Location
Remote, US
Salary
Not specified
Type
contract
Posted
Today
Job Description
Responsibilities:
· Solution Architecture \& Design: Design and lead high-availability (HA), multi-region architectures leveraging the full ForgeRock stack (AM, IDM, DS, IG) and PingOne Advanced Identity Cloud (AIC).
· Modern Authentication Journeys: Architect and implement complex, risk-based user journeys using ForgeRock Intelligent Access Trees, multi-factor authentication (MFA), and adaptive/contextual access control.
· API \& Integration Leadership: Define enterprise standards for Single Sign-On (SSO), Identity Federation, and Fine-Grained Authorization using OAuth 2\.0, OpenID Connect (OIDC), and SAML 2\.0\.
· Identity Governance \& Lifecycle: Oversee Identity Management (IDM) workflow development, user provisioning, role-based access control (RBAC), and directory schema customization on ForgeRock Directory Services (DS).
· Cloud \& DevOps Modernization: Drive modern deployment strategies using ForgeOps, Kubernetes, Docker, and CI/CD pipelines across public cloud landscapes (AWS, Azure, or GCP).
· Technical Stewardship: Act as the ultimate technical authority for IAM troubleshooting, performance tuning, and database/platform migrations while mentoring a dedicated team of IAM engineers.
Required Skills \& Experience
Technical Expertise
· IAM Platform Experience: 8\+ years in Cybersecurity/IAM, with at least 4\+ years of dedicated hands-on experience designing and implementing ForgeRock solutions.
· Deep Stack Knowledge: Proficient in configuring and extending ForgeRock Access Management (AM), Identity Management (IDM), Directory Services (DS), and Identity Gateway (IG).
· Security Protocols: Mastery of modern federation frameworks: SAML 2\.0, OAuth 2\.0, OIDC, SCIM, and LDAP.
· Custom Development: Strong experience writing customized authentication nodes and custom workflows using JavaScript, Java, or Groovy script.
· Cloud Native Platforms: Solid grounding in microservices infrastructure (Docker, Kubernetes) and deploying cloud-hosted IAM stacks.
Soft Skills \& Leadership
· Stakeholder Navigation: Proven ability to translate complex security requirements into clear, scannable roadmaps for C-suite Executives and business owners.
· Problem Solver: Advanced root-cause analysis skills using enterprise monitoring and logging tools (e.g., Splunk, AppDynamics).
Preferred Qualifications and certifications:
· Experience migrating on-premise ForgeRock legacy workloads to PingOne Advanced Identity Cloud (AIC).
· ForgeRock / Ping Identity Certifications (e.g., ForgeRock Certified Access Management Specialist or Architect).
· Background designing IAM solutions within strictly regulated frameworks (e.g., Open Banking/SCA, HIPAA, GDPR).
Work Location: Remote
Looking for more opportunities?
Browse thousands of graduate jobs and entry-level positions.