Security Solution Architect

# 108899

SECURITY SOLUTION ARCHITECT

Start: 15.02.2016

End: 31.07.2016

extension possible

Place: Den Haag, Netherlands

API SECURITY DESIGN

- Formalize the security requirements for the various use cases mentioned below and taking into account dependencies with ongoing initiatives such as:

o Definition of an IAM approach by the CIO Office security team

o Selection of an API Management Platform

o Introduction of a Case Management System based on BeInformed Technology, including a rules engine, requiring fine-grained access control based on the role an individual user has in a specific case

- Design security architectures covering the use cases according to industry standards and best practices. Design decisions and their rational will be documented. The designs will cover authentication as well as coarse and fine-grained authorization and logging.
- Validate the security architectures through a proof of concept demonstrating how the architecture meets the security requirements in the various use cases
- Provide guidelines and reusable patterns supporting the current state as well as the future state including the implementation of an IAM system, an APO management platform and an implemented Case Management system
- Provide a roadmap describing the transition from the current state to the future state

PROFILE:

- Minimum 5 years of experience in design of secure webAPIs
- Expert knowledge of federation technologies and protocols including

o Active Directory, Active Directory federation services

o oAuth, SAML

- Expert knowledge of authentication standards such as Kerberos, SPNEGO
- Deep understanding of authorization mechanisms supporting fine- and coarse-grained authorization and externalization of authorization from business applications
- Profound knowledge and understanding of security architecture with at least 7+ years in application security
- Expert knowledge of J2EE technologies
- Expert knowledge of REST architectural constraints and development of Restful web services
- Experience with externalizing authorization from Java applications through authorization engines and/or business rules engines
- Very good level of English (oral and written)
- German and French will be appreciated

Michael Bailey International is acting as an Employment Business in relation to this vacancy.