Mainframe Security SME
Posted 3 days ago by WaveStrong, Inc.
Negotiable
Undetermined
Remote
Remote
Summary: The Mainframe Security SME role involves leading the migration from ACF2 to RACF over a 12-month contract. The position requires expertise in technical engineering, architecture, governance, compliance, and risk management related to mainframe security. The candidate will be responsible for developing migration strategies, implementing best practices, and ensuring compliance with regulatory requirements. This role is remote and focuses on enhancing security measures within the organization.
Key Responsibilities:
- Lead the end-to-end migration from ACF2 to RACF, including planning, design, testing, cutover, and stabilization.
- Develop and maintain the migration roadmap, timelines, and risk mitigation strategies.
- Conduct detailed analysis of existing ACF2 rules, resource definitions, and access models to map them to RACF equivalents.
- Build automated or semi-automated processes to streamline conversion and validation.
- Design RACF class structures, grouping, profiles, and naming standards aligned with enterprise security policies.
- Implement RACF administration best practices, including role-based access, dataset protection, digital certificates, and password/ MFA integration.
- Configure and optimize z/OS security components such as ICSF, PKI, SAF exits, and SMF logging.
- Develop scripts, tools, and utilities to support RACF administration and reporting.
- Ensure RACF implementation aligns with regulatory requirements (SOX, PCI, HIPAA, etc.).
- Partner with audit teams to provide evidence, reporting, and remediation guidance.
- Establish RACF operational procedures, access request workflows, and ongoing governance models.
Key Skills:
- Expertise in mainframe security, specifically with ACF2 and RACF.
- Strong understanding of regulatory compliance (SOX, PCI, HIPAA).
- Experience in technical engineering and architecture related to RACF.
- Ability to develop migration roadmaps and risk mitigation strategies.
- Proficiency in scripting and automation for security processes.
- Knowledge of z/OS security components and best practices.
- Strong analytical skills for assessing existing security models.
- Experience in governance and compliance frameworks.
Salary (Rate): undetermined
City: undetermined
Country: undetermined
Working Arrangements: remote
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
Exciting Mainframe Security SME, 12 months, contract opportunity
Seeking a Mainframe Security SME to support:
Project: Migration from ACF2 to RACF.
- Lead the end-to-end migration from ACF2 to RACF, including planning, design, testing, cutover, and stabilization.
- Develop and maintain the migration roadmap, timelines, and risk mitigation strategies.
- Conduct detailed analysis of existing ACF2 rules, resource definitions, and access models to map them to RACF equivalents.
- Build automated or semi-automated processes to streamline conversion and validation.
Technical Engineering & Architecture
- Design RACF class structures, grouping, profiles, and naming standards aligned with enterprise security policies.
- Implement RACF administration best practices, including role-based access, dataset protection, digital certificates, and password/ MFA integration.
- Configure and optimize z/OS security components such as ICSF, PKI, SAF exits, and SMF logging.
- Develop scripts, tools, and utilities to support RACF administration and reporting.
Governance, Compliance & Risk Management
- Ensure RACF implementation aligns with regulatory requirements (SOX, PCI, HIPAA, etc.).
- Partner with audit teams to provide evidence, reporting, and remediation guidance.
- Establish RACF operational procedures, access request workflows, and ongoing governance models.