IGA Technical Delivery Lead (R1012289) in Durham, NC at IQVIA™

Date Posted: 4/30/2018

Job Snapshot

Job Description

PURPOSE:   Provide solution delivery leadership and expertise, specializing in the design, integration, development, maintenance, and support of enterprise Identity Governance & Administration (IGA) products, solutions, and services in accordance with the IAM product & platform strategy.  Provide technical leadership on complex projects to meet business requirements for both IQVIA internal employees and external clients, and to protect the confidentiality, integrity and availability of data assets.   The IQVIA system landscape consists of both legacy IGA systems build on .NET & Java-based technologies, with a go-forward strategy that leverages a commercial off the shelf (COTS) solution(s).


IGA solutions manage identity and access life cycles by collecting, aggregating and correlating disparate identity data across multiple IQVIA Systems that are distributed throughout the IT & Business landscape.  This data serves as the basis for IGA functions including: automated provisioning of accounts among heterogeneous systems, fulfillment of access requests (including self-service), password management, governance over user access to target systems via workflows and automated policies, access certification processes, and reporting.  Additional capabilities often include:  risk scoring of a user's combined entitlements, segregation of duties (SOD) enforcement, role management, role mining, audit case incident management, and analytics (historical change, performance, recommendations for entitlements or certifications, etc.).


RESPONSIBILITIES:

  • Serve as a key technical resource, taking direction from the IGA Product Owner to implement solutions together with the IGA development staff and key technical stakeholders.
  • Lead the technical delivery of sophisticated identity management solutions (both COTS and custom-built) that enable IQVIA employees and external client to access systems and data while maintaining the principle of least privilege, using a combination of coding, scripting, integration, and platform customization – including system upgrades, installation, and performance tuning.
  • Collaborate effectively across the technical landscape (e.g. IAM team, Information Security team, CIO Teams, Product teams, and operations/infrastructure teams)
  •  Design, develop, implement, and maintain IGA solutions that include:
    • System connectors to authoritative source systems (e.g. HR) and provisioning targets (e.g. AD/LDAP and applications).
    • Automated provisioning and de-provisioning of accounts, roles, and resource entitlements
    • Automated identity lifecycle processes (e.g. user request / approvals or based on triggers from authoritative systems)
    • Implementation of complex, custom workflows containing logic checks and data queries to authoritative systems
  • Deliver in accordance with IQVIA software development lifecycle (SDLC) processes, which includes code reviews, and formal validation/testing
  • Author technical documentation, including:  infrastructure topology, system design, workflows, data flows/mapping, unit testing, implementation steps, and user/system support.
  • Ensure solutions are effectively monitored for function, performance, and capacity
  • Provide support/troubleshooting and root cause analysis to identify and resolve system issues, when required
  • Ensure that IGA solutions adhere to IQVIA policies, standards and procedures
  • Ensure that IGA solutions align with security best practices, enterprise architecture/strategy, and technical standards.

 REQUIRED KNOWLEDGE, SKILLS AND ABILITIES

  • Track record of successful IAM deliveries, including governance and provisioning solutions.  Experience implementing SailPoint’s Identity IQ is a plus.
  • Fluency and demonstrated programming experience using Java/J2EE.
  • Strong relational database skills, with solid understanding of SQL programming
  • Strong LDAP programming skills
  • Ability to script and automate process and procedure using PowerShell, VBScript, python, or bash
  • Experience with service oriented architecture (SOA), designing/developing SOAP, WSDL/XSD, JAX-WS, RESTful based web services
  • Experience working on Windows and Unix systems, good understanding of web application servers like IIS, WebLogic, Tomcat, and Jetty

KNOWLEDGE OF THE FOLLOWING IS A PLUS:

  • Microsoft technologies like C#.NET/ASP.NET
  • SCIM, SPML, SAML, OAuth, OpenID, XACML and other security/IAM related standards
  • Web technologies like HTML5, AJAX, JavaScript, cascading style sheet etc.
  • Web single sign-on, federation, active directory/LDAP, Kerberos/NTLM authentication, integrated Windows authentication, role-based access control, attribute-based access control, entitlement management
  • Experience with modern software development processes, lifecycles, and supporting tools (e.g., collaboration environments, configuration management tools, continuous integration tools, automated testing)
  • Exceptional analytical problem-solving skills including the ability to perform root cause analysis and troubleshooting
  • Exposure to mobile application development (Android/iOS)
  • Strong interpersonal skills and the ability to work well in a team environment
  • Effectively operate within a global collaborative enterprise environment
  • Excellent communication skills, including ability to communicate across countries and cultures
  • Attention to detail combined with big picture perspective
  • Ability to work under own initiative, and enthusiasm to drive through change and multi task
  • High-level of accountability and ability to execute; experience of estimating and planning work effort including managing risks and issues in relation to delivery of work
  • Commitment to ongoing professional development

MINIMUM REQUIRED EDUCATION AND EXPERIENCE

  • Master’s Degree in computer science or related field (preferred)
  • BS in Computer Science or equivalent
  • Minimum of 5 years of experience implementing and customizing specific IGA tool-sets for automated provisioning / authoring connectors / LDAP programming / workflow creation / attestation campaigns
  • Minimum of 8 years of hands-on software delivery, design and development experience
  • Security certification such as CISSP, CSSLP is a plus 

PHYSICAL REQUIREMENTS

  • Extensive use of the telephone and face-to-face communications, which requires accurate communication skills
  • Significant amount of keyboard requiring repetitive motion of fingers
  • Regular sitting for extended periods of time
  • Travel may be required




Job ID: R1012289