IAM Solutions Engineer - Advisor
Role details
Job location
Tech stack
Job description
DUTIES: Implement single sign-on and multi factor authentication solutions for applications by using SAML, Oauth 2.0, and OIDC protocols. Operationalize secure access frameworks to ensure compliance with internal standards and external regulatory mandates. Implement highly enforced and customized policy layers that protect high-value applications while maintaining business agility and usability. Implement tailored authentication protocols integrating password-less, MFA, and single sign on (SSO) methodologies across distributed hybrid and cloud environments. Build federation and trust relations between enterprise and partner identity providers to streamline authentication flows and strengthen B2B interoperability. Maintain high availability Ping Identity Clusters across on-prem and cloud infrastructures to achieve optimal performance, redundancy and scalability. Serve as the primary on-call point for authentication related incidents, ensuring timely triage and root cause analysis across ping suite. Troubleshoot complex authentication issues involving access policies, certificate renewals, and federations. Perform log and event analysis through monitoring tools to identify anomalies, failed authentications or suspicious activity.
Requirements
REQUIREMENTS: Bachelor's degree in Computer Science, Information Technology, Computer Engineering or a related field and 4 years in any job title involving IAM engineering experience. Prior experience must include: 4 years onboarding applications with Single-Sign-On tools including Ping Federate and Ping Access; 4 years integrating applications with SAML, Oauth and OpenID Connect; 4 years working with Agile methodologies including Scrum and Kanban; 4 years working with Unix Command Line; 4 years of on-call support for Ping Federate; 4 years resolving incidents related to Ping Federate, Ping Access and Ping Directory and documenting resolutions; 4 years integrating applications with PingOne MFA API; 2 years integrating applications with AAL3 phishing resistant protocols including FIDO2; and 2 years of Visio for architecture diagram creation and whiteboard sessions with engineers.