Sample Job Description - VO identity architect
Identity management is a complex and fascinating problem within any organization. For virtual organizations that exist beyond the traditional boundaries of a single institution, the problem becomes even more challenging. Platforms like COmanage, a collaboration management platform (CMP) being developed by the Internet2 Middleware Initiative under an NSF grant, play a major role in helping a VO manage this complexity.
[Note on VO, its goals and mission, here]
This position will provide hands-on guidance and support for the identity management needs of a virtual organization. Work will include assisting in the implementation of a COmanage instance, integrating appropriate domain applications in to this collaboration management platform, and providing technical support to users of the COmanage instance. The ideal candidate brings strong project management and coordination skills to the table along with their technical abilities to support and enhance a variety of applications. This is an opportunity to be on the leading edge of collaboration development and gain exposure to a variety of tools and research groups working around the world.
The successful candidate will provide advanced technical expertise on the systems design, be primarily responsible for implementation, and be expected to solve complex operational problems with the identity management infrastructure. Software developed by the successful candidate will be written as open source software, in a supportable fashion using published standards. The Identity Management Architect is expected to keep up-to-date with trends and new developments in the identity management industry and relevant open source communities, and to be in touch with peers at other higher education institutions.
Responsibilities include:
- Install and adapt a COmanage CMP instance
- Design and implement IdM workflows and management rules appropriate for the VO
- Establish a sensible group structure
- Assist in the work of scientists and developers to externalize authentication and group management (aka, domesticate) domain science applications to work in a CMP
- Write and maintain documentation for the ongoing operation of the service
QUALIFICATIONS:
- An advanced degree in computer science or related field is recommended, or an equivalent level of training, knowledge, and experience is required.
- Five or more years of experience working in an information technology field as a programmer, systems administrator, or software architect
- Strong written and verbal skills
- Self-motivated and able to work effectively in a team environment
- Highly effective interpersonal skills
- Strong Problem-solving and analytical skills; the ability to approach complex problems logically and systematically
REQUIRED SKILLS:
- Programming and software design skills, including experience with Perl, Java, C, C++, Ruby, and PHP. Demonstrated expertise is required in Java, including familiarity with the Spring framework is required.
- Demonstrated expertise developing multi-tier web-based applications.
- Demonstrated experience designing and maintaining database back-ends, including strong SQL expertise. Oracle, MySQL, or Postgres expertise preferred.
- Demonstrated expertise working effectively in a shared software development environment, including version control, bug tracking, release management, and code review.
- A strong understanding of the needs particular to research institutions and grant-funded organizations strongly preferred
BONUS SKILLS:
- Experience with key Middleware tools such as Grouper and Shibboleth
- LDAP
- Experience deploying and managing various authentication technologies (CAS, Shibboleth, OpenID/OAuth)
- Experience working in a federated environment with associated languabes (SAML, SPML)
- Experience with web portals and OpenSocial frameworks
- Experience managing a PKI environment
- Experience with UNIX or Linux system administration strongly preferred