Sr. Cyber Security Operations Analyst - IAM

When you work with the world's most innovative companies, you know you're making a difference.

Our clients are the game changers, leaders and investors who fuel the global innovation economy. They're the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work.

They come to SVB for our expertise, deep network and nearly forty years of experience in the industries we serve, and to partner with diverse teams of passionate, enterprising SVBers, dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.

Join us at SVB and be part of bringing our clients' world-changing ideas to life. At SVB, we have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities SVB serves. We pride ourselves in having both a diverse client roster and an equally diverse and inclusive organization. And we work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.

Job Description:

The Identity and Access Management (IAM) Program supports end-to-end access management for all employees, contractors and the systems and applications to which access is granted. This position resides within the Cyber Security organization supporting the deployment, engineering and ongoing maintenance of the tools and the systems they utilize to keep the IAM program moving forward. This will be an individual contributor role reporting directly to the IAM Program Manager.

Once here you will-

• Performs installation, configuration, implementation and troubleshooting of IAM services.
• Documents IAM runbook, playbooks, and administration tasks as appropriate.
• Interfaces with Application, IT, Infrastructure and Support teams for application integration and runtime issues to the IAM platform.
• Delegates IAM tasks and support to Tier-1 and Tier-2 as appropriate.
• Handles production change management per SVB policies.
• Provides primary Level 3 support on IAM issues.

What you will bring

The ideal candidate will have a background with engineering and administration of the technologies listed below as well as be someone who is driven and can work under pressure to support quick turn-arounds on deliverables. It is expected as a principal engineer, that the candidate will be able to lead projects, be a key resource for incident escalation and drive new technologies. The candidate must have good soft skills to work across multiple teams and domains.

Technology Skills:

• 6+ years’ experience supporting mission critical systems within an IT Engineering and Operations environment.
• 4+ years’ experience working with IAM tools (SailPoint IdentityIQ, PingFederate and RSA) in a regulated environment.
• 4+ years’ solid working experience with AD infrastructure tools
• 4+ years’ building or supporting Microsoft Windows Servers 2016/2019
• 4+ year’s building or supporting Linux Application Appliances/Servers
• Experience with Database Administration (Oracle, MSSQL).

• SailPoint IdentityIQ
  • Troubleshoot and resolve technical problems reported by end user or application team.
  • Document problem solutions in the company knowledge base.
  • Provide technical support to SailPoint and field personnel via multiple channels, including telephone, email, Microsoft team meetings, and ticketing system.
  • Lead the incident call with diverse stakeholder.
  • Apply and test fixes in Non-Prod, and Production environment.
  • Deep understanding of Joiner, Mover, and Leaver’s process
  • Hands-on experience on IAM reporting with SQL server as back end.
  • Experience with XML, SQL and a J2EE / Java EE 5 Application Server such as Tomcat
  • Understanding such as Identity Cubes, Connectors, Roles, Policies, and Access Certifications.
  •  Experience in Access Request and Approval Workflows
  • Experience in configuring Application, Rules, Workflows, custom tasks and connectors.

• PingFederate Single Sign-On (SSO) administration
  • Version Upgrades
  • Security Vulnerabilities patching
  • Application Integration IDP/SP Initiated Auth Workflows – Using varies protocols SAML 2.0, OAuth 2.0, OIDC
  • Creating and Managing Auth-Policy Tree
  • Creating and Managing Authentication Adapters
  • Able to construct complex OGNL expressions.
  • SSL Management for Admin UI and SP Connections
• RSA Authentication Manager
  • Version Upgrades
  • Security Vulnerabilities patching
  • End User Role Management
  • SSL Management for RSA Authentication Manager Security Console
• RSA SecurID Cloud
  • Trouble shoot end user MFA registration issues.
• Splunk
  • Understand how create queries and alerts.
• Develop PowerShell scripts to automate manual functions or to perform queries.
• Active Directory/LDAP administration and support
• Expertise with MFA authentication mechanisms (e.g.,RSA, PingID)
• ITIL familiarity or certification highly desired
• IT Security or IT Operations experience within a Financial Services industry highly preferred

© 2023 SVB Financial Group. All rights reserved. SVB, SVB FINANCIAL GROUP, SILICON VALLEY BANK, MAKE NEXT HAPPEN NOW and the chevron device are trademarks of SVB Financial Group, used under license. Silicon Valley Bank is a member of the FDIC and the Federal Reserve System. Silicon Valley Bank is the California bank subsidiary of SVB Financial Group.

Equal Employment Opportunity

Silicon Valley Bank is an equal opportunity employer and is dedicated to expanding its commitments and investments to create a more diverse, equitable and inclusive company culture and innovation ecosystem. We are strongly committed to the values and policy of equal employment opportunity across our employment practices.