OIAM Security Specialist 7398-2410

HM Note: This hybrid role is three (3) days in office

Responsibilities: and nbsp;

Defines evaluates and assesses security architecture requirements for systems environments and IT projects. Ensures the incorporation of IT security and contingency measures in the development of systems. and nbsp;

Advises on the identification analysis and resolution of specific security factors risks vulnerabilities; protection of personal privacy issues; and appropriate industry and international security standards. and nbsp;

Carry out information and information technology (I and amp;IT) security projects and tasks in the Ontario Public Service as assigned by Corporate Security or cluster I and amp;IT management and nbsp;

General Skills: and nbsp;

Strong understanding and expertise in security architecture and nbsp;

Knowledge of techniques to secure information assets and the planning design and implementation of security technologies and nbsp;

Proven techniques to discover gaps or weaknesses in security architecture to identify and mitigate known security threats or inherent weaknesses and nbsp;

Knowledge and understanding of relevant legislation and corporate directives related to the security and confidentiality of information (e.g. Freedom of Information and Protection of Privacy Act) in order to identify and assess areas of concern and risk and nbsp;

Solid knowledge of current security and contingency technology and techniques (e.g. digital signature encryption access controls firewalls authentication virus protection etc.); and a proven working knowledge of security audit procedures and protocols and nbsp;

Experience in developing enterprise architecture deliverables (e.g. models) and nbsp;

Experience in providing specialized security support at the specified experience level and nbsp;

Experience in establishing secure environments at a network operating system or application level and nbsp;

Experience with implementing security on complex and distributed systems. and nbsp;

Awareness of emerging IT trends and directions especially as related to security and nbsp;

Excellent analytical problemsolving and decisionmaking skills; written and verbal communication skills; interpersonal and negotiation skills and nbsp;

A team player with a track record for meeting deadlines managing competing priorities and client relationship management experience and nbsp;

Desirable Skills: and nbsp;

Experience in developing enterprise architecture deliverables (e.g. models) based on Ontario Government Enterprise Architecture processes and practice and nbsp;

Experience in Threat Risk Assessment methods and nbsp;

Knowledge and understanding of Information Management principles concepts policies and practices and nbsp;

Experience in business recovery and disaster recovery planning. and nbsp;

Experience in performing threat and risk assessment. and nbsp;

Experience in public key infrastructure development and operation. and nbsp;

Experience in security design as part of systems development projects. and nbsp;

Experience in intrusion detection systems. and nbsp;

Experience in mitigation tools for malicious software. and nbsp;

Experience in vulnerability analysis and penetration testing. and nbsp;

Experience in network monitoring. Experience in security policy development. and nbsp;

Experience in developing and delivering security education. Experience in forensic investigation. and nbsp;

Knowledge and understanding of Information Management principles concepts policies and practices

Skills

Experience and Skill Set Requirements

1. Sustainment of Large Identity and Access Management Systems 40%

1.1. 5 years experience sustaining (e.g. administration operations support patching monitoring starting/ stopping) COTS based identity and access management systems.

1.2. At least 3 years experience must be related to Oracle Identity and Access Management Suite Plus. Experience with OIAM 12C is preferred.

1.3. At least 4 years experience must be related to implementations with over 10000 registered users.

1.4. 3 years experience with the Oracle unified Methodology (OUM) for COTS implementations.

1.5. 2 years of experience with Nagios and other system monitoring tools (e.g. Big Brother)

1.6. Working Knowledge and understanding of IT Security Technologies particularly encryption and authentication technologies such as PKI PMI and SSL.

1.7. Experience of solution design for business application to integrate with access management service using SAML2 OIDC industry standard protocol

2. Sustainment of Large Application Implementations 30%

2.1. 5 years experience designing developing deploying and sustaining large application implementations based on the following technology products: Oracle Fusion Middleware Oracle Identity and Access Management Suite OHS Tomcat Windows Internet Information Server (IIS) IBM HTTP Server Apache IBM WebSphere Oracle database 19C Oracle Directory Server Enterprise Edition Solaris Windows AIX and Linux.

2.2. Experience with ITIL processes such as Service Level Management Problem Management Change Management Release Management and Capacity Management.

3. Incident and Problem Management 20%

3.1. 5 years experience triaging analysing diagnosing (a.k.a troubleshooting) evaluating options and resolving application problems especially those related to identity and access management systems and the above technologies.

3.2. Experience with decision making processes.

4. Quality Assurance 10%

4.1. 5 years experience with quality control and assurance methodologies and practices as applied to the implementation of applications with over 10000 users.

4.2. Experience with Change Management and Release Management as processes supporting the implementation of large applications.

4.3. Experience with automated testing tools such as Team Foundation Server (TFS)

4.4. 3 years experience with the Oracle Unified Methodology (OUM) for COTS implementations or its predecessors (e.g. Oracle Application Implementation Methodology (AIM)) or equivalents.

Must Haves:

• At least 3 years experience must be related to Oracle Identity and Access Management Suite Plus. Experience with OIAM 12C is preferred.
• 5 years experience designing developing deploying and sustaining large application implementations based on the following technology products:
• Oracle Fusion Middleware
• Oracle Identity and Access Management Suite
• OHS
• Tomcat
• Windows Internet Information Server (IIS)
• IBM HTTP Server
• Apache
• IBM WebSphere
• Oracle database 19C
• Oracle Directory Server Enterprise Edition
• Solaris
• Windows
• AIX and Linux