Systems Architect (OAM Federation, SAML, IDPs, AD, OAM, SSO, OAA, ORAM, Open ID) - MVP Consulting

HBITS-06-13693

Core Responsibilities and Essential Duties:

Research and Analysis:

• Work with CUNY colleges' IT and application teams to inventory and assess current AD-integrated applications.
• Analyze application use cases and document the authentication mechanisms in use.
• Design a migration plan for each application and integration using AD to shift authentication mechanisms to OAM Federation, including SAML or other federated services.
• Collaborate with application vendors and owners to define detailed requirements for migration.
• Ensure that best practices are applied in shifting from AD-based authentication to federated Identity Providers (IDPs).
• Configure and migrate selected applications from on-premises Active Directory authentication to Oracle Access Manager Federation services.
• Thoroughly test the application migrations in a test environment before production deployment.
• Troubleshoot any issues arising during migration, including federation (SAML) issues and cross-platform authentication challenges.
• Document all migration procedures, challenges, and resolutions.
• Provide knowledge transfer to CUNY staff through detailed documentation and live demonstrations.
• Work closely with CUNY's teams, including networking, application, and support teams, to troubleshoot issues and ensure smooth integration.

Essential Duties:
Key responsibilities include, but are not limited to:

• Work with vendors and application owners (At colleges) to define the requirements for each application for SSO integrations using OAM Federation Services such as SAML.
• Setup and configure applications in the test environments. Prepare the OAM environment to test various use cases based on the requirements and discussions with various stakeholders.
• Integrate SAML applications in production OAM and Thoroughly test the applications' integrations in end-to-end flow.
• Work with vendors and application owners to confirm applications are functioning as expected.
• Thoroughly document all details and tasks involved with various integrations, developing solutions in OAM.
• Work closely with application teams on integrating various flavors of applications for SSO. Should be able to independently troubleshoot and fix issues related to Application integrations and/or product related issues.
• Configure and customize SSO solution in high availability mode using Oracle Access Management to implement various features such as Federation/SAML, OAuth, Open ID Connect, Multi-Factor Authentication besides current solution setup only for Header Based application integrations.
• Maintain the OAM/SSO environments with regular patching.
• Configure to leverage API usage in all Oracle IAM components for various use cases.
• Configure to leverage API usage in all Oracle IAM components including Oracle Microservices
• Oracle Advanced Authentication (OAA) and Oracle Adaptive Risk Management (OARM) for various use cases.
• Work closely with other teams to identify and solve issues.
• Other duties as assigned.

Systems Architect
Defines the architecture of a computerized system (i.e., a system composed of software and hardware) in order to fulfill certain requirement, including a breakdown of the system into components, the component interactions and interfaces (including with the environment, especially the user), and the technologies and resources to be used in the design.

Expert 84+ months: Candidate is able to provide guidance to large teams and/or has extensive industry experience and is considered at the top of his/her field.

1. 84 months of experience with Active Directory Authentication and Identity Management solutions.
2. 84 months experience migrating applications from Active Directory to federated services like OAM Federation.
3. 84 months experience in troubleshooting and debugging skills for identity-related integration issues
4. 84 months experience in working with authentication protocols: SAML, OAuth, and OpenID Connect
5. 84 months experience in collaborating with cross-functional teams including network, application, and Oracle support teams.