z/OS Upgrade Specialist

z/OS Upgrade Specialist

Contract to Hire

Remote (CST or EST Time Zone)

Our Fortune 500 retail client is seeking an experienced z/OS Upgrade Specialist to lead and support the upgrade of z/OS 2.4 to z/OS 3.1. This role requires expertise in z/OSMF implementation and configuration, SAF (Security Authorization Facility) integration, ISFPARMS configuration for SDSF security, and AT-TLS (Application Transparent Transport Layer Security) setup.

Essential Duties and Responsibilities:

z/OS Upgrade & Migration

Plan, coordinate, and execute z/OS 2.4 to z/OS 3.1 upgrades using z/OSMF Workflows and Software Management.

Perform SMP/E maintenance, including applying PTFs, APARs, and HOLDDATA resolution.

Conduct pre-upgrade system health checks, compatibility assessments, and fallback planning.

Execute IPL testing, JES2 configuration updates, and system validation post-upgrade.

z/OSMF Implementation & Configuration

Install, configure, and maintain z/OSMF for automation, software deployment, and incident tracking.

Utilize z/OSMF Workflows for system provisioning, migration tasks, and security updates.

Troubleshoot and resolve z/OSMF-related issues to optimize performance.

SAF & ISFPARMS Configuration for SDSF

Configure ISFPARMS to define SAF (RACF) access policies for SDSF.

Implement SAF authorization checks for SDSF panels, JES, and spool access.

Modify ISFPARMS settings to restrict or grant permissions based on user roles.

Work with security teams to define SAF rules for SDSF functions and audit SAF logs.

AT-TLS Implementation & Network Security

Implement and configure AT-TLS (Application Transparent Transport Layer Security) to secure network traffic.

Define and apply TTLS policies, managing encryption for TCP/IP-based applications.

Test and validate AT-TLS configurations with RACF Digital Certificates (if applicable).

Administer RACF Keyring and/or PAGENT, as necessary, for AT-TLS implementation.

System Performance, Testing, and Troubleshooting

Monitor z/OS system logs, dumps, RMF, and SMF reports to ensure system stability post-upgrade.

Optimize Workload Manager (WLM) policies to improve z/OS 3.1 AI-driven workload management.

Troubleshoot SMP/E errors, IPL failures, SAF security issues, and AT-TLS connectivity problems.

Documentation & Change Management

Create and maintain technical documentation for the upgrade process, security configurations, and fallback strategies.

Follow ITIL-based change management processes for approvals, testing, and rollback plans.

Train operations and support teams on new z/OS 3.1 features, z/OSMF workflows, and security enhancements.

Required Experience:

5+ years of experience in z/OS systems programming and upgrades.

Hands-on experience upgrading from z/OS 2.4 to z/OS 3.1.

Strong expertise in z/OSMF implementation, configuration, and troubleshooting.

Proficiency in SMP/E for software installation and maintenance.

Experience with SAF security controls, ISFPARMS configuration for SDSF, and job submission restrictions.

Knowledge of AT-TLS setup, policy configuration, and integration with TCP/IP applications.

Experience with JES2, PARMLIB updates, and IPL procedures.

Ability to analyze system logs, dumps, and performance reports (RMF/SMF) to troubleshoot issues.

Nice to Have:

Familiarity with RACF security integration for SAF resource protection.

Experience implementing IBM Workload Manager (WLM) policies for optimized performance.

Understanding of z/OS Communications Server, VTAM, and TCP/IP networking.

Automation experience using REXX.

Certifications such as IBM Certified System Programmer - z/OS (or equivalent).

Job Types: Full-time, Contract

Pay: From $55.00 per hour

Benefits:
Dental insurance
Health insurance
Vision insurance
Schedule:
Monday to Friday

Application Question(s):
Will you now, or in the future, require sponsorship for employment visa status (e.g. H-1B visa status)?
Do you have hands-on experience performing z/OS operating system upgrades using z/OSMF (Management Facility)?
Do you have knowledge of AT-TLS setup, policy configuration, and integration with TCP/IP applications?
Do you have experience with SAF security controls, ISFPARMS configuration for SDSF, and job submission restrictions?

Work Location: Remote