Home Depot Cybersecurity Staff Engineer - IAM: Authentication SSO Ping and Cloud in Atlanta, Georgia
At The Home Depot, our Cybersecurity team plays a pivotal role in creating and implementing solutions to protect our associates, customers, and communities from internal and external security threats.
The Cybersecurity Identity and Access Management group partners closely with other Cybersecurity and IT resources. This group will manage, support and evolve the Home Depot solutions dedicated to the support of end-user password management, Authentication and Authorization to web, SaaS applications and APIs including multifactor/step-up authentication for all remote and privileged access in respect of the Cybersecurity strategies, processes, controls, and governance.
Let’s protect the future of retail together.
MAJOR TASKS, RESPONSIBILITIES AND KEY ACCOUNTABILITIES
20% - Strategy & Planning:Researches and analyzes business trends and behavioral data to identify opportunities for improvements and new initiatives Leads the evaluation, development, and recommendation of specific technology products and platforms to provide cost-effective solutions that meet business and technology requirements Researches and designs best fit infrastructure, network, database, and security architectures for products Proactively creates and maintains tools for monitoring and support Participates in project planning and management across multiple efforts Develops formal training courses
30% - Delivery & Execution: Leads configuration, debugging, and support for infrastructure Leads field and corporate roll-outs of technology Leads the stand up of necessary system software, hardware, and equipment (physical or virtual) to meet changing infrastructure needs Creates and optimizes specifications for technology solutions Produces and manages purchase requests for hardware and software
40% - Support & Enablement: Collaborates with product and project teams to understand needs and enable them with infrastructure Supports technology architecture design review efforts for project and product teams Leverages tooling and custom applications to monitor the operational status of applications, infrastructure, networks, databases, and security; optimizes and tunes performance as appropriate Drives root cause analysis, debugging, support, and post-mortem analysis for security incidents and service interruptions Maintains, upgrades, and supports existing systems and infrastructure to ensure operational stability Acts as a vendor liaison, owning resourcing, issue management, and documentation Leads the production of in-house documentation around solutions Monitors tools and proactively helps teams struggling with systems issues Provides application support for software running in production Creates scripts and tools that drive automation and enable product teams and end users to move towards self service Acts as a mentor to more junior Systems Engineers
10% - Learning: Keeps abreast of innovations and industry trends as well as changes to internal systems and determines how they impacts tools, training, and support necessary to keep systems up, running, and secure Participates in and contributes to learning activities around modern systems engineering core practices (communities of practice) Proactively views articles, tutorials, and videos to learn about new technologies and best practices being used within other technology organizations
NATURE AND SCOPE
Typically reports to the Systems Engineer Manager or Sr. Manager.
ENVIRONMENTAL JOB REQUIREMENTS
Located in a comfortable indoor area. Any unpleasant condition
Typically requires overnight travel less than 10% of the time.
Must be eighteen years of age or older.
Must be legally permitted to work in the United States.
Years of Relevant Work Experience: 3 years
o 6+ years plus experience with installation, integration and deployment of Ping Access and Ping Federate servers or CA SiteMinder, CA Secure Proxy Server,
o 4+ years of experience of installing, configuring and upgrading/migrating IAM components.
o 4+ years of experience with configuration of Ping Access sites, policies, access rules, OGNL expressions and groovy scripts
o 4+ years of experience with configuring Ping Federate adapters, adapter mappings and selectors and policies
o 4+ years of experience implementing reverse proxy and web filtering tools such as Apache proxy and mod-security
o 4+ years of experience with developing custom adapters/plug-ins using Ping Federate SDK and Ping Access SD
Microsoft Azure AD and/or Google cloud experience
o Experience using Java, J2EE, Java Script, PowerShell, HTML and XML
o Experience using open standards such as SAML, OAuth, OpenID Connect, LDAP and REST APIs.
o Knowledge of basic security concepts including (encryption using keys, SSL, HTTPS, identity and access management).
o Knowledge of basic web infrastructure such Apache, Tomcat & WebSphere application servers and Apache reverse proxy
o Hands-on experience with at least one Directory Server/LDAP technology will be a plus
o Experience in performance tuning and problem determination
o Hands on experience with integration, troubleshooting, log analysis, break-fix of above mentioned products and services
o Experience in performing log analysis using Splunk or other tools for troubleshooting user tickets.
o Solid experience on Linux/Unix & Windows Operating systems
o Knowledge of common network services and protocols such as TCP/IP, DNS, SSH, HTTPS, VPN
o Network topology design, performance and fault tolerance architecture experience is a plus
o Ability to work in a team oriented environment where collaboration is encouraged and valued.
- Excellent oral and written communication skills
Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. On rare occasions there may be a need to move or lift light articles. Located in a comfortable indoor area. Any unpleasant conditions would be infrequent and not objectionable.
Knowledge, Skills, Abilities and Competencies: Cultivates Innovation: Creating new and better ways for the organization to be successful
Action Oriented: Taking on new opportunities and tough challenges with a sense of urgency, high energy, and enthusiasm
Business Insight: Applying knowledge of business and the marketplace to advance the organization s goals
Collaborates: Building partnerships and working collaboratively with others to meet shared objectives
Communicates Effectively: Developing and delivering multi-mode communications that convey a clear understanding of the unique needs of different audiences
Drives Results: Consistently achieving results, even under tough circumstances
Global Perspective: Taking a broad view when approaching issues; using a global lens
Interpersonal Savvy: Relating openly and comfortably with diverse groups of people
Manages Ambiguity: Operating effectively, even when things are not certain or the way forward is not clear
Optimizes Work Processes: Knowing the most effective and efficient processes to get things done, with a focus on continuous improvement
Self-Development: Actively seeing new ways to grow and be challenged, using both formal and informal development channels
Situational Adaptability: Adapting approach and demeanor in real time to match the shifting demands of different situations
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.