Security Engineer

Role: Security engineer/ IAM engineer

Location: Plano, Texas

Note: Candidates should be able to go for an onsite interview in Vanguard office in Plano, Charlotte, Malvern or Phoenix. Only 1 interview!

Job Description:

Responsibilities:

LDAP Directory Engineering:

• Design, deploy, and maintain LDAP directory infrastructure (e.g., OpenLDAP, PingDirectory, Active Directory or other directory systems).
• Configure directory schemas, manage directory trees, and enforce robust access control policies.
• Monitor directory performance, troubleshoot issues, and apply necessary upgrades or patches.
• Implement replication, synchronization, and high-availability solutions to ensure directory service resilience.

Integration and Identity Management:

• Integrate LDAP services with authentication platforms (e.g., SSO, MFA, IAM solutions).
• Collaborate with application teams to optimize directory queries and application access.
• Support identity federation and secure authentication mechanisms.

DevOps & Automation:

• Automate deployments and updates using tools like Ansible, Terraform, Puppet).
• Build and maintain CI/CD pipelines for directory provisioning and updates.
• Monitor infrastructure using Prometheus, Grafana or Splunk.
• Implement cloud-native solutions to enhance directory services scalability and resilience.

Java Integration & Development:

• Develop Java applications to test and validate LDAP and JDBC connections.
• Build custom LDAP adapters and connectors using Java for integration with databases like PostgreSQL.
• Use Java-based APIs (e.g., JNDI) to interface with LDAP directories.

Security and Compliance:

• Apply DevSecOps principles to safeguard directories.
• Perform/conduct audits and ensure and maintain compliance with regulatory standards (e.g., GDPR, HIPAA).
• Implement directory backup, disaster recovery, and incident response mechanisms.

Collaboration and Documentation:

• Act as SME for LDAP technologies and best practices
• Provide documentation, training, and knowledge sharing
• Lead cross-functional initiatives and mentor junior engineers.

Qualifications

Technical Skills

• Expertise in LDAP systems (OpenLDAP, Active Directory, Oracle Directory Server)
• Proficiency in scripting (Python, Bash, PowerShell)
• Experience with CI/CD tools (Jenkins, GitLab, Azure DevOps)
• Familiarity with cloud platforms (AWS, Azure, GCP) and container orchestration (Kubernetes, Docker)

Soft Skills

• Strong analytical and problem-solving abilities.
• Excellent communication and stakeholder engagement.
• Ability to lead projects and work independently