Projects the candidate will be working on:

• Security enhancement and hardening of IAM Single Sign On and PingFederate services

Ideal Background:

• Identity Engineer or IT Security professional with experience administrating and securing Ping Identity, Single Sign On,
• SAML Federation, along with certificate management (PKI / Cryptography) or Hardware Security Management (HSM) skills.

Team and Team size:

• 10 Team members including 8 Identity professionals, 1 Architect and 1 Project Manager.

Top Responsibilities:

• Evaluates and applies security enhancements and performance management on IAM SSO systems
• Integrates Applications on PingFederate and SSO services, and manages SAML and Certificate life cycle
• Deploys SAML partnership configuration and establish certificates renewal processes
• Gather and analyze data to aide in informed decision-making while providing detailed, realistic estimates.
• Interact skillfully with business stakeholders and third-party technical organizations.
• Solve problems and provide deep technical troubleshooting skills.
• Configures logging, alerting, monitoring, and reporting for IAM solutions
• Develops Identity, Authentication and Federation services, and Deploys highly-scalable applications, applying standard SSO patterns enabling security and privacy at scale.
• Define and implement technical solutions to meet business needs through Agile process.
• Foster high-performance, collaborative technical work resulting in high-quality output.
• Train and develop operations and engineering staff to maintain and support Identity and security services.

Skills/attributes Required

• 7 years’ Experience in IAM, SAML/OIDC/OAUTH Federation protocols and Single Sign On implementations
• 3 years’ experience on Ping Identity and Knowledge of PingFederate and PingAccess.

Skills/attributes Preferred

• Expert level knowledge of common IAM SSO and Federation solutions and patterns
• Knowledge of Public Key Infrastructure (PKI), and Digital Certificate lifecycle management functions
• Understanding of cryptographic protocols and network security protocols (e.g. TCP/IP, TLS, SSL, encryption, OpenSSL, X.509 Certificates)
• Experience with Thales Luna or similar HSM and Venafi
• Experience with Multi Factor Authentication (MFA) solutions
• Experience preparing detailed design and angineering documents
• Experience with DevOps, Continuous Integration and Continuous Delivery
• Experience working in an Agile environment
• Expertise with modern programming languages, systems, and architectures
• Expertise in performance and scalability optimization