
Relocation Assistance Available
No
Posted Date
15-May-2024
Job ID
3106

Description and Requirements

Position Summary:
 

The Single Sign-On (SSO) / Federation Services Engineer will be responsible for delivering solutions using various Identify and Access Management (IAM) tools including CA SiteMinder , Azure SSO and Ping Identity. These solutions will include analysis, development, installation, modification, and support of MetLife’s access management solutions. This position requires the resource to be a subject matter expert (SME) in SSO and Federation.  You must have strong collaboration skills to work with cross functional teams and stakeholders to ensure the delivery of quality solutions while ensuring compliance with MetLife’s Information Security policies and regulatory obligations.

 

Now is an exciting time to be a part of MetLife – start your next career journey with us. In this role you will make an impact by standardizing customer directories, collaborating with business partners on common identities and exploring new technologies for the Single Sign-On (SSO).

 

  • Deploying & Administer Single sign on (SSO) solutions using SiteMinder.
  • Ability to upgrade infrastructure SSL certificates and federation partnership certificates
  • Configure Encryption and Signing of SAML assertion.
  • Expert in SiteMinder & Azure SSO, not only administration, but in-depth understanding of SiteMinder processing
  • Working knowledge of LDAP protocols
  • Must have troubleshooting experience using the monitoring tools like Splunk
  • Onboard the SSO applications based on the business requirements and test the applications.
  • Experience with RSA and Cyber Ark.
  • Azure Active Directory & MFA.

Job Responsibilities:
 

  • SSO engineer is responsible in build and deploy on premise patching, onboard SSO applications, remediate the Prime on vulnerability fixes, and monitor the health of the existing infrastructure.
  • Provide ongoing L2 and L3 support for the MetLife SSO infrastructure globally across US, EMEA and APAC regions.
  • Ability to upgrade infrastructure SSL certificates and federation partnership certificates.
  • Must have troubleshooting experience using the monitoring tools like Splunk and open resource tools to fine tune the alerts and enable proactive monitoring.
  • Onboard the SSO applications based on the business requirements and test the applications.
  • Support RSA and Cyber Ark.
  • Deploying & Administer Single sign on (SSO) solutions using CA SiteMinder.
  • SiteMinder Policy Server installation & configuration.
  • Web server (Apache, Iplanet, IBM HTTP Server and IIS) agent installations & configuration,
  • Policy, Rules, Realms, Response and Auth Schemes setup
  • Configure User Directory and Directory Mapping for Authentication and Authorization.
  • Implement Federation using SAML 2.0

Education:
Bachelor’s Degree in Computer Science, Information Systems, or related field.

 

Experience:

  • 5+ years of experience with CA SiteMinder v12.x policy server, Access Gate Way, Session Store and agent installation, configurations.
  • 5+ years of experience with CA SiteMinder Federation includes inbound and outbound federations.
  • 5+ years of experience in configuring Azure SSO, OIDC protocols, Ping Federate and Ping access management. Deep understanding of Active Directory Federation Services.

Knowledge & Skills;​​​​​​​

  • 5+ years of experience installing, configuring, and supporting Apache, IBM HTTP Server (IHS), or Internet Information Services (IIS) web server software.
  • Prior experience with Identity and access management tools like SiteMinder, Ping, Okta and Forge Rock.
  • Excellent communication and collaboration skills to partner with business and the users.
  • Expert in SiteMinder, not only administration, but in-depth understanding of SiteMinder processing
  • Ability to troubleshoot complex SiteMinder issues and full understanding of tuning and available configuration settings
  • Working knowledge of HTTP protocol; cookies, headers, response codes, and how to troubleshoot
  • Working knowledge of LDAP protocol; searches, responses, and how to troubleshoot
  • Excellent Linux and Windows system knowledge
  • Expert in application of authentication and authorization solutions to address business and security problems
  • Experience with enterprise-level support of business-critical services
  • Experience with technical documentation writing / knowledgebase article creation
  • Strong motivation to analyze and improve systems and infrastructure