Overview
Skills
Job Details
Job Description
We are seeking a highly skilled and experienced ForgeRock IAM Architect/Senior Engineer to lead the design, development, and implementation of enterprise identity and access management solutions using the ForgeRock Identity Platform. The ideal candidate will have deep expertise in ForgeRock components including AM, IDM, DS, and IG, and will contribute to large-scale IAM transformation projects with a focus on scalability, security, and performance.
Key Responsibilities
Architect and implement IAM solutions using ForgeRock (AM, IDM, DS, IG).
Design and configure authentication and authorization flows (OAuth2, OpenID Connect, SAML).
Integrate ForgeRock with enterprise applications and directories (LDAP, AD).
Customize and extend ForgeRock components using Java, REST APIs, and scripting.
Lead and participate in IAM migration and upgrade projects.
Conduct requirements analysis and translate business needs into technical solutions.
Implement Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC).
Develop custom workflows, connectors, and provisioning logic.
Perform security assessments and ensure compliance with industry standards.
Collaborate with DevOps teams to deploy and maintain ForgeRock in cloud/on-prem environments.
Provide technical leadership and mentoring to junior IAM engineers.
Required Skills & Experience
10+ years of total IT experience with at least 4 6 years in ForgeRock IAM.
Hands-on experience with ForgeRock Access Management (AM), Identity Management (IDM), Directory Services (DS), and Identity Gateway (IG).
Strong understanding of identity standards: SAML 2.0, OAuth2.0, OIDC, LDAP, SCIM.
Proficiency in Java, REST APIs, JSON, Groovy, and Shell scripting.
Experience with DevOps practices, CI/CD pipelines, and container platforms like Docker, Kubernetes.
Experience in designing IAM architectures for scalability and performance.
Knowledge of cloud platforms (AWS, Azure, Google Cloud Platform) IAM integration is a plus.
Familiarity with identity governance and analytics tools.
Excellent problem-solving, troubleshooting, and communication skills.
Preferred Qualifications
ForgeRock certifications (e.g., ForgeRock Certified Access Management Specialist).
Experience with other IAM tools (e.g., SailPoint, Okta, Ping Identity) is a plus.
Security or cloud certifications (e.g., CISSP, Azure/AWS Security) preferred.