Architecture / PING Identity / OIDC / JAVA / Graph QL / Authentication

Bachelor's in Computer Science, Computer Engineering, Technology , Information Systems (CIS/MIS), Engineering or related technical discipline, or equivalent experience/training
10+ years architectural and design experience
Top 3 Mandatory Requirements:
Ping Identity, OIDC, Authentication, JAVA, Graph QL

Nice to have skills:
Java, Spring Boot, GraphQL, Airline Domain Knowledge
Proven track record of implementing federated identity solutions in large-scale environments.
Hands-on experience integrating identity platforms with modern applications and legacy systems.

Best Candidate for this role:
Core Expertise: Identity and Access Management (IAM), API Architecture, and Enterprise Integration
Technical Skills
Ping Identity Suite:
o PingFederate: Deep experience in configuring and managing SSO, federation protocols (SAML, OAuth, OIDC), and token services.
o PingDirectory: Expertise in LDAP directory services, schema design, and high-availability deployments.
o PingOne: Familiarity with cloud-based identity
solutions, adaptive authentication, and integration with enterprise apps.
Identity Standards & Protocols:
o Strong knowledge of OIDC, OAuth 2.0, and SAML for secure authentication and authorization flows.
Application Development:
o Proficient in Java and Spring Boot for building scalable microservices.
o Experience designing and implementing GraphQL APIs for flexible data querying and integration.
Architecture & Design:
o Ability to design enterprise-grade IAM solutions that integrate with heterogeneous systems.
o Skilled in API security, token lifecycle management, and zero-trust principles.
Cloud & DevOps:
o Familiarity with containerization (Docker/Kubernetes), CI/CD pipelines, and cloud platforms (Azure).

Oversees and contributes to the technical approach of application design
Collaborates with developers to guide the architecture approach for the Functional and Technical Design; reviews, revises, and approves the content of these design documents
Creates required documents to support technical application architecture, vision, strategy, standards, policies, and presentations
Continually contributes technical input and responses in meetings and discussions in order to support the best application architecture
Escalates technical issues when needed to keep project on track and minimize risk
Creates, maintains, and communicates application architecture standards and procedures related to design, development, and other associated activities
Reviews Business Requirements documents and where applicable, offers alternative best-practice solutions prior to start of design
Reviews source code changes and/or unit test cases when applicable (i.e. where design, coding or project can involve high risk).
Provides technical assistance and feedback, as needed, related to the M&E application and its architecture
Consults and advises resources for related application architecture and infrastructure services and technologies
Applies appropriate technology to reduce costs and/or improve productivity resulting in value to the company
Maintains an effective approach on problem solving, multi-tasking, coordinating, and scheduling in accordance with stated goals to ensure visibility and predictability
Influences and empowers team members for growth and independence
Consistently demonstrates a positive, professional, leadership attitude and frame of mind when working with and communicating with others

Additional Job Description details:
Architect and Design Solutions
Define and maintain the overall architecture for identity and access management (IAM) systems using PingFederate, PingDirectory, and PingOne.
Design secure authentication and authorization flows leveraging OIDC, OAuth 2.0, and SAML.
Develop and Integrate Applications
Build and maintain microservices using Java and Spring Boot.
Design and implement GraphQL APIs for flexible data access and integration with enterprise systems.
Identity Platform Management
Configure and optimize Ping Identity products for high availability and scalability.
Implement token services, federation, and directory synchronization across multiple environments.
Security and Compliance
Ensure IAM solutions meet security best practices and compliance requirements (e.g., GDPR, SOC2).
Conduct regular audits and reviews of authentication flows and API security.
Collaboration and Leadership
Work closely with product teams, developers, and security engineers to align architecture with business needs.
Mentor junior engineers and provide technical guidance on IAM and API design.
Performance and Reliability
Monitor system performance and troubleshoot complex integration issues.
Drive improvements in scalability, resilience, and fault tolerance of identity services.
Innovation and Continuous Improvement
Research emerging IAM technologies and recommend enhancements.
Contribute to architectural standards and best practices for identity and API security.
Documentation and Governance
Maintain detailed architecture diagrams, technical documentation, and integration guidelines.
Participate in architecture review boards and governance processes.