Emory UniversityRemote
Federated Security Engineer - OIT
United States of America
Full Time
4 hours ago
H1B Sponsor Likely
Key skills
IdentityAccess Management (IAM)CybersecuritySingle Sign-On (SSO)Entra IDShibboleth IDPConfiguration Management Database (CMDB)ServiceNowProgrammingScriptingIAMSSOSingle Sign-On
About this role
Emory University is a leading research university that fosters excellence and attracts world-class talent to innovate today and prepare leaders for the future. The Federated Security Engineer will focus on managing and optimizing the central secure application access ecosystem, ensuring secure onboarding and offboarding of applications, and supporting the integration of applications with the Single Sign-On solution.
Responsibilities:
- Collaborates with the Cybersecurity and IAM teams to ensure secure onboarding and offboarding of applications into the SSO environment
- Designs or consults on the application integration approach to enable secure access/SSO
- Validates and maintains application integration configurations to meet cybersecurity and compliance requirements
- Assists in developing and ensuring alignment of implementations or changes with access control policies and security standards
- Supports audits and compliance reviews related to IAM and application integrations by facilitating responses via the proper SMEs
- Maintains the CI's that relate to federated applications in the Configuration Management Database (CMDB), ensuring application records are accurate, complete, and current
- Manages the application catalog to ensure all integrated applications are tracked with appropriate metadata (e.g., owners, contacts, technical details, integration type)
- Leverages ServiceNow to manage requests, incidents, and changes related to application integrations and IAM processes
- Coordinates application onboarding and offboarding processes, including requirement gathering, integration configuration, testing, and documentation
- Works with application owners to ensure smooth transitions during onboarding/offboarding
- Maintains end-to-end lifecycle documentation for each application in scope
- Creates and maintains detailed documentation for application integrations, onboarding/offboarding procedures, and CMDB updates
- Gathers and analyzes enhancement requests from stakeholders, prioritizes them, and coordinates with technical teams for implementation
- Identifies opportunities to streamline IAM-related processes and improve integration workflows
- Assists in engineering modern applications that support the SSO integration intake process and application inventory
- Troubleshoots, develops, and supports in multiple IDPs including Entra ID and Shibboleth IDP
- Serves as On-Call rotation for IDP support as needed
- Performs other related duties as required
Requirements:
- A bachelor's degree in a scientific or math field and three years of related experience, OR an equivalent combination of education, training, and experience
- Hands-on programming experience and/or non-trivial scripting in a robust programming language, including the ability to write clean, maintainable code to solve practical problems