SSO L3 Specialist

Description de l'entreprise 

Wepoint est l’architecte des grandes transformations des entreprises et des acteurs publics. 

Nous accompagnons nos clients de la stratégie à la mise en œuvre technologique, en nous attachant toujours à penser au-delà des évidences et à s’inscrire dans des logiques de Responsabilité Économique, Sociale, Environnementale et Technologique (RESET), pour créer de nouvelles façons de travailler, de nouveaux modèles économiques et de nouveaux lieux intelligents. 

En près de 20 ans, nous sommes devenus l’un des acteurs majeurs de la transformation numérique et employons 3 500 collaborateurs en Europe, en Tunisie et en Amérique du Nord ainsi qu’en Asie Pacifique. 

Ce que nous recherchons 

COURAGE - AUTHENTICITÉ - OUVERTURE - ENGAGEMENT - ÉLÉGANCE 

Autant de valeurs qui rejoignent les collaborateurs de Wepoint. 

Nous travaillons avec des talents engagés, prêts à partager leurs expertises dans des collectifs ouverts, qui ont le courage de prendre des initiatives et capables de se remettre en question. 

Au cœur des relations humaines et du respect de notre environnement, chez Wepoint, se trouvent l’authenticité et la volonté de toujours tendre vers l’excellence pour nos clients.

Job description

The SSO team provides identity and access management tools as a middleware team, supporting authentication and authorization for internal and external clients.

Using standardized frameworks, the team maintains and governs access policies and deploys technologies that ensure the right entities have appropriate access to technological resources.

The successful candidate will join a multi-geographic (present in 3 regions and 6 sites) and multidisciplinary team, providing support and project delivery around SSO and Identity Management platforms, particularly in the following areas:

• Architecture;

• Project delivery;

• Platform support and maintenance;

• Incident and problem management;

• Change management;

• General

The candidate must also have a good understanding of cryptography concepts such as RSA, symmetric and asymmetric encryption, certificates, and digital signatures.

Responsibilities

General

• Work closely with other team members;

• Follow established processes and procedures;

• Request training to enhance knowledge when necessary;

• Show initiative while respecting acceptable risk levels;

• Escalate issues and seek advice when in doubt;

• Apply user-oriented principles and behaviors for positions that interact with users;

• Escalate risks and incidents to the team manager;

• Minimize operational failures, including fraud risks, by contributing to the definition and implementation of adequate controls;

• Ensure appropriate escalation to management and/or Permanent Control (or Compliance, as applicable) as soon as a problem is identified;

• Actively contribute to the operational permanent control system.

Architecture

• Provide architectural expertise to drive change and improvement in technologies and processes;

• Contribute to the development of SSO and LDAP technology roadmaps;

• Collaborate with CIB architecture teams during architecture reviews;

• Monitor emerging technologies and market trends;

• Automate processes to accelerate delivery times.

Project delivery

• Take responsibility for the delivery of key projects involving SSO and LDAP technologies;

• Work with application production support project managers to define, design, document, and implement new features;

• Collaborate with application developers on low-level technical diagnosis of incidents;

• Provide SSO and IDM expertise to business application teams;

• Act as a technology evangelist to improve authentication processes and technologies within the company.

Platform support and maintenance

• Proactively monitor, manage, and improve the availability and performance of production environments (presentation, application, and infrastructure layers);

• Proactively manage the capacity of production applications.

Incident and problem management

• Work with partner teams to analyze major and critical incidents;

• Identify tactical or strategic improvements to reduce the number of recurring incidents on SSO and LDAP perimeters.

Change management

• Work within the client's change management process to ensure that all changes in production are planned and executed in a controlled manner;

• Be responsible for the quality of changes made in SSO and IDM environments;

• Participate and share knowledge during weekly Change Control Board and Problem Management committee meetings.

Qualifications

• Bachelor's degree in computer science or equivalent;

• Minimum of 5 to 7 years of experience in IT;

• ITIL Foundation certification desired.
  

Required technical skills:

• CA Siteminder Web SSO;

• SOA security – SAML/WS-Security;

• Self-provisioning tools (BMC ControlSA, SailPoint, ForgeRock);

• LDAP;

• Kerberos/SSL-TLS/PKI/GSS-API/SPNEGO;

• OAuth2, OpenID Connect;

• IIS/WCF/WIF, WAS security models;

• Infrastructure standards (load balancers, servers, networks, storage);

• Automation-oriented approach (Ansible);

• Scripting (Python or shell);

• Application servers and web technologies: Tomcat, Apache, Nginx, IIS;

• Excellent logical analysis and problem-solving skills;

• Experience with recognized ITSM and project management tools.
  

Nice-to-have:

• Axway Security Gateway;

• SQL, database schemas;

• API authentication services;

• Apigee API Gateway;

• Process and quality management, ITIL v2/v3;

• Microsoft Project, advanced Excel, PowerPoint, Word;

• Atlassian and Jira tools;

• ServiceNow experience.

Languages:

• Excellent communication skills in French and English. English is required, as the position involves communicating with clients and partners located outside Quebec.
  

Only candidates legally authorized to work for any employer in Canada will be considered.

Avantages Wepoint:

• Minimum de 3 semaines de vacances dès la première année; 

• Assurances collectives complètes avec contribution généreuse de l'employeur; 

• Contribution employeurs au REER collectif 

• Flexibilité de télétravail complète : Hybride, Distanciel, Présentiel.  

• Un bureau chaleureux, lumineux et accueillant qui vous offre : des fruits frais, du café, des breuvages, des repas occasionnels, etc. 

• Budget de matériel informatique annuel 

• Environnement de travail équilibré et flexibilité d'horaires;  

• Évolution de carrière : Formation et certifications, Apprentissage en-ligne ou en présentiel, Academy Wepoint, etc. 

• Une communauté internationale d’experts prêts à partager leurs connaissances; 

• Une culture d’entreprise axée sur les besoins des individus et leurs appartenances à une communauté forte