PingOne Advanced Identity Cloud (Legacy ForgeRock Identity Cloud) Architect
About Us
Hub City Media was established in 1999 as a premier Identity and Access Management (IAM) consultancy. We provide a full suite of services, including expert advice, implementation assistance, and managed cloud solutions. Our team is dedicated to serving clients worldwide, offering support and expertise across all time zones.
Job Description
We are seeking a skilled and experienced PingOne Advanced Identity Cloud Architect to design, implement, and manage scalable identity and access management (IAM) solutions. In this role, you will architect secure and efficient identity systems based on PingOne Advanced Services, ensuring robust identity governance, single sign-on (SSO), multi-factor authentication (MFA), and API security for enterprise-level clients.
You will collaborate closely with cross-functional teams, including security, IT, and application development, to deliver seamless user authentication, access control, and identity federation solutions. Your expertise will be pivotal in driving IAM strategies that align with business needs while ensuring the highest standards of security and compliance.
Essential Duties & Responsibilities
?? Architect & Design: Lead the design and architecture of secure identity solutions using PingOne Advanced Identity Cloud services, integrating with existing enterprise systems and applications.
?? Implementation: Deploy, configure, and optimize PingOne IAM solutions including SSO, MFA, OAuth, OIDC, and other identity protocols.
?? Integration: Collaborate with development and DevOps teams to ensure smooth integration of identity services with APIs, applications, and cloud environments (e.g., AWS, Azure, GCP).
?? Identity Federation: Design and implement federated identity services and external identity provider integrations (e.g., SAML, SCIM, OIDC) to support external partners, customers, and employees.
?? Security & Compliance: Ensure that IAM solutions comply with security best practices, data privacy regulations (e.g., GDPR, CCPA), and industry standards such as SOC 2 and ISO 27001.
?? Continuous Improvement: Stay updated on the latest IAM trends, tools, and best practices, continually enhancing the architecture to meet evolving business needs.
?? Troubleshooting & Support: Provide Tier 3 support for complex identity-related issues, troubleshoot integration problems, and resolve security vulnerabilities.
?? Documentation & Training: Develop and maintain detailed architectural documentation, workflows, and technical specifications. Conduct training sessions for IT and security teams on best practices in identity management.
?? Collaboration: Work closely with business stakeholders, project managers, and product owners to align identity management strategies with overall business objectives.
Required Qualifications: ?? Bachelor??s degree in Computer Science, Information Technology, Cybersecurity, or a related field. ?? 10+ years of experience in Identity and Access Management (IAM), with at least 3+ years of experience working specifically with Ping Identity solutions (PingOne Advanced Identity Cloud, PingIDM, PingAM, PingDS, PingGateway, etc.). ?? Proven experience in architecting identity solutions in cloud environments (AWS, Azure, GCP) and integrating with cloud-native applications. ?? Strong knowledge of IAM standards and protocols, including SAML, OAuth, OpenID Connect (OIDC), SCIM, and LDAP. ?? Proficiency in securing APIs and microservices using OAuth 2.0 and OIDC. ?? Solid understanding of enterprise security practices, zero trust architectures, and identity governance. ?? Hands-on experience with identity federation and external identity provider configurations. ?? Strong troubleshooting skills, with the ability to analyze and resolve complex identity and security issues. ?? Excellent communication skills with the ability to work with technical and non-technical stakeholders.
Preferred Qualifications: ?? Ping Identity certifications (e.g., Ping Advanced Identity Cloud, ForgeRock Identity Cloud, Ping Accredited Mentor, Ping Accredited Consultant, etc. ). ?? Experience with DevOps practices and tools (e.g., CI/CD pipelines, Terraform, Docker, Kubernetes). ?? Familiarity with NIST, SOC 2, ISO 27001, and other security frameworks. ?? Experience with directory services such as Active Directory (AD) or Azure AD. ?? Knowledge of privacy regulations like GDPR and CCPA.
Job Type: Full-time
Pay: $100,000.00 - $175,000.00 per year
Benefits:
?? 401(k)
?? 401(k) matching
?? Dental insurance
?? Employee assistance program
?? Flexible schedule
?? Flexible spending account
?? Health insurance
?? Health savings account
?? Life insurance
?? Paid time off
?? Professional development assistance
?? Referral program
?? Retirement plan
?? Vision insurance
Schedule:
?? 8 hour shift
Application Question(s):
?? Do you have any Ping Identity certifications (e.g., Ping Advanced Identity Cloud, Ping Accredited Mentor, Ping Accredited Consultant?
Experience:
?? designing and architecting using PingOne AIC services: 3 years (Preferred)
?? Identity and Access Management: 10 years (Required)
?? PingOne Advanced Identity Cloud (ForgeRock Identity Cloud): 3 years (Required)
?? PingOne Advanced Identity Cloud or Forgerock Identity Cloud: 3 years (Required)
License/Certification:
?? Ping Identity certifications (Preferred)
?? Certified Professional-PingOne Advanced Identity Cloud (Preferred)
Work Location: Remote
Apply Job!