Job Title: Senior Security Engineer
Location: Durham, NC (Remote)
Job Description -
· Responsible for the design, installation, configuration, integration, and ongoing support of the systems and integrations that comprise BCNC’s strategic IAM program, with primary ownership/support of the PingOne platform.
· Lead administration and management of PingOne services, including tenant configuration, policy design, and platform optimization.
· Design and implement SSO, OAuth 2.0, and OIDC integrations for enterprise and customer-facing applications within PingOne.
· Configure and manage access policies, authentication flows, and risk-based policies within PingOne.
· Support user lifecycle management (provisioning, deprovisioning, identity synchronization) across PingOne and connected systems.
· Develop and maintain PingOne reporting, metrics, and monitoring capabilities to support operational visibility and security insights.
· Troubleshoot and support complex and critical CIAM services within PingOne.
· Partner closely with business stakeholders, Security Architecture, and IT teams to onboard applications into PingOne and ensure alignment with enterprise security standards.
· Produce and maintain documentation for PingOne configurations, integrations, and operational procedures.
· Prioritize and resolve complex technical issues supporting mission-critical CIAM infrastructure.
Hiring Requirements:
· Bachelor’s degree and 5+ years of information security engineering experience OR 6+ years of equivalent experience
· 5 years’ experience administering and supporting PingOne
o Demonstrated experience with:
o SSO implementations (SAML, OAuth 2.0, OIDC)Identity federation and authentication flows
o Risk-based authentication and policy configuration
o User lifecycle and identity data management
· 3 years’ experience with IAM architecture and integration patterns across cloud and on-prem environments
· 3 years’ experience with security technologies including encryption, network security controls, and system hardening
· 3 years’ experience with complex enterprise environments with distributed systems
· 3 years’ experience with network security in multi-protocol environments (TCP/IP, IPSEC, SSL, HTTP)
· Experience troubleshooting authentication and identity-related issues across multiple systems
· Understanding of change management and version control processes
Hiring Preferences:
· Bachelor’s degree in Computer Security, Computer Science, or Engineering
· 3 years’ experience with PingOne, including administration, troubleshooting, application onboarding, and policy design
· 3 years’ experience with implementing or supporting customer IAM (CIAM) or workforce IAM solutions
· 3 years’ experience with API-based integrations and identity orchestration
· 3 years’ experience developing and maintaining automation/scripting solutions (e.g., PowerShell, APIs) to support provisioning, integrations, and operational efficiency.
· Strong consulting mindset with ability to guide business and technical teams on IAM best practices
· Excellent analytical and problem-solving skills
· Strong communication skills with ability to explain complex IAM concepts to varying audiences
· Proven ability to operate independently and lead technical initiatives
· Attention to detail and commitment to operational excellence
· Professional certifications preferred (CISSP, CISM, Security+, or relevant IAM certifications)