Description and Requirements
Position Summary:
The Single Sign-On (SSO) / Federation Services Engineer will be responsible for delivering solutions using various Identify and Access Management (IAM) tools including CA SiteMinder , Azure SSO and Ping Identity. These solutions will include analysis, development, installation, modification, and support of MetLife's access management solutions. This position requires the resource to be a subject matter expert (SME) in SSO and Federation. You must have strong collaboration skills to work with cross functional teams and stakeholders to ensure the delivery of quality solutions while ensuring compliance with MetLife's Information Security policies and regulatory obligations.
Now is an exciting time to be a part of MetLife - start your next career journey with us. In this role you will make an impact by standardizing customer directories, collaborating with business partners on common identities and exploring new technologies for the Single Sign-On (SSO).
- Deploying & Administer Single sign on (SSO) solutions using SiteMinder.
- Ability to upgrade infrastructure SSL certificates and federation partnership certificates
- Configure Encryption and Signing of SAML assertion.
- Expert in SiteMinder & Azure SSO, not only administration, but in-depth understanding of SiteMinder processing
- Working knowledge of LDAP protocols
- Must have troubleshooting experience using the monitoring tools like Splunk
- Onboard the SSO applications based on the business requirements and test the applications.
- Experience with RSA and Cyber Ark.
- Azure Active Directory & MFA
Job Responsibilities:
- SSO engineer is responsible in build and deploy on premise patching, onboard SSO applications, remediate the Prime on vulnerability fixes, and monitor the health of the existing infrastructure.
- Provide ongoing L2 and L3 support for the MetLife SSO infrastructure globally across US, EMEA and APAC regions.
- Ability to upgrade infrastructure SSL certificates and federation partnership certificates.
- Must have troubleshooting experience using the monitoring tools like Splunk and open resource tools to fine tune the alerts and enable proactive monitoring.
- Onboard the SSO applications based on the business requirements and test the applications.
- Support RSA and Cyber Ark.
- Deploying & Administer Single sign on (SSO) solutions using CA SiteMinder.
- SiteMinder Policy Server installation & configuration.
- Web server (Apache, Iplanet, IBM HTTP Server and IIS) agent installations & configuration,
- Policy, Rules, Realms, Response and Auth Schemes setup
- Configure User Directory and Directory Mapping for Authentication and Authorization.
- Implement Federation using SAML 2.0
Education:
Bachelor's Degree in Computer Science, Information Systems, or related field.
Experience:
- 7+ years of experience with CA SiteMinder v12.x policy server, Access Gate Way, Session Store and agent installation, configurations.
- 7+ years of experience with CA SiteMinder Federation includes inbound and outbound federations.
- 7+ years of experience in configuring Azure SSO, OIDC protocols, Ping Federate and Ping access management. Deep understanding of Active Directory Federation Services.
-
- 7+ years of experience installing, configuring, and supporting Apache, IBM HTTP Server (IHS), or Internet Information Services (IIS) web server software.
- Prior experience with Identity and access management tools like SiteMinder, Ping, Okta and Forge Rock.
- Excellent communication and collaboration skills to partner with business and the users.
- Expert in SiteMinder, not only administration, but in-depth understanding of SiteMinder processing
- Ability to troubleshoot complex SiteMinder issues and full understanding of tuning and available configuration settings
- Working knowledge of HTTP protocol; cookies, headers, response codes, and how to troubleshoot
- Working knowledge of LDAP protocol; searches, responses, and how to troubleshoot
- Excellent Linux and Windows system knowledge
- Expert in application of authentication and authorization solutions to address business and security problems
- Experience with enterprise-level support of business-critical services
- Experience with technical documentation writing / knowledgebase article creation
- Strong motivation to analyze and improve systems and infrastructure
#BI-Hybrid
What We Do
Named one of Fortune’s “World’s Most Admired Companies,” MetLife is leading the global transformation of an industry we’ve defined for more than 150 years. At MetLife, every innovation and line of code is a lifeline for our customers and their families—from victims of natural disasters to people living with disabilities and beyond. With operations in more than 40 markets and leading positions across the globe, MetLife’s building a workforce of diverse and empowered voices that all belong. Join our remarkable journey—one in which you help write the next century of innovation in financial services—because with MetLife, making the world a better place is All Together Possible.
Why Work With Us
At MetLife, you’ll be working for a company whose purpose is to help customers throughout their life’s journey, and often in their most critical time of need. You’ll be a part of developing leading-edge platforms that will have a lasting impact on the lives and well-being of tens of millions of customers.
Gallery
MetLife Teams
MetLife Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
MetLife's current workplace policies classify roles as Office, Hybrid or Virtual based on the nature of work, encouraging new ways of working together