Our Client is looking for an Authentication Architect to be responsible for the design and implementation of a wide array of access management and directory services platforms.
This individual will drive major IAM technology projects, both internal and to private/public Cloud, including upgrades to the Company's existing authentication systems and
deployment of new technologies. Areas of focus include: Identity Management, multi-factor authentication, PKI, network access, and risk mitigation against identity threats.

Duties

Technology leadership for the Company's IAM initiatives, including but not limited to: Active Directory, LDAP Solutions, SAML, SSO and SSL-VPN.
Architect and deploy Active Directory, AD-LDS, AD-CS, ADFS, and other Microsoft technologies.
Oversee development and deployment of identity management technologies.
Develop strong authentication federation strategy, including Shire Public Key Infrastructure (PKI), PKI bridging and cross-credentialing.
Develop and deployment of operation of multi-factor authentication systems.
Architect authentication system monitoring, incident analysis, and security auditing, including preventive and detective controls for compliance with Sarbanes-Oxley (SOX)
and other regulations.
Represent Company's Security and Compliance function in cross-business communities involving AD and other identity management technologies.
Contribute to the shaping of long-term directory vision and strategy.
Lead key initiatives related to directory platforms.
Support mergers and acquisition activities, including enterprise integration and divestitures.
Support AD Operations team to insure continued operational excellence on relevant platforms.

Requirements:

Minimum 8 years of experience as a Windows 2003/2008 and Active Directory services administrator managing a global Active Directory environment larger than 5,000 users.
Minimum 8 years experience with Microsoft Windows 2003/2008, Active Directory, DNS, DHCP, DFS, DFS-R, File and Print Services, and GPO validation, management, and
implementation.
Experience working in a team-oriented collaborative environment and experience managing multiple third party resources and outsource providers.
A minimum of a Bachelors degree.
Excellent written and verbal communication.

Desired:

Strong Authentication technologies, including PKI, One-Time Password (OTP) and OATH.
Experience with authentication federation technologies, including Active Directory Federation Services (ADFS), REST and SAML.
Experience with any of the following technologies: Relational databases, multi-factor or other extended authentication platforms, Quest Software Active Directory
Management Solutions, VMware Virtualization environments, AD Disaster Recovery.
MSCE or MCITP certification and/or Security+ or CISSP certification.

Job keywords/tags:  Active Directory , LDAP , SAML , SSO , SSL-VPN , Windows 2003/2008