Python Developer
Hybrid in Washington, DC
Job Description
• Develop Python Programs: Write Python programs to perform automated access control reviews. This includes extracting access control data, analyzing it, and identifying discrepancies across different tech stacks such as NET, Java, PHP, Node.js, etc.
• API Development: Develop and integrate API connectors to extract and manage access control data from various platforms (e.g., SharePoint, Azure, Java, NET, WordPress, etc.), ensuring seamless interaction between these systems.
• AI Integration: Utilize Al frameworks to enhance access control reviews by identifying potential exceptions or misconfigurations in access permissions and roles.
• Automation of Security Reviews: Create and maintain PowerShell and Bash scripts that enable automation of security-related tasks in the CI/CD pipeline for continuous auditing of access control configurations.
• Data Reporting and Dashboards: Build dashboards using Python libraries (e.g., Pandas, Matplotlib, Plotly) to track access control statuses, security configurations, and related metrics.
• Collaboration and Support: Work closely with project managers, IT security staff, and system administrators to gather requirements, understand business needs, and develop solutions that improve security processes.
• Continuous Improvement: Continuously evaluate and improve access control review processes, leveraging new technologies and techniques, particularly Al and automation, to improve efficiency and effectiveness.
1. SKILLS/EXPERIENCE REQUIRED
• Please find below the criteria for the expected resource:
• Python Programming: At least 5 years of hands-on experience with Python, particularly in frameworks like FastAPI, Django, Flask, and experience using Al frameworks.
• Access Control Expertise: Strong understanding of access control models such as Role-Based Access Control (RBAC) and Attribute-Based Access Control (ABAC).
• API and Connector Development: Experience in developing API connectors using Python for extracting and managing access control data from platforms like Azure, SharePoint, Java, .NET, WordPress, etc.
• AI and Machine Learning: Hands-on experience integrating Al into applications for automating tasks such as access control reviews and identifying anomalies.
• DevOps and CI/CD: Strong familiarity with DevOps tools such as Azure DevOps and experience with continuous integration/continuous deployment (CI/CD) practices. Experience with PowerShell and Bash scripting for automation.
2. SCOPE OF WORK
The vendor resource will be expected to perform the following tasks:
• Python Programming for Access Control: Develop Python programs to automate the extraction, management, and review of Access Control Lists (ACLs) across multiple technical stacks, including.NET, Java, PHP, Node.js, and others.
• Develop Connectors for Access Control Data: Create API connectors to extract and manage access control data from various application stacks like Java, .NET, Drupal, WordPress, etc.
• AI Integration for Access Control Review: Integrate Al technologies into the access control review process to automatically identify misconfigurations or exceptions, enhancing the overall security assessment.
• CI/CD and Scripting for Access Control Automation: Develop PowerShell and Bash scripts to automate the continuous integration/continuous deployment (CI/CD) pipeline for access control reviews and auditing.
• Reporting Dashboards: Use Python libraries (Pandas, Matplotlib, Plotly, Dash) to build and deploy dashboards that provide real-time insights into the access control status, exceptions, and security compliance metrics.
• Azure Integration: Work with Azure SDKs and Microsoft Graph API to integrate access control data with Azure services, enabling better reporting and access management across Microsoft 365 and SharePoint environments.
Responsibilities:
• Cloud and Microsoft Technologies: Proficiency with Azure services, Microsoft Graph API, and experience integrating Python applications with Azure for access control reviews and reporting.
• Reporting and Visualization: Experience using reporting libraries in Python (Pandas, Matplotlib, Plotly, Dash) to build dashboards and reports related to security and access control metrics.
• Communication Skills: Ability to collaborate with various stakeholders, explain complex technical solutions, and deliver high-quality solutions on time.
• PlainID: Experience or familiarity with PlainID platforms for identity and access management.
• Azure OpenAI: Familiarity with Azure OpenAl technologies and their application in access control and security workflows.
• Power BI: Experience with Microsoft Power BI for data visualization and reporting.
• Agile Methodologies: Experience working in Agile environments and familiarity with Scrum methodologies for delivering security solutions.