The City University of New York

Oracle Identity Management (OIM) & Governance (OIG) Administrator (IT Security Specialist 3) - Provisional

GENERAL DUTIES

This position encompasses professional and responsible technical consultative and/or administrative work. Under administrative direction of a university IT manager, with broad latitude of independent action or decision, serves as subject matter expert on IT security, identity, and access infrastructure; provides IT security architectural guidance; designs security solutions; conducts IT risk assessments and recommended mitigating solutions.

There are three (3) Assignment Levels within this classification. All personnel perform related work. Assignment Levels 2 and 3 may supervise staff. This specification describes typical assignments; related duties may be assigned as needed.

To view the complete job description, go tohttp://www.cuny.edu/about/administration/offices/hr/classified-civil-service/ccsjobs/and view the Job Description for IT Security Specialist.

CONTRACT TITLE

IT Security Specialist

FLSA

Non-exempt

CAMPUS SPECIFIC INFORMATION

The Office of Computing and Information Services (CIS) at the City University of New York (CUNY) supports the IT and telecommunications needs of CUNY's 26 colleges. CIS supports enterprise IT and applications, develops new technologies that advance the University's core mission, builds, upgrades and maintains the University's network, and operates the University's Data Center and Service Desk. Additionally, CIS manages the processes that safeguard the University’s IT assets and operates the SOC, develops disaster recovery plans for business continuity, maintains the security of the University’s IT assets, and maintains the CUNYfirst Enterprise Resource Planning (ERP) solution that integrates student administration, financial management, and human resources operations across CUNY’s 26 colleges. Lastly, CIS provides strategic and operational IT leadership with respect to the maintenance, enhancement, and expansion of the CUNY network spanning across all CUNY campuses.

Reporting to the Oracle Identity Manager (OIM), the Oracle Identity Management (OIM) & Governance (OIG) Administrator will lead collaborations between Integrated Management Systems (IMS), database (DB), security administrators, network, and PeopleSoft teams to launch application delivery. This position requires navigating complex, large-scale environments with interconnected systems, sensitive data, and multiple stakeholders to ensure secure and efficient identity governance. The role demands a high level of technical expertise, strategic problem-solving, and leadership to oversee the architecture, maintenance, and continuous improvement of OIM and OIG systems. It involves balancing operational requirements with innovation, working in a collaborative yet fast-paced environment to deliver secure, scalable solutions. The OIM & OIG Administrator will be responsible for managing and securing identity systems that are central to university operations, impacting over 300,000 users. The complexity of tasks spans technical integrations, system upgrades, and risk assessments, all while coordinating with diverse teams and stakeholders. Decisions made in this role have long-lasting effects on operational efficiency, security, and user experience, making strategic foresight and meticulous execution essential.

Key responsibilities include, but are not limited to:

• Oversees the architecture and operations of both Production and Non-Production OIM environments, ensuring their optimal performance through rigorous building, testing, and maintenance of interconnected systems.
• Develops and supports OIM system configurations, resource provisioning, role management, and intricate policy creation to align with organizational security and operational needs.
• Directs resolution of high-stakes OIM-related application issues, often under time-sensitive conditions during off-hours, to mitigate operational disruptions and maintain system continuity.
• Leads complex integrations and project rollouts by leading collaborations across IMS, database administrators, security teams, network engineers, and PeopleSoft developers.
• Communicates with key stakeholders to manage and ensure seamless OIM integration with PeopleSoft and other custom applications critical to university-wide operations.
• Administers in-depth technical reviews and implements procedural changes to enhance the scalability, security, and reliability of the University’s Enterprise OIM system architecture.
• Liaises with CUNY's Information Security Office to investigate and resolve intricate managed identity security incidents, safeguarding sensitive university assets.
• Provides high-level strategic recommendations to rationalize IT services by analyzing and executing decisions to combine, decommission, or expand servers, services, and applications, ensuring cost-effectiveness and scalability.
• Oversees diverse duties within the scope and intention of the role, requiring adaptability, meticulous planning, and the flexibility to work evenings or weekends for critical systems-related tasks.

NOTES:

1. Until further notice, this position is eligible for a hybrid work schedule.
2. An appointment to this Competitive title/position in the Classified Civil Service Title Series will be made with a Provisional status. Employees in provisional status must pass a competitive civil service examination and be appointed from a civil service list to remain in the title/position.

MINIMUM QUALIFICATIONS

1. A baccalaureate degree in computer science, engineering or a related field from an accredited college or university and five (5) years of satisfactory full-time experience providing IT security architectural guidance, designing security solutions, and/or conducting IT risk assessments and recommended mitigating solutions; or

2. A baccalaureate degree from an accredited college or university and six (6) years of satisfactory full-time experience as described in “1” above; or

3. A high school diploma or its educational equivalent and ten (10) years of satisfactory full-time experience as described in “1” above; or

4. Education and/or experience which is equivalent to "1," "2" or "3" above. The following may substitute for some of the required experience required in "1," "2" or "3" above, as follows:

College education (undergraduate credits) may substitute for up to four (4) years of the required experience in "3" above on the following basis:

