Job Description

Siteminder

Provide L3-level support for CA SiteMinder infrastructure, including policy servers, Web Agents, and Admin UI.
  •  Troubleshoot complex issues involving authentication, authorization, federation, and SSO.
  •  Perform root cause analysis and long-term solutions for recurring incidents.
  •  Maintain and enhance CA SiteMinder policies, realms, rules, agent configurations, and custom authentication schemes.
  •  Collaborate with application teams to onboard new applications into SiteMinder using standard integration patterns (e.g., Web Agent, SDK, headers-based authentication).
  •  Implement changes and upgrades in a controlled and compliant manner, following ITIL processes.
  •  Monitor system health and performance; automate alerts and log analysis where feasible.
  •  Work with other IAM components (LDAP, AD, MFA, SAML, OIDC) to provide holistic identity support.
  •  Participate in on-call rotation and provide support during major incidents.
  •  Ensure compliance with security policies, standards, and audit requirements.



Required Skills & Experience:

  •  6+ years of experience with CA SiteMinder / Broadcom SSO (Policy Server, Web Agent, Admin UI).
  •  Strong troubleshooting expertise in complex Web SSO environments.
  •  Hands-on experience with custom authentication/authorization schemes.
  •  Good understanding of SAML, OAuth, OpenID Connect, and LDAP directories.
  •  Experience in working with HTTP headers, reverse proxies, and load balancers.
  •  Strong scripting skills (e.g., Shell, Python, PowerShell) for automation and debugging.
  •  Proficiency in log analysis and using tools like Splunk, ELK, or native logs.
  •  Knowledge of TLS/SSL, certificates, and secure web communications.
  •  Ability to review and implement application onboarding use cases with SiteMinder.



Preferred Qualifications:
  •  Experience with integration of SiteMinder with MFA solutions (e.g., Duo, RSA, Okta).
  •  Familiarity with DevOps tools and CI/CD practices for IAM.
  •  Knowledge of other IAM platforms such as Okta, ForgeRock, or Ping is a plus.
  •  Previous experience in large-scale enterprise environments (financial, healthcare, etc.).
  •  ITIL Foundation or equivalent process understanding.
  •  Provide L3-level support for CA SiteMinder infrastructure, including policy servers, Web Agents, and Admin UI.
  •  Troubleshoot complex issues involving authentication, authorization, federation, and SSO.
  •  Perform root cause analysis and long-term solutions for recurring incidents.
  •  Maintain and enhance CA SiteMinder policies, realms, rules, agent configurations, and custom authentication schemes.
  •  Collaborate with application teams to onboard new applications into SiteMinder using standard integration patterns (e.g., Web Agent, SDK, headers-based authentication).
  •  Implement changes and upgrades in a controlled and compliant manner, following ITIL processes.
  •  Monitor system health and performance; automate alerts and log analysis where feasible.
  •  Work with other IAM components (LDAP, AD, MFA, SAML, OIDC) to provide holistic identity support.
  •  Participate in on-call rotation and provide support during major incidents.
  •  Ensure compliance with security policies, standards, and audit requirements.

͏

Do

• Ensuring customer centricity by providing apt cybersecurity 

• Monitoring and safeguarding the log sources and security access
• Planning for disaster recovery in the event of any security breaches
• Monitor for attacks, intrusions and unusual, unauthorized or illegal activity
• Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems
• Conduct security assessments, risk analysis and root cause analysis of security incidents
• Handling incidents escalated by the L1 team in 24x7 rotational shifts
• Use advanced analytics tools to determine emerging threat patterns and vulnerabilities
• Completing all tactical security operations tasks associated with this engagement.
• Analyses all the attacks and come up with remedial attack analysis
• Conduct detailed analysis of incidents and create reports and dashboards

• Stakeholder coordination & audit assistance

• Liaise with stakeholders in relation to cyber security issues and provide future recommendations
• Maintain an information security risk register and assist with internal and external audits relating to information security
• Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues
• Advice and guidance to employees on issues such as spam and unwanted or malicious emails

͏

Deliver

͏

͏