Skip to main content
F

ForgeRock Architect - Manager

Fluxtek solutions

Location

Remote, US

Salary

Not specified

Type

contract

Posted

Today

Remote
via indeed

Job Description

Responsibilities:

· Solution Architecture \& Design: Design and lead high-availability (HA), multi-region architectures leveraging the full ForgeRock stack (AM, IDM, DS, IG) and PingOne Advanced Identity Cloud (AIC).

· Modern Authentication Journeys: Architect and implement complex, risk-based user journeys using ForgeRock Intelligent Access Trees, multi-factor authentication (MFA), and adaptive/contextual access control.

· API \& Integration Leadership: Define enterprise standards for Single Sign-On (SSO), Identity Federation, and Fine-Grained Authorization using OAuth 2\.0, OpenID Connect (OIDC), and SAML 2\.0\.

· Identity Governance \& Lifecycle: Oversee Identity Management (IDM) workflow development, user provisioning, role-based access control (RBAC), and directory schema customization on ForgeRock Directory Services (DS).

· Cloud \& DevOps Modernization: Drive modern deployment strategies using ForgeOps, Kubernetes, Docker, and CI/CD pipelines across public cloud landscapes (AWS, Azure, or GCP).

· Technical Stewardship: Act as the ultimate technical authority for IAM troubleshooting, performance tuning, and database/platform migrations while mentoring a dedicated team of IAM engineers.

Required Skills \& Experience

Technical Expertise

· IAM Platform Experience: 8\+ years in Cybersecurity/IAM, with at least 4\+ years of dedicated hands-on experience designing and implementing ForgeRock solutions.

· Deep Stack Knowledge: Proficient in configuring and extending ForgeRock Access Management (AM), Identity Management (IDM), Directory Services (DS), and Identity Gateway (IG).

· Security Protocols: Mastery of modern federation frameworks: SAML 2\.0, OAuth 2\.0, OIDC, SCIM, and LDAP.

· Custom Development: Strong experience writing customized authentication nodes and custom workflows using JavaScript, Java, or Groovy script.

· Cloud Native Platforms: Solid grounding in microservices infrastructure (Docker, Kubernetes) and deploying cloud-hosted IAM stacks.

Soft Skills \& Leadership

· Stakeholder Navigation: Proven ability to translate complex security requirements into clear, scannable roadmaps for C-suite Executives and business owners.

· Problem Solver: Advanced root-cause analysis skills using enterprise monitoring and logging tools (e.g., Splunk, AppDynamics).

Preferred Qualifications and certifications:

· Experience migrating on-premise ForgeRock legacy workloads to PingOne Advanced Identity Cloud (AIC).

· ForgeRock / Ping Identity Certifications (e.g., ForgeRock Certified Access Management Specialist or Architect).

· Background designing IAM solutions within strictly regulated frameworks (e.g., Open Banking/SCA, HIPAA, GDPR).

Work Location: Remote

Looking for more opportunities?

Browse thousands of graduate jobs and entry-level positions.

Browse All Jobs