ForgeRock IGA Engineer

Overview

On Site
Accepts corp to corp applications
Contract - Independent
Contract - W2
Contract - Long Term

Skills

Forgerock
IGA
OpenAM

Job Details

Title: ForgeRock IGA Engineer

Location: Charlotte, NC (Onsite)
Duration: Long Term Contract

Must Have: ForgeRock IGA, SailPoint IdentityIQ, ForgeRock Configuration, Development, IAM Lifecycle Management, Finance domain background

Job Description:

  • 5+ year of experience in ForgeRock with 2+ year on ForgeRock IGA
  • Configure and manage/Install ForgeRock OpenAM, OpenDJ, OpenIG and OpenIDM.
  • Must have a thorough understanding and work experience for Single Sign-On, Identity Governance, Access management, Identity Federation, Multi-factor authentication.
  • Deep expertise in ForgeRock IAM suite.
  • Hands-On experience with ForgeRock customization, writing scripts and developing code to fetch assertion values form multiple data sources, writing connectors, rules, policies.
  • Experience with ForgeRock AM for implementing single sign-on (SSO) and access management solutions.
  • Experience with ForgeRock OpenIDM (Identity management) system for On-time provisioning / deprovisioning.
  • Should have good developer skills - JavaScript , Groovy , Java.
  • Hands-on Experience in installing, configuring, creating Routes/handlers in ForgeRock IG.
  • Hand-on Experience in automating ForgeRock IDM deployments using Terraform and Ansible.
  • Strong knowledge of designing and implementing workflows, approval processes, and certification processes within IAM.

SailPoint:

  • Onboard and integrate enterprise applications using various SailPoint connectors (e.g., JDBC, LDAP, AD, Web Services, AzureAD).
  • Experience ServiceNow integration and Catalog configuration.
  • Develop custom rules, workflows, and scripts in SailPoint IdentityIQ to automate identity lifecycle processes.
  • Experience on REST API.
  • Design and implement multi-level approval workflows to streamline access request processes.
  • Configure Lifecycle Events (Joiner, Mover, Leaver) to automate identity lifecycle management.
  • Implement provisioning policies and certification processes to maintain compliance.
  • Troubleshoot and resolve production issues related to IdentityIQ.
  • Perform root cause analysis and implement fixes for system stability. Monitor SailPoint logs and debug issues efficiently.
  • Develop and maintain ServiceNow catalog items for automated provisioning.
  • Manage SailPoint deployments using SSB (Service Standard Build) or SSD (Service Standard Deployment).
  • Maintain GitHub repositories for version control, ensuring proper code management and deployment processes.
  • Work closely with cross-functional teams (security, infrastructure, development) to implement and support SailPoint solutions.
  • Document workflows, configurations, and best practices for future reference.
  • Implement custom APIs for enhanced integration and system functionality.

Required Skills & Qualifications:

Experience in SailPoint IdentityIQ development and implementation.

Strong experience in application onboarding, lifecycle management (LCM), and provisioning.

Expertise in Java, JavaScript, and SQL for customization and rule development.

Hands-on experience in developing custom rules, workflows, and email templates (Velocity scripting).

Experience with GitHub for version control and SailPoint deployments.

Strong debugging skills to resolve production issues and troubleshoot IdentityIQ logs.

Experience in ServiceNow integration and catalog development.

Knowledge of RBAC, access certification, and authentication mechanisms (SSO, MFA).

Good understanding of identity governance, compliance, and security best practices.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.