Mainframe Security SME

2 months, 1 week ago
Contract
Lead
DevOps and Infrastructure
WaveStrong,

WaveStrong,

WaveStrong, founded in 2001, is a leading data privacy consulting company providing trusted cyber security solutions for over 18 years.

Internet Software & Services
51-250
Founded 2001

Description

  • Lead the end-to-end migration from ACF2 to RACF, including planning, design, testing, cutover, and stabilization.
  • Develop and maintain the migration roadmap, timelines, and risk mitigation strategies.
  • Analyze existing ACF2 rules, resource definitions, and access models and map them to RACF equivalents.
  • Build automated or semi-automated processes to streamline conversion and validation.
  • Design RACF class structures, grouping, profiles, and naming standards aligned with enterprise security policies.
  • Implement RACF administration best practices, including role-based access, dataset protection, digital certificates, and password/MFA integration.
  • Configure and optimize z/OS security components such as ICSF, PKI, SAF exits, and SMF logging.
  • Develop scripts, tools, and utilities to support RACF administration and reporting.
  • Ensure RACF implementation aligns with regulatory requirements such as SOX, PCI, and HIPAA.
  • Partner with audit teams to provide evidence, reporting, and remediation guidance.
  • Establish RACF operational procedures, access request workflows, and ongoing governance models.

Requirements

  • Experience leading mainframe security migrations from Broadcom ACF2 to RACF.
  • Strong knowledge of RACF administration and z/OS security architecture.
  • Experience with planning, testing, cutover, and stabilization for security platform migrations.
  • Ability to analyze ACF2 security rules, resource definitions, and access models.
  • Experience designing RACF class structures, profiles, grouping, and naming standards.
  • Knowledge of role-based access, dataset protection, digital certificates, and password/MFA integration.
  • Experience with z/OS security components including ICSF, PKI, SAF exits, and SMF logging.
  • Ability to develop scripts, tools, and utilities for automation and reporting.
  • Experience supporting compliance and audit requirements for SOX, PCI, HIPAA, or similar regulations.
  • Contract role: 12 months.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Active Directory / Identity Engineer

Keywords Studios 10K-50K Internet Software & Services

Keywords Group is seeking an experienced Active Directory SME and Azure Identity Lead to guide company-wide identity architecture and support global IT across on-premises and cloud environments.

Active Directory Cybersecurity DHCP DNS PowerShell
16 hours, 55 minutes ago

Senior Security Compliance Engineer

Klaviyo 1K-5K IT Services

Klaviyo is seeking a Senior Security Compliance Engineer to help its Security Trust & Risk team automate and scale compliance operations, continuous monitoring, and GRC tooling across a fast-growing AI-first B2C CRM platform.

AWS CI/CD Go HIPAA Kubernetes Python REST API SQL
17 hours, 40 minutes ago

Website Security Engineer

PetDesk 51-250 Health Care Providers & Services

PetDesk is hiring a Website Security Specialist to protect its website portfolio by preventing vulnerabilities, responding to incidents, and maintaining secure technical operations across the full site lifecycle.

WordPress
17 hours, 41 minutes ago

Principal AI Security Specialist - Federal

Zscaler 1K-5K Internet Software & Services

Zscaler is hiring a Principal AI Security Specialist to lead field-facing enterprise AI security engagements, helping Fortune 500 customers adopt GenAI securely across complex sales cycles.

Cybersecurity Generative AI LLM
1 day, 16 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers