Sr. Staff Cyber Security Architect- SSO

Job Description

Roles and Responsibilities

• Collaborate with Aerospace and Corporate Identity organizations to gain understanding of current state design, architecture, and capabilities of Ping and Azure AD environment to plan for a modernized future state environment dedicated to GE Aerospace.  

• Design, architect and guide the implementation of automated, repeatable, scalable, authentication and authorization solution for SSO, MFA, Federation capabilities to integrate/onboard applications/servers/devices/assets using concepts such as SAML, OAuth, FIDO, Zero-trust, etc.

• Develop solution for network device authentication with Free Radius and Ping Identity tools.  

• Leads and coordinates the technical and business discussions relative to future architect direction across multiple teams or product line. 

• Analyze, design and develop a roadmap and implementation plan based upon a current vs. future state in a cohesive architecture viewpoint. Review and develops use cases and problems that need to be solved across multiple teams.  

• Leads the research and evaluation of emerging technology, industry and market trends to assist in project development and/or operational support activities.

• Responsible for verifying security is correctly incorporated prior to production release at all levels for Identity services. Provides leadership, technology guidance and mentors others throughout the domain. 

• Define execution methodologies and project management practices to be followed by all projects within the program. Organize project teams comprising from internal and external technical and functional experts based on budget, scope and timeline. 

• Manage day-to-day execution of multiple interdependent projects by working directly with global technical teams. 

• Support execution team with resolution of roadblocks and interdependencies. Partner with technical and functional teams external to the project to ensure their tasks are completed as required. 

• Manage project risks, scope changes and other non-standard events throughout the life of the project. Manage stakeholder communication and progress reporting at various levels of the organization including leadership and executives. 

• Track project outcomes realization and customer satisfaction levels through established metrics against service level. Ensure lessons learned are collected. 

Technical Expertise:

• Experience with design and implementation with technologies such as Ping Identity, Active Directory(AD), Azure AD, AWS MAM, LDAP Directories, 2FA/MFA/FIDO and ZeroTrust Technologies, etc. 

• Experience with implementing and integrating Identity and Access Management solutions across Cloud providers (eg. AWS and Azure, Workday, Salesforce, etc). 

• Proficient in directory services principles, architecture at enterprise scale across multiple data centers and best practices.  

• Experience in development of strategy and executing roadmaps for establishing and maintaining AD/Azure AD, and synchronization of identities and group across the Aerospace tenants.  

• Experience in design and implementation of virtual directory and data sync products such as Radiant Logic VDS and Meta/PingDataSync. 

• Extensive experience in solving challenging issues in high pressure environment. Strong leadership skills with ability to influence outcomes and organize teams to attain shared goals. 

• Experience implementing modern integrations to support compliance, and security best practices as part of a collaborative, cross-functional engineering team.  

• Proven experience using project management methodologies to deliver business value and drive significant change across an organization. Experience managing budgets including budget and spend. 

• Excellent influencing, interpersonal and communications skills (both written and verbal) with all levels of an organization. 

• Strong track record of understanding and interest in current and emerging technologies demonstrated through training, job experience and / or industry activities. 

• Strong team player – collaborates well with others to solve problems and actively incorporates input from various sources. 

• Demonstrated customer focus – evaluates decisions through the eyes of the customer, builds strong customer relationships, creates processes with customer viewpoint and partners with customers to help shape their future initiatives. 

Required Qualifications:

• Minimum 3 years of experience in enterprise-level architecture/design of complex access management/authentication authorization (SSO, MFA, Federation, directories) solution using industry standard products such as Ping, ForgeRock, Azure AD, Okta, Oracle, CA Siteminder etc.

• Bachelor’s degree from accredited university or college with minimum of 5 years of professional experience OR Associates degree with minimum of 8 years of professional experience OR High School Diploma with minimum of 10 years of professional experience. 

• Minimum 5 years of professional experience in Program Management or IT. 

• Note: Military experience is equivalent to professional experience. 

• Demonstrated experience leading and influencing across a complex, global matrix organization. 

• Proactively identifies and removes obstacles or barriers on behalf of the team. 

• Defines immediate priorities to help the team focus and deliver critical initiatives. 

Eligibility Requirement:

-Legal authorization to work in the U.S. is required.  We will not sponsor individuals for employment visas, now or in the future, for this job.

Desired qualifications:

• Experience in technically leading complex migration projects across various cloud providers such as AWS, Azure, Google cloud etc.

Additional Information