A. 30 to 59.9 semester credits substitute for 1 year of experience; or

B. 60 to 89.9 semester credits substitute for 2 years of experience; or

C. 90 to 119.9 semester credits substitute for 3 years of experience; or

D. 120 or more semester credits substitute for 4 years of experience.

Graduate credits in information technology, computer science or a related field may substitute for up to two (2) years of experience in "1" or "2" above on the following basis:

A. 15 to 29.9 graduate credits substitute for 1 year of required experience; or

B. 30 or more graduate credits substitute for 2 years of required experience.

Each of the following certifications may substitute for one (1) year of the required experience in "1," "2" or "3" above:

A. Certified Information Systems Security Professional (CISSP) issued by ISC2; and/or

B. Certified Ethical Hacker (CEH) issued by EC-Council; and/or

C. CompTIA Security+ issued by CompTIA; and/or

D. Certified Information Security Manager (CISM) issued by ISACA; and/or

E. Certified Information Security Auditor (CISA) issued by ISACA; and/or

F. GIAC Security Essentials (GSEC) issued by GIAC; and/or

G. Certified Cloud Security Professional (CCSP) issued by ISC2.

However, all candidates must have a high school diploma or its educational equivalent and at least three (3) years of experience as described in “1” above.

Assignment Level II or III :

Level II: After meeting the Qualification Requirements above, an additional two (2) years of satisfactory full-time experience providing IT security architectural guidance, designing security solutions, and/or conducting IT risk assessments and recommended mitigating solutions is required for Level II.

Level III: After meeting the Qualification Requirements above and the Level II requirements, an additional two (2) years of satisfactory full-time experience providing IT security architectural guidance, designing security solutions, and/or conducting IT risk assessments and recommended mitigating solutions is required for Level III (for a total of 4 years of experience above the Qualification Requirements).

English Language Proficiency : Demonstrated English language proficiency, including ability to speak, read, write, and understand English well enough to meet minimally acceptable performance standards set for job duties.

Motor Vehicle Driver License : A Motor Vehicle Driver license, valid in New York State, may be required for some, but not all positions.

Note: CUNY considers full-time work to be at least 35 hours per week. Part-time experience of at least 20 hours per week may be prorated by half and credited instead of,but not in addition to, full-time experience during the same period (e.g., two months of related work experience at 20-34 hours per week equates to one month of full-time related work experience.) Part-time experience of fewer than 20 hours per week cannot be credited at all.

OTHER QUALIFICATIONS

Preferred:

• Expertise in Oracle Identity Governance resource provisioning and reconciliation in OIG 12c including OUD, AD, M365, and PeopleSoft; knowledge of OIG orchestration processes is a plus.
• Experience with integrating Oracle Identity Manager, Oracle Adaptive Access - Manager, and other Oracle IDM solutions.
• Proficiency with:
• OIG Java API and development including scheduled tasks, connectors, adapters, and event handlers.
• WebLogic, UNIX/Linux OS (Red Hat preferred) and LDAP Directory Services (Active Directory and Oracle Internet Directory).Familiarity with OIG database schema, PL/SQL queries including indexing and optimization.
• In-depth technical knowledge of troubleshooting, integration, and migration of OIG.
• Knowledge of Shell, file system, etc., in Unix/Linux environment.
• Experience with Single Sign-On and Web Access, Federated Identity, and Namespace.
• Exceptional experience with completing tasks successfully and efficiently.
• Exceptional analytical and organizational skills, including the flexibility to work successfully with multiple priorities and conflicting deadlines while producing quality results and meeting deliverables.
• Ability to work with multiple teams simultaneously and change priorities as needed to meet business needs.

COMPENSATION

Level 1: $104,304

Level 2: $113,533

Level 3: $124,471 - $135,000

BENEFITS

CUNY offers a comprehensive benefits package to employees and eligible dependents based on job title and classification. Employees are also offered pension and Tax-Deferred Savings Plans. Part-time employees must meet a weekly or semester work hour criteria to be eligible for health benefits. Health benefits are also extended to retirees who meet the eligibility criteria.

HOW TO APPLY

For full consideration, submit a cover letter and resume online via CUNY's web-based job system, addressing how your experience and credentials meet the responsibilities and qualifications outlined.

The direct link to the job opening from external sources is:

https://hrsa.cunyfirst.cuny.edu/psc/erecruit/EMPLOYEE/HRMSCG/c/HRS_HRAM_FL.HRS_CG_SEARCH_FL.GBL?Page=HRS_APP_JBPST_FL&Action=U&FOCUS=Applicant&SiteId=1&JobOpeningId=31298&PostingSeq=1

Current CUNY employees must apply through CUNYfirst Employee Self Service using their login credentials. After you login, click the Careers tile on the Employee Self Service Menu page to view job openings

CLOSING DATE

Open until filled.

JOB SEARCH CATEGORY

CUNY Job Posting: Information Technology/Technical

EQUAL EMPLOYMENT OPPORTUNITY

CUNY encourages people with disabilities, minorities, veterans and women to apply. At CUNY, Italian Americans are also included among our protected groups. Applicants and employees will not be discriminated against on the basis of any legally protected category, including sexual orientation or gender identity. EEO/AA/Vet/Disability Employer.

Job ID

31298

Location

Central Office

Read Full Description