Job Description
Job Description
Skills Needed
Ping Access, Ping Federate and Site Minder.
Business Requirements
- Architect a solution where all the bank's web applications can be accessed by logging in from a single login screen.
- The user experience should be that users will be authenticated one time and be able to access all the applications under the same web session.
- These web applications should be accessible by authenticating both employee accounts and member accounts
- The solution should provide for members and/or employees the ability to make requests for new access or changes access to bank services.
- The solution should provide for members and/or employees the ability self-service password reset.
- The solution should support Multi-Factor Authentication (MFA) for both employee and member accounts.
Technical Requirements
- Establish the capability to federate employee identities with Azure to allow employees to access Azure/Office 365 assets from both inside and outside of our network.
- Identify a solution that will allow for multiple Identity Providers (IdP) and Identity stores. These identity stores will primarily leverage Microsoft Active Directory and/or Azure Active Directory.
- In the future, some application services may be provided through Azure. The identity architecture should be able to accommodate this future need.
This engagement will:
- Outline the options available to using Azure, Ping Access and Ping Federate and discuss pros and cons with our architects
- Document a technical architecture the proposed solution in coordination with our architects
- Assist in performing a POC that includes configuring a development environment that integrates with Azure AD, a on premise instance of Active Directory and test instances of the existing applications.
- Assist in developing a conversion plan that will include migration of accounts and applications from the existing infrastructure to the future state architecture.