Job Role : IAM Engineer (ForgeRock CIAM)
Location: Fort Mill, SC (Onsite )
Duration: 12 Months
Job Description :-
Experience in Identity and Access Management IAM Engineer specializing in designing, implementing, and managing IAM solutions using ForgeRock AIC / Ping Identity AIC.
Hands on in configuring access policies, permissions, and identity lifecycle management processes.
Hands on in scripting, journey development, and API integrations to enhance IAM functionality.
Strong knowledge in performance tuning, troubleshooting, and ensuring high availability and security of IAM infrastructure.
Implementation experience in ForgeRock AIC / Ping Identity AIC for a large enterprise, securing 50,000+ identities.
SRE / SLM initiatives such as service-level objectives (SLOs), error budgeting, and resilience testing across IAM platforms.
Development of API-driven IAM automation workflows, reducing manual effort and improving security posture.
Enhanced authentication security by integrating OAuth 2.0 and OpenID Connect (OIDC) into the IAM platform.
IAM configuration audit , adherence to NIST and SOC2 standards. Implementation using ForgeRock SDKs.
Identity and access assessments and identify vulnerabilities and remediations within ForgeRock CIAM.
Managed and configured ForgeRock CIAM components, including ForgeRock Identity Platform, ForgeRock Directory Services, and ForgeRock CIAM Identity Gateway.
Solution designing experience on Sailpoint IIQ modules.
Security audits and assessments. Good understanding in Okta implementations
Develop and enforce IAM policies and procedures to enhance security posture and compliance.
Identity Governance and Architect (IGA) and Privileged Access Management (PAM) tools (Okta, Sailpoint, PingOne Advanced Identity Cloud)
Led the design and implementation of CyberArk's Privileged Access Management (PAM) solutions to safeguard critical assets.
Designed and implemented Single Sign-On (SSO) solutions using SAML, enabling seamless access to multiple applications with a single set of credentials.
Integrated OAuth2 for secure API authorization, allowing third-party applications controlled access to internal resources.
Expertise in Installation, configuration, deployment, and maintenance of the PingFederate, PingOne and
Ping One Accesss. Experienced in installing, configuring SiteMinder policy servers, Web agents, Web Agent
Secure Proxy servers, Pingfederate, Ping One Accesss, ODSEE 11g server (LDAP), Option Packs etc.
Thanks, and Regards!!
Please feel free to contact, if you have any query.