PingOne Advanced Identity Cloud (Legacy ForgeRock Identity Cloud) Architect

Remote Full-time
About Us

Hub City Media was established in 1999 as a premier Identity and Access Management (IAM) consultancy. We provide a full suite of services, including expert advice, implementation assistance, and managed cloud solutions. Our team is dedicated to serving clients worldwide, offering support and expertise across all time zones.

Job Description

We are seeking a skilled and experienced PingOne Advanced Identity Cloud Architect to design, implement, and manage scalable identity and access management (IAM) solutions. In this role, you will architect secure and efficient identity systems based on PingOne Advanced Services, ensuring robust identity governance, single sign-on (SSO), multi-factor authentication (MFA), and API security for enterprise-level clients.

You will collaborate closely with cross-functional teams, including security, IT, and application development, to deliver seamless user authentication, access control, and identity federation solutions. Your expertise will be pivotal in driving IAM strategies that align with business needs while ensuring the highest standards of security and compliance.

Essential Duties & Responsibilities
• Architect & Design: Lead the design and architecture of secure identity solutions using PingOne Advanced Identity Cloud services, integrating with existing enterprise systems and applications.
• Implementation: Deploy, configure, and optimize PingOne IAM solutions including SSO, MFA, OAuth, OIDC, and other identity protocols.
• Integration: Collaborate with development and DevOps teams to ensure smooth integration of identity services with APIs, applications, and cloud environments (e.g., AWS, Azure, GCP).
• Identity Federation: Design and implement federated identity services and external identity provider integrations (e.g., SAML, SCIM, OIDC) to support external partners, customers, and employees.
• Security & Compliance: Ensure that IAM solutions comply with security best practices, data privacy regulations (e.g., GDPR, CCPA), and industry standards such as SOC 2 and ISO 27001.
• Continuous Improvement: Stay updated on the latest IAM trends, tools, and best practices, continually enhancing the architecture to meet evolving business needs.
• Troubleshooting & Support: Provide Tier 3 support for complex identity-related issues, troubleshoot integration problems, and resolve security vulnerabilities.
• Documentation & Training: Develop and maintain detailed architectural documentation, workflows, and technical specifications. Conduct training sessions for IT and security teams on best practices in identity management.
• Collaboration: Work closely with business stakeholders, project managers, and product owners to align identity management strategies with overall business objectives.

Required Qualifications:
• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 10+ years of experience in Identity and Access Management (IAM), with at least 3+ years of experience working specifically with Ping Identity solutions (PingOne Advanced Identity Cloud, PingIDM, PingAM, PingDS, PingGateway, etc.).
• Proven experience in architecting identity solutions in cloud environments (AWS, Azure, GCP) and integrating with cloud-native applications.
• Strong knowledge of IAM standards and protocols, including SAML, OAuth, OpenID Connect (OIDC), SCIM, and LDAP.
• Proficiency in securing APIs and microservices using OAuth 2.0 and OIDC.
• Solid understanding of enterprise security practices, zero trust architectures, and identity governance.
• Hands-on experience with identity federation and external identity provider configurations.
• Strong troubleshooting skills, with the ability to analyze and resolve complex identity and security issues.
• Excellent communication skills with the ability to work with technical and non-technical stakeholders.

Preferred Qualifications:
• Ping Identity certifications (e.g., Ping Advanced Identity Cloud, ForgeRock Identity Cloud, Ping Accredited Mentor, Ping Accredited Consultant, etc. ).
• Experience with DevOps practices and tools (e.g., CI/CD pipelines, Terraform, Docker, Kubernetes).
• Familiarity with NIST, SOC 2, ISO 27001, and other security frameworks.
• Experience with directory services such as Active Directory (AD) or Azure AD.
• Knowledge of privacy regulations like GDPR and CCPA.

Job Type: Full-time

Pay: $100,000.00 - $175,000.00 per year

Benefits:
• 401(k)
• 401(k) matching
• Dental insurance
• Employee assistance program
• Flexible schedule
• Flexible spending account
• Health insurance
• Health savings account
• Life insurance
• Paid time off
• Professional development assistance
• Referral program
• Retirement plan
• Vision insurance

Schedule:
• 8 hour shift

Application Question(s):
• Do you have any Ping Identity certifications (e.g., Ping Advanced Identity Cloud, Ping Accredited Mentor, Ping Accredited Consultant?

Experience:
• designing and architecting using PingOne AIC services: 3 years (Preferred)
• Identity and Access Management: 10 years (Required)
• PingOne Advanced Identity Cloud (ForgeRock Identity Cloud): 3 years (Required)
• PingOne Advanced Identity Cloud or Forgerock Identity Cloud: 3 years (Required)

License/Certification:
• Ping Identity certifications (Preferred)
• Certified Professional-PingOne Advanced Identity Cloud (Preferred)

Work Location: Remote

Apply Now

Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

Forklift Technician - Equipment Mechanic

Remote

Experienced Customer Service Representatives – Remote Work from Home Opportunities with blithequark for Delivering Exceptional Support and Driving Customer Satisfaction

Remote

Senior MLOps/AI Engineer

Remote

Senior Online Chat Marketing Specialist – Customer Engagement Strategy & Digital Channel Development

Remote

Experienced Virtual Customer Support Representative - Doordash Remote Careers (Multiple Locations)

Remote

Paraeducator - Special Education Support Professional for Students with Diverse Needs - Immediate Hiring for 2023-2024 School Year

Remote

[Remote] PBM Data Analyst

Remote

[Hiring] Registered Nurse (RN)- Oncology Telephone Triage @University Hospitals

Remote

Account Services Manager, Professional Education Hub

Remote

Income Tax Manager

Remote
← Back