Description

The IAM Mainframe Engineer - Principal is accountable for delivery and implementation of RACF Security technologies, standards, and processes across the bank.

Duties & Responsibilities:

• Deliver business value by delivering and sustaining Identity and Access Management capabilities

• Participate in the day-to-day operations and maintenance of the RACF security engineering team and associated systems.

• Responsible for developing and maintaining cyber security solutions.

• Consult with IAM architects, Enterprise Architects, and Application Architects to refine work needed to implement mainframe technologies in alignment with established designs and patterns.

• Assist with vendor relationships and any evaluation or recommendations related to new vendors and technologies.

• Provide leadership and guidance to a team of Mainframe Engineers

• Foster a culture of continuous learning, skill development, and collaboration within the Role Engineering team.

• Lead the response to RACF-related security incidents and implementing any necessary corrective actions.

• Work with Portfolio Manager to deliver IAM and RACF program strategy, roadmap, objectives, and key milestones to provide business value and sustain identity and access management capabilities.

• Other duties as assigned.

Basic Qualifications:

• Bachelor’s degree

• 6+ years as a RACF Administrator

• 6+ years of experience gathering requirements and demonstrating successful delivery of RACF security and mainframe technologies.

• 8+ years of production support and design of Cyber Security technologies

• 6+ years of experience in Information Security or in management of a cross functional department

• 8+ years of operational experience with security technologies

• 8+ years of implementing or utilizing technology lifecycles and best practices.

• 3+ years of experience delivering and sustaining cloud IAM lifecycle holistically throughout the enterprise including in AWS, Azure, and GCP.

• 3+ years of experience administering IAM, access controls, security, and risk management, as well as a security governance framework at scale.

Preferred Qualifications:

• Native RACF experience

• 6+ years of experience of implementing zSecure capabilities, including zAlert

• Experience with SIEM (SPLUNK) products for implementing reports and dashboards to support a Mainframe Governance program

• Experience with building out RACF reports in zSecure to support database authenticity

• Experience with onboarding and decommissioning applications into RACF structures.

• Experience in IDAM solutions both on-premises and in the cloud.

• Experience administering IDAM systems, access controls, security and risk management, as well as a security governance framework at scale.

• Experience and understanding of various regulatory requirements and laws such as, but not limited to, Payment Card Industry (PCI), Federal Financial Institutions Examination Council (FFIEC), Sarbanes-Oxley (SOX), Health Information Portability and Accountability Act (HIPAA), General Data Protection Regulation (GDPR) and Gramm-Leach-Bliley Act (GLBA). Additionally, experience in one or more of the following is required: ISO 17799, ITIL or NIST.

• Extensive knowledge of SSO, MFA, Active Directory (AD), public key infrastructure (PKI), privileged accounts and integration application program interface (API) capabilities.

• Track record acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively

• Expert level knowledge of operating systems, e.g. Windows, Linux, & Unix

• Excellent customer facing communication skills (both written and verbal)

• Ability to research, evaluate, and devise course of action for security hardware/software and tools to make overall impact on the enterprise’s existing security environment

• Experience with both Agile and Waterfall working methods.

• Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.

• Extensive knowledge of Active Directory (AD) and LDAP Directories (e.g., Oracle Directory, Novell/NetIQ eDirectory)

  Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)

Yes

Workplace Type:

Huntington is an equal opportunity and affirmative action employer and is committed to providing equal employment opportunities for all regardless of race, color, religion, sex, national origin, age, disability, sexual orientation, veteran status, gender identity and expression, genetic information, or any other basis protected by local, state, or federal law.

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Agency Statement: Huntington does not accept solicitation from Third Party Recruiters for any position