Senior Security Consultant (Architecture - IDAM Engineer )

NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the world's most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing world, we work together with our people, clients and communities to enable them to fulfil their potential to do great things. We believe that by bringing everyone together, we can solve problems using innovative technology that can create a world that is sustainable and secure. This is a great opportunity for you to play a pivotal role in helping to shape our client’s transformation journeys.

What you’ll be doing:

• You will use your background in Identity and Access Management, and Privileged Access Management to support our clients by:

• Working within agreed timelines on the design & implementation phases to identify and unpack IDAM requirements, evaluate client IDAM solutions, define IDAM designs, support integration, configuration and testing of IDAM solutions and platforms.
• Leveraging core competence and industry standards, frameworks and good practices to review, enable, validate or define client IDAM outcomes.

Identify:

• Client needs and drivers for IDAM & PAM technology adoption
• Technical Security requirements, functional & non-functional
• Gaps, issues and failings in client Security designs and configurations.

Define:

• IDAM & PAM designs (High Level & Low Level)
• User Profiles, Use Cases & IDAM/PAM processes
• Work with other teams to agree Implementation plans and effort
• Appropriate metrics, and processes to achieve client objectives and targets.

Enact:

• The setup of test, development and production IDAM & PAM environments
• IDAM & PAM technology implementation & configurations
• Robust practices for the protection of Client systems

Oversee, evaluate, and support:

• Discovery and audits, for the extraction of findings
• Documentation, validation, assessment, and authorisation
• GRC consultants, Service & Solution architects in the securing of products/services.

Technologies:

• Microsoft AD, Key Vault, Entra
• AWS IAM
• Google Cloud Identify
• Okta
• SailPoint
• CyberArk
• AuthO
• Ping Identity

Strong working knowledge of design, build and operation, for four or more of the following:

• IDAM Policy Management
• IDAM fraud & risk management
• IDAM Vendor & Industry-Related Assessment
• IDAM Health Checks
• CIAM (B2B, B2B2C/E/B) design & build
• CIAM (B2C, G2C) design & build
• IDAM Applications Onboarding
• IDAM / PAM processes enhancements, inc JML
• IDAM custom rules / interface creation
• Identity Lifecycle Management & Provisioning
• Identity & Access Governance, Certification/Recertification
• Role, Entitlement Management, SOD
• Privileged Account Management, Privilege Password Management
• Access Management, Single Sign-On & Federation
• Access review process customisations, inc. exclusion, pre-delegation and active period rules.
• Risk-based & Multi-Factor Authentication
• Vault / Key / Password Management

What experience you’ll bring:

• Experience with at least one of the following development environments/languages: J2EE, Python, Java, C/C++, .NET, C# or PL/SQL
• Knowledge of operating systems (UNIX/Linux and Solaris, Windows) and of database management systems (Oracle, SQL Server, etc.)
• Experience of design & solution build, deployment and ongoing management of process
• Support System Integration Testing, User Acceptance Testing, Production Rollout
• Applied knowledge of concepts and principles of Secure by Design and Zero Trust
• Willingness to learn new Security skills and build experience from working in different security domains, with evidence of continued personal growth attaining necessary further Security qualifications and learning
• Ability to operate in demanding situations whilst still having relentless drive to deliver with enthusiasm
• Work within a wide range of styles, having ability to build good working relationships with delivery teams and stakeholders
• Hold relevant and recognised professional Security / Risk / Compliance &/or Security Technology certifications supporting the role
• We also work within Public Sector clients where UK Gov. Defence Vetting to such as SC is required, as such you hold or be eligible to hold UK Gov vetting.