ForgeRock Architect

Remote • Posted 16 hours ago • Updated 16 hours ago
Contract W2
Contract Independent
24 Months
No Travel Required
Remote
$55 - $63/hr
Fitment

Dice Job Match Score™

🛠️ Calibrating flux capacitors...

Job Details

Skills

  • API
  • Access Control
  • Authorization
  • Amazon Web Services
  • AppDynamics
  • Continuous Delivery
  • Authentication
  • Banking
  • Cyber Security
  • Cloud Computing
  • Continuous Integration
  • DirectShow
  • Customization
  • DS
  • Good Clinical Practice
  • Database
  • Google Cloud Platform
  • DevOps
  • High Availability
  • Directory Services
  • Docker
  • Information Governance
  • Groovy
  • HIPAA
  • IT Strategy
  • LDAP
  • Identity Management
  • Java
  • Mentorship
  • JavaScript
  • Microservices
  • Kubernetes
  • Multi-factor Authentication
  • Leadership
  • Management
  • Microsoft Azure
  • Migration
  • RBAC
  • OAuth
  • Root Cause Analysis
  • OIDC
  • SCA
  • Performance Tuning
  • Security Engineering
  • Provisioning
  • Roadmaps
  • Splunk
  • SAML
  • Soft Skills
  • SSO
  • Writing
  • Solution Architecture
  • Workflow
  • Stacks Blockchain

Summary



Role Overview

As a ForgeRock Architect, you will own the end-to-end technical strategy, design, and architecture for our enterprise Identity and Access Management (IAM) and Customer Identity (CIAM) ecosystems. You will bridge the gap between business risk and cutting-edge security engineering—leading cloud modernization strategies, defining identity lifecycles, and converting legacy stacks into unified, secure, standards-based identity experiences.


Responsibilities:

·     Design and lead high-availability (HA), multi-region architectures leveraging the full ForgeRock stack (AM, IDM, DS, IG) and PingOne Advanced Identity Cloud (AIC).

·      Architect and implement complex, risk-based user journeys using ForgeRock Intelligent Access Trees, multi-factor authentication (MFA), and adaptive/contextual access control.

·    Define enterprise standards for Single Sign-On (SSO), Identity Federation, and Fine-Grained Authorization using OAuth 2.0, OpenID Connect (OIDC), and SAML 2.0.

·     Oversee Identity Management (IDM) workflow development, user provisioning, role-based access control (RBAC), and directory schema customization on ForgeRock Directory Services (DS).

·      Drive modern deployment strategies using ForgeOps, Kubernetes, Docker, and CI/CD pipelines across public cloud landscapes (AWS, Azure, or Google Cloud Platform).

·      Act as the ultimate technical authority for IAM troubleshooting, performance tuning, and database/platform migrations while mentoring a dedicated team of IAM engineers.


Required Skills & Experience

Technical Expertise

·      8+ years in Cybersecurity/IAM, with at least 4+ years of dedicated hands-on experience designing and implementing ForgeRock solutions.

·      Proficient in configuring and extending ForgeRock Access Management (AM), Identity Management (IDM), Directory Services (DS), and Identity Gateway (IG).

·      Mastery of modern federation frameworks: SAML 2.0, OAuth 2.0, OIDC, SCIM, and LDAP.

·      Strong experience writing customized authentication nodes and custom workflows using JavaScript, Java, or Groovy script.

·     Solid grounding in microservices infrastructure (Docker, Kubernetes) and deploying cloud-hosted IAM stacks.


Soft Skills & Leadership

·     Proven ability to translate complex security requirements into clear, scannable roadmaps for C-suite Executives and business owners.

·      Advanced root-cause analysis skills using enterprise monitoring and logging tools (e.g., Splunk, AppDynamics).


Preferred Qualifications and certifications: 

·      Experience migrating on-premise ForgeRock legacy workloads to PingOne Advanced Identity Cloud (AIC).

·      ForgeRock / Ping Identity Certifications (e.g., ForgeRock Certified Access Management Specialist or Architect).

·      Background designing IAM solutions within strictly regulated frameworks (e.g., Open Banking/SCA, HIPAA, GDPR).

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 91163556
  • Position Id: 9013244
  • Posted 16 hours ago
Contact the job poster
JK

John Kumar

Recruiter @ kjohn@samrusystems.com
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Remote or San Francisco, California

Today

Full-time

USD 174,000.00 - 312,180.00 per year

Remote or Dallas, Texas

Today

Full-time

Remote or California

Today

Full-time

USD 170,900.00 - 227,900.00 per year

Remote or California

Today

Full-time

USD 180,000.00 - 220,000.00 per year

Search all similar jobs