Title    IT Security Analyst

Location    Harrisburg, PA

Work Arrangement Hybrid (Hybrid - 1 day onsite per week minimum)

Role Overview

This position is responsible for all aspects of information and network security within the Agency, including the administration of application security technologies, proactive monitoring of information technology assets for potential security issues, identity and access management activities, and implementation of security best practices to mitigate risks within the organization.

Primary Responsibilities

• Administer, monitor, and maintain Identity and Access Management (IAM) and other security systems

• Develop, configure, and maintain ForgeRock AM, IdM, DS, Cisco Duo MFA, and Identity Gateway solutions

• Implement SSO, MFA, LDAP integrations, and IAM-related security initiatives

• Perform vulnerability management, security patch management, risk analysis, and root cause analysis

• Monitor compliance with agency security policies and support audit activities

• Support application enhancements, testing, documentation, and Disaster Recovery / Business Continuity activities

• Monitor system availability, performance, and capacity metrics

• Support project management activities related to IAM solutions and timelines

Required Technical Skills

• Identity and Access Management (IAM)

• ForgeRock Access Manager (AM), Identity Management (IdM), Directory Services (DS), Identity Gateway (IG)

• Cisco Duo MFA

• Java, JavaScript, Groovy, REST APIs, JSON

• SAML, OAuth 2.0, OpenID Connect (OIDC), SCIM

• LDAP integrations

• Apache/Tomcat

• Containerized environments

• Vulnerability management and security-patch management

• Access review and role definition administration

• Security controls and compliance monitoring

• Risk analysis and root cause analysis (RCA)

• NIST and security frameworks

• Server hardening and patching technologies