Roles & Responsibilities:
- Develop, implement, and maintain Identity and Access Management solutions for the organization.
- Demonstrate understanding of Ping Identity and Okta platform, tools, and capabilities.
- Strong understanding of Authenticating technologies such as SAML, OAuth/OIDC, WS-FED authentication and other authentication methods.
- Strong working knowledge of PingFederate, Ping Access, Okta, Okta Access Gateway, Azure AD products/Concepts.
- Good understanding of access management, federated identity, 2-factor solutions, and LDAP Directories.
- Demonstrate deployment capabilities of Ping tools across different environments.
- Support Application onboarding and migration activities.
- Responsible for installing, configuring, upgrading, and deploying Ping Identity and Okta products.
- Design and implement access controls, authorization rules, and role-based access policies.
- Design, develop and implement Single Sign-On and Multi-Factor authentication (MFA) solutions for external and internal applications using SAML and OAuth in Ping Federate and Okta.
- Migrating applications from Ping Federate to Okta.
- Work with application teams to help them in understanding the functionality of security protocols (SAML, OAuth, OpenID) and security tools (Ping Access, Ping Federate, Okta)
- Develop custom plugins and adapters in Ping Federate using Java/J2EE backend technologies.
- Provide on-call support, attend fire calls and troubleshoot issues.
- Administer and support production deployments and troubleshoot access control issues including service vulnerability mitigation and Disaster Recovery planning/ testing.
- Work with IAM and other teams to help architect IAM solutions that are secure, compliant, automated, and scalable.
Required Knowledge & Skills:
- Minimum 8 years IT experience with at least 5 of those years focused on Information Technology.
- Strong knowledge of information security, IAM principles and Security best practices.
- Advanced knowledge of IAM technologies including, but not limited to the Ping Identity Suite (Ping Federate, Ping Access), Okta, Azure AD.
- Java /J2EE knowledge and ability to write custom adapters /SDK using PingFederate API's.
- In-depth knowledge on security standards and identity protocols (SAML, WS-Federation, WS-Trust, SCIM, JIT and OAuth/OpenID Connect).
- Knowledge of security standards and policies such as SOC2, HIPAA, and GDPR.
- Strong technical expertise in Deploying, Configuring and Upgrading PingFederate, Okta.
- Experience in Migration strategy and implementation from Ping Federate to Okta.
- Experience with Linux operating systems and application servers.
- Ability to manage and prioritize multiple projects and tasks effectively.
- Excellent communication skills with ability to communicate clearly with peers, managers and clients.