Must-Have:

• Robust experience implementing and supporting IBM Security Access Manager (ISAM), including:
o WebSEAL configuration, junctions, ACLs, protected object space (POS)
o Authentication/authorization policies, session and cookie management
o Federation using SAML, OIDC, OAuth2
o Mapping rules / policy scripting (often JavaScript-based in federation flows)

• Solid Java development experience, preferably with:
o Spring / Spring Boot, REST APIs, microservices concepts
o Authentication and authorization patterns in distributed systems

• Strong understanding of IAM fundamentals:
o SSO, MFA concepts, token-based auth, identity lifecycle basics

• Experience with Linux/Unix, troubleshooting, logs, and network fundamentals (HTTP/S, TLS, headers, cookies)





• Strong communication skills and ability to work across security, infrastructure, and application teams

Nice-to-Have

• Experience with IBM Security Verify Access (ISVA) (newer branding/evolution of ISAM)

• Experience with IBM Security Directory Server / LDAP tuning and troubleshooting

• Exposure to API gateways, WAF, reverse proxy patterns, and mTLS

• Containerization/Cloud knowledge: OpenShift/Kubernetes, Azure/AWS/GCP

• CI/CD tools: Jenkins/GitHub Actions/Azure DevOps, SonarQube, Nexus/Artifactory

• Banking/financial services domain experience and security/compliance familiarity (e.g., SOC2, PCI, PIPEDA)

📌 Senior ISAM Developer - Webseal, Java (Toronto)
🏢 Astra North Infoteck
📍 Toronto