WebSEAL Architect

Job Description

Job Title : WebSEAL Architect

Skills : WebSEAL, IBM Security Access, IBM Security Access, SSL / TLS, PKI, and certificate management.

Experience : 8-12 Years

Location : Windsor, CT

Job Type : Fulltime

We at Coforge are hiring for WebSEAL Architect with the following skills :

• The WebSEAL Architect is responsible for designing, implementing, and maintaining secure web access management solutions using IBM Security Access Manager (ISAM) and its WebSEAL reverse proxy component.
• This role involves deep technical expertise in authentication, authorization, and secure web architecture, ensuring robust protection of enterprise applications and data.
• Architecture & Design : Design and architect secure web access solutions using IBM WebSEAL.
• Develop high-level and detailed design documents for WebSEAL integration with enterprise applications.
• Define and enforce security policies, access control mechanisms, and authentication flows.
• Implementation & Configuration : Install, configure, and maintain IBM WebSEAL instances.
• Integrate WebSEAL with LDAP directories, SAML / OIDC identity providers, and backend applications.
• Configure junctions (standard, transparent, virtual host) for application access.
• Security & Compliance : Implement SSL / TLS encryption, mutual authentication, and secure cookie handling.
• Ensure compliance with enterprise security standards and regulatory requirements.
• Conduct vulnerability assessments and apply necessary patches or updates.
• Performance & Optimization : Monitor WebSEAL performance and optimize scalability and reliability.
• Troubleshoot issues related to authentication, session management, and access control.
• Implement caching strategies and load balancing for high availability.
• Collaboration & Documentation : Work closely with application teams, security teams, and infrastructure teams.
• Provide technical guidance and mentorship to junior engineers.
• Maintain comprehensive documentation for configurations, policies, and procedures.
• Required Skills & Qualifications : Strong experience with IBM Security Access Manager (ISAM) and WebSEAL.
• Proficiency in LDAP, Kerberos, SAML, OAuth2, and OpenID Connect.
• Knowledge of reverse proxy concepts, HTTP headers, cookies, and session management.
• Familiarity with scripting languages (Shell, Python) and automation tools.
• Security Knowledge : Deep understanding of web application security principles (OWASP Top 10).
• Experience with SSL / TLS, PKI, and certificate management.
• Knowledge of firewall rules, NAT, and network security fundamentals.
• Soft Skills : o Strong analytical and problem-solving abilities.
• Excellent communication and documentation skills.