EMPLOYMENT TYPE: Ongoing Full timeLOCATION: ACT (possibility of remote working arrangements)AFP BAND & SALARY: Band 07 ($113,563.00 - $121,628.00)JOB REFERENCE NUMBER: 13733This advertisement is to fill current vacancies and create a merit pool for future ongoing or non-ongoing vacancies arising over the next 12 months.What is the role?The AFP's Unified Identity Project has delivered the SailPoint Identity Governance and Administration platform as part of its Identity and Access Management strategy. The roles provide a unique opportunity to help build on the delivered IAM Solution for the AFP to enhance and strengthen its network security.We are looking for talented people to contribute to strengthening the security of the AFP's networks and cyber resilience.Applications are sought from suitably experienced and qualified individuals wishing to be considered for the role of Identity & Access Management (IAM) Practitioner.The successful applicants will provide ongoing daily support of the current service capability supporting various business units within the AFP responsible for the onboarding and offboarding of personnel through troubleshooting processes and related systems' issues and remediation of identity inconsistencies.As a seasoned IAM practitioner, you will focus on continuous service improvement and expanding the services and functionality of the SailPoint platform through enhancing user experience, managing risk and compliance, and improving automation and efficiencies.You will serve as a trusted adviser to business stakeholders and understand their core business processes and priorities which can be enhanced using IAM platforms.Due to the nature of IAM, the role is multidisciplinary requiring experience in general systems administration such as Active Directory and Linux, automation technologies such as typical middleware Extract Transform Load, scripting such as Bash, PowerShell, Python or Javascript and software development practices utilising version control systems such as git or subversion, program/code design/structure and best practices, and the software development lifecycle.If you have a natural curiosity, enjoy solving challenging automation tasks and are keen to learn, then this job is for you.You will be supported by an energetic and engaged management team to drive the capabilities of the platform forward to meet the challenges of today's Cyber threats.What will you do?Provide daily support and management of the Identity Management lifecycle services.Analyse and rectify any operational issues to ensure onboarding workflows are complete to avoid delays for onboarding new starters.Engage with business units within the AFP to improve identity management provisioning and offboarding services for AFPs ICT systems.Analyse and continually improve Identity and Administration workflows and services.Work with leading IAM products and technologies from SailPoint, Microsoft, CyberArk, etc to manage access entitlements between diverse systems and environments.Enhance, extend and improve the SailPoint platform capability through the continuous improvement development lifecycle and Agile processes.Collaborate and assist the team to assess, design and implement sustainable solutions, operating processes and people models to address key and evolving risks in the field of identity governance and access management.Analyse processes, documentation, and workflows to identify any gaps and prioritize process improvements based on current risk of components, whilst adding professional insight.Provide IAM advisory, solution architecture, and consulting to internal projects of varying size including Privileged Access Management, Single Sign On (SSO) and IAM governance.Assist in alignment of overall security governance as it relates to IAM.Essential Requirements:Due to the nature of IAM the role is multidisciplinary requiring experience in general systems administration such as Active Directory and Linux, automation technologies such as typical middleware Extract Transform Load, scripting such as Bash, PowerShell, Python or Javascript and software development practices utilising version control systems such as git or subversion, program/code design/structure and best practices, and the software development lifecycle.You must be an Australian Citizen at the time of application.A Negative Vetting 1 (Secret) security clearance or the ability to obtain one.Have contemporary knowledge and experience relevant to IAM practices.You have experience developing reasonably complex automation solutions using scripting or programming languages such as Powershell, Bash, Python, Perl, Ruby, Java, Javascript, C#.You are comfortable with programming in Java and JavaScript.You are familiar with security concepts and technologies in the wider Identity and Access management space (Logical Access Controls, LDAP and RBAC, ABAC, Authentication solutions, PKI concepts, etc.).Desirable Requirements:The following skills and/or experience will be highly regarded:Experience in the Java programming language – while not essential, you should show experience in a related language such as C# or object-oriented language or evidence of experience in programming with the understanding that Java is the core language of the SailPoint system.Working knowledge of SailPoint, CyberArk, Azure AD are considered a plus.Information security certifications (such as CISSP, CSSLP, CEH/CPT or related certifications) are desirable.You will be a hands-on and pragmatic problem solver with experience in delivering solutions across an organisation.Relevant qualification or extensive experience and knowledge in a like or related field such as Active Directory or Linux Systems Administration, Automation Engineer, experience in one or more programming or scripting languages, SQL or Data Extract Transform Load and data processing.Additional Information:This position has been advertised in multiple locations however, the role is located in Canberra, ACT. Remote working options are on offer to the right candidate.Selection Criteria:Achieve resultsCommunicates with influenceContributes to strategic thinkingCultivates productive working relationshipsShows personal drive and integrityTechnical knowledge and skillsApplication:Please submit the following documents via our Jobs portal prior to the closing date and time:Resume/CV - This will form the basis for determining your suitability against the position requirements and give the panel a clear outline of your current knowledge and qualifications along with previous experiences.Applicant pitch (maximum two pages). Ensure your pitch tells us why you are the best fit for the role, with examples that demonstrate your capabilities addressing the selection criteria, role requirements and work level standards for the role.Only complete applications will be considered. Please review and ensure the uploaded documents are correct for this application after submitting your application.Employment Suitability:Should you successfully progress from the application stage all applicants must:Complete an Employment Suitability Questionnaire (ESQ) and provide a traffic history check and proof of Australian citizenship.Have your fingerprints taken if an offer of employment is made.Undertake mandatory drug testing for illicit drugs.Proof of a minimum of two COVID-19 vaccinations (or one dose if the Janssen vaccine was used) will be required if an offer of employment is made.Satisfactorily undertake a security clearance to the level specified for the position.Recruitment Process:Applicants who have demonstrated their suitability for employment through their resume and application may be invited to a formal interview. Using the relevant AFP work level standards as a guide, you may be asked a range of questions to demonstrate your skills and abilities.Commitment to Diversity & Inclusion:At the AFP we value the different perspectives, approaches and lived experiences of our people, and recognise that our collective intelligence and diversity is what makes us stronger. As such, we encourage applications from people from all walks of life, including people from culturally and linguistically diverse backgrounds, First Nations people, women, the LGBTQI community and people with a disability.Contacts and Closing Information:Contact Officer - Peter Lavender,Contact Officer Phone: 0497 636 359,Contact Officer Email: ****** Close: 11:59pm (AEDT) 04/11/2024To view other employment opportunities, please visit our career site:www.afp.gov.au
#J-18808-Ljbffr