This site uses cookies. To find out more, see our Cookies Policy

Information Security Identity and Access Management (IAM) Engineer in Detroit, MI at AF Group

Date Posted: 9/28/2018

Job Snapshot

Job Description


The successful candidate will join our team of IT Security professionals responsible for the implementation and delivery of Identity and Access Management (IAM) projects. The role will be responsible for the support and operations of IAM tools and will assist application teams with development and integration of role-based management and the implementation and operation of IAM tools.


  • Provide Subject Matter Expertise (SME) for ForgeRock IAM and other IAM Tools. The SME is looked to for IAM expertise by business users and technologist within IT and IT Security
  • Strong knowledge of modern Identity Management protocols and standards, frameworks, federation technologies and solutions
  • A good understanding of security principles, security models and change management is required.
  • The hired SME will manage a suite of ForgeRock IAM products and services used within the firm to secure: identity and access to resources, sensitive data, applications and services
  • Work closely with customers across and external to the firm using or looking to adopt these tools and/or services. Support IAM becoming a product differentiator by providing best in class support and functionality
  • Guide project teams with the implementations consistent with company policies and practices
  • Interpret business requirements and functional specifications to recommend security requirements and sustain alignment with company policy's and standards
  • Write policy and standards as needed to sustain company compliance with regulatory changes
  • Work with development and QA teams to ensure the use of secure coding practices and verification methods
  • Support the development of product roadmaps and align efforts to meet security goals
  • Drive product adoption within the firm and for our clients
  • Maximize product value by guiding priority customer demand delivery
  • Operate the Identity and Access Management (ForgeRock)
  • Inform budgets and assist engineering and operations in resource planning
  • Develop engagement with architecture teams to align roadmaps with target state architecture
  • Conduct application security testing and source code auditing for a variety of technologies and code-types
  • Provide detailed risk and remediation guidelines, as well as perform remediation activities where applicable
  • Excellent written and verbal communication skills
  • Communicate technical application security concepts to customer staff, including developers, architects, and managers
  • Collaborating with Product Management and Engineering to enhance products
  • Mitigate security risks associated with projects, which have a high technical complexity and/or involve significant challenges to the business
  • Ensure new system builds entail appropriate security packages, tools, logging and monitoring applications are configured properly
  • Review healthcare-related information system technical controls for adherence to CMS (Centers for Medicare and Medicaid Services), HIPAA-HITECH, HITRUST, and ISO 27002 security requirements

This position description identifies the responsibilities and tasks typically associated with the performance of the position. Other relevant essential functions may be required.