Senior RACF Engineer

Job Description

Level 4]

We are a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. We advise, originate, manage and distribute capital for governments, institutions, and individuals. As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence, and strong team ethic. We provide you a superior foundation for building a professional career where you can learn, achieve, and grow.

Enterprise Technology & Services (ETS) delivers shared technology services for the Firm supporting all business applications and end users. ETS provides capabilities for all stages of the firm’s software development lifecycle, enabling productive coding, functional and integration testing, application releases, and ongoing monitoring and support for over 3,000 production applications.

ETS also delivers all workplace technologies (desktop, mobile, voice, video, productivity, intranet/internet) in integrated configurations that boost the personal productivity of our employees. Application and end user services are delivered on a scalable, secure, and reliable infrastructure composed of seamlessly integrated datacenter, network, compute, cloud, storage, and database services.

The Role:
This role is for a senior RACF engineer who will assist with design and execution of projects aligned with the RACF security function. The ideal candidate should have advanced knowledge of RACF, ZSecure, and Mainframe infrastructure as they will be working closely with the other infrastructure teams (CICS, Systems Programming, Db2, etc.) and business supporting technologists. They should have strong analytical, organizational and communication skills. In addition to providing security guidance to our users while engineering solutions, they will also be responsible for coaching RACF team members. Periodic on-call support and maintenance outside of normal working hours as needed to support and resolve security issues.

Duties and responsibilities will include but are not limited to the following:
– Assist the Security Architecture and RACF engineering and policy teams and their books of work to develop technical solutions to business problems based upon security best practices.
– RACF engineering support of MS Mainframe Security products and initiatives
– Designing and assessing technical feasibility of proposals to achieve the Security initiatives of the Firm.
– Design / support Firm’s mainframe initiatives related to authentication (such as Kerberos, Digital Certificates, encryption, MFA), authorization (such as role-based security, privileged access, sensitive data protection, etc.), automation (tooling, reports, utilities, and batch)
– Interact with infrastructure technology teams (such as Systems Programming, DBA, CICS/MQ Support), application technology teams, business users, and audit.
– Monitor and analyze key performance indicators and establish processes and methodologies for preventative actions.
– Participate in an on-call rotation and address questions/issues.

Qualifications Required
– Senior level: 10+ years related work experience as a RACF Engineer or Administrator
– Advanced experience with IBM RACF and IBM-ZSecure configuration/ internals (engineering focus)
– Ability to program in JCL, REXX and CarLa
– Experience with z/OS utilities and facilities (such as: TSO, ISPF, SDSF)Experience with database technology (such as: Sybase, DB2, SQL)
– Experience with and knowledge of common aspects of zOS installations (System Programming, Storage, Networks, Unix Services, CICS, DB2, Performance, Tooling)
– Capable of working independently with limited oversight
– Capable of project planning, organization, time management skills and ability to multi-task
– MS Office business application experience (Excel, Word, Access, Power Point)
– Excellent verbal and written communication skills
– Must be a team player and foster a team first environment and inclusive culture

Desired:
– Experience with CA/Broadcom Top Secret Security
– Experience with distributed technology (such as: UNIX, USS file systems)
– Prior experience with Systems Programming, Mainframe Network engineering, Middleware (such as: MQ Series, etc.)
– Knowledge of PERL, shell scripting, OpenSSL, SSH