Ping / ForgeRock Engineer

Role Overview

This role is responsible for supporting multiple security engineering efforts to deliver enterprise security capabilities. Key responsibilities include supporting the design, development, and implementation of systems contributing to the protection of systems, devices, and sensitive data. You will deliver milestones on engineering initiatives, partner with cross-functional teams to identify opportunities for collaboration, and solve complex issues within one or more security domains with moderate oversight.

The engineer will be responsible for the design, implementation, and maintenance of Identity and Access Management (IAM) solutions, ensuring the security and efficiency of digital identity systems.

Responsibilities

• Design, implement, customize, and maintain Ping / ForgeRock IAM solutions in a large corporate financial environment.
• Collaborate with cross-functional teams to integrate Ping / ForgeRock solutions with existing systems and applications.
• Develop and implement strategies for identity management, single sign-on (SSO), and access management.
• Ensure high availability and disaster recovery capabilities for IAM services.
• Conduct performance and capacity assessments and implement necessary improvements.
• Provide technical guidance and support for IAM issues, including troubleshooting and resolving issues with synchronization and integration.
• Implement and maintain the automation of software upgrades and patches using standard Continuous Integration and Continuous Development (CI-CD) tools.
• Stay updated with the latest developments in IAM technologies and security trends.
• Document all IAM architectures, designs, and related procedures.

Requirements

• Minimum of 5 years of experience in implementing, configuring, and managing Ping / ForgeRock IAM solutions in a large corporate environment (Ping IDM, Ping DS, RCS).
• Ability to understand and analyze Ping / ForgeRock logfiles for diagnostics.
• Experience in migrating and onboarding workflows to Ping / ForgeRock IAM Solutions.
• Strong understanding of identity and access management principles and protocols, including SSO, OAuth, SAML, OpenID Connect, MFA, RBAC, and ABAC.
• Strong understanding of directory services (Active Directory and LDAP).
• Proficiency in scripting languages such as Groovy and Python.
• Familiarity with DevOps tools and methodologies (Jira, Git BitBucket, Jenkins, Ansible, Celestial).
• Excellent problem-solving, communication, and collaboration skills.

Preferred Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• Certifications in Ping, ForgeRock, or other IAM technologies.
• Hands-on experience with SailPoint IdentityIQ.
• Proficiency in PowerShell.
• Knowledge of Windows Server, Red Hat Linux, and Shell Scripting.
• Experience with monitoring tools such as SPLUNK, Dynatrace, and Prometheus.
• Knowledge of deploying software to container platforms.

Benefits

• Annual discretionary incentive award based on individual and company performance.
• Comprehensive health and wellness benefits with access to paid time off.
• Parental leave up to 26 weeks (16 weeks fully paid for eligible teammates).
• Family-building assistance with up to a $20,000 lifetime reimbursement.
• Backup child and adult care services.
• Retirement support including a 401(k) match up to 5% plus an additional 2–3% annual company contribution based on service.
• Bereavement leave providing 20 paid days for the loss of a spouse, partner, or child.