Senior IAM Engineer

We are seeking an experienced IAM Specialist to manage and enhance our identity and access management infrastructure. This role focuses on the Ping Identity ForgeRock stack, including Ping Gateway, Ping AM, Ping IDM, and Ping DS.

Key Responsibilities:

• Design, implement, and optimize IAM solutions using Ping Identity ForgeRock stack.
• Develop and maintain single sign-on (SSO) routes, dynamic proxies, and authentication trees.
• Integrate threat sensors (e.g., Threat Metrix, Bio Catch) for adaptive and step-up authentication.
• Implement data links between PingDS and external systems (LDAPS, JDBC, SOAP, HTTPS).
• Design and manage PingDS schemas with custom managed objects.
• Optimize performance of OOTB and custom ForgeRock components.
• Collaborate with security, product, engineering, and compliance teams to embed identity-first principles within the DevSecOps lifecycle.

Required Skills:

• Deep knowledge of IAM domains, protocols (OAuth2, OIDC, PKI), and authentication methods (knowledge-based, possession-based).
• Strong experience with JavaScript for Ping Gateway and Ping AM scripted routes.
• Proficiency in designing extensible IAM APIs for seamless application integration.
• Familiarity with PSD2 SCA taxonomy and identity federation concepts.
• Certification or proof of completion in ForgeRock Deep-Dive 4xx training modules.

Qualifications:

• Strong background in identity management, authentication, authorization, and IAM protocols.
• Proven ability to design scalable, secure IAM architectures.

Experience working in DevSecOps environments.