Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world (as ranked by S&P Global, April 2018) with total assets of over $2.9 trillion (106.2 (JPY) as of March 30, 2018) and 150,000 colleagues in more than 50 countries. In the U.S., we're 13,000 strong, working together to positively impact every customer, organization, and community we serve. We achieve this by delivering on our values, putting people first, fostering long-term relationships built on honesty and mutual understanding, and inspiring the best in each other. This is all part of our inclusive, high-performing culture supported by Total Rewards that include our cash balance pension plan. Join a team that's working to fulfill its vision to be the world's most trusted financial group.
Your technical and engineering expertise will be critical for contributing to an IAM team for implementing and supporting the Identity & Access Management program architecture, infrastructure, capabilities, components and standards into Amazon Web Services. Specifically, you will be responsible for contributing to activities for IAM component designs, IAM service development, service integration implementation and operations of Enterprise-Wide IAM services for all company and technology partners. This position collaborates closely with IAM management, architects, engineers, and service providers.
Collaborating with the Cloud IAM Engineering Manager, you will be responsible for providing Cloud technical solution engineering and implementation, stakeholder risk management, mentorship and support, under general guidance from senior leadership and in accordance with firm wide initiatives. This is an individual contributor role that will lead implementation efforts.
You will engineer and implement AWS IAM capabilities, thoroughly testing in lower environments before checking templates in for release to higher environments
You will automate the provisioning of AWS IAM capabilities using frameworks such as AWS Develop scripts and glue code to integrate software and service components
You will design and develop automation workflows, perform tests and conduct reviews to make sure your work is designed and coded for platform performance, and assess the overall quality of delivered capabilities; craft new workflows and perform enhancements of existing ones, to enhance automation
You will pilot new cloud native IAM tools for management and automation of IAM processes
Bachelor's Degree or equivalent work experience required.
Strong knowledge with AWS and related technologies such as Lambdas and step functions, API Gateway with Identity Federation, EKS, Fargate.
Enterprise logging with AWS, CloudWatch, and CloudTrail.
Solid understanding of modern approaches to IT service-oriented architectures and applications.
Services based Integration (i.e. REST) of role-based access control, Active Directory, LDAP, Single Sign-On, End-User provisioning, identity and access governance, and identity data synchronization services with existing applications and systems.
API Gateways, Enterprise Directories, Enterprise Databases, SSO and Access Management systems, identity federation protocols (SAML), and LDAP.
2 years of development experience in designing, developing, deploying, and testing in AWS architecture
2 years of experience with Configuration Management framework
1 years working with Cloud automation
2-5 years working with scripting languages: Python preferred
Excellent experience in sharing a point of view and knowledge of current industry trends in technology, cloud, and information risk standards to improve controls across a firm.
Proven leadership skills and the ability to lead through influence is necessary
Understanding of industry standard methodologies and working knowledge of industry standards (e.g., NIST, ISO, COBIT, OWASP, ITIL)
Advanced knowledge and work experience of AWS Services including:
Hands-on experiences with CloudFormation and Lambda
Proficiency and experience with AWS developer tools and workflows (e.g., AWSCLI, CloudFormation)
A proven and solid understanding of Identity and Access Management systems architecture, hardware, operations, development, system life cycle, and information security along with investigative principles, incident response procedures, computer forensics, information security practices and effective risk management
Strong understanding of SOA or Microservices architectures, DevOps, and continuous delivery of services and applications in a hybrid computing environment.
Holding 1 or more of the following certifications is helpful, but not required AWS Certified Solutions Architect, AWS Certified Developer, AWS Certified DevOps Engineer, AWS Security Specialist
The above statements are intended to describe the general nature and level of the work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.
A conviction is not an absolute bar to employment. Factors such as the age of the offense, evidence of rehabilitation, seriousness of violation, and job relatedness are considered in all employment decisions. Additionally, it's the bank's policy to only inquire into a candidate's criminal history after an offer has been made. Federal law prohibits banks from employing individuals who have been convicted of, or received a pretrial diversion for, certain offenses.