IAM Support Engineer (Ping, Siteminder, Daon)

Vienna, VA

Full Remote  -  IT - Security  -  Contract  -  Job ID: 24-02327

Title: IAM Support Engineer (Ping, Siteminder, Daon)
Location: 100% Remote
Duration: Initial 6 month duration, with potential extensions
Compensation: $60.00/hour – $80.00/hour
Work Requirements: US Citizen, GC Holders or Authorized to Work in the U.S.
 
Skillset / Experience:
To research, evaluate, design, implement, and maintain system and product solutions, applying knowledge of engineering principles related to Client Identity Access, Authorization, and Authentication (IAM). To provide technical direction, engineering support for projects, and infrastructure build for IAM solutions. Develop and maintain a working knowledge of evolving IT engineering industry technologies/competition, vendors, concepts, and trends directly related to Identity, Authorization, and Authentication for business to client (E.g., client's Online Banking and other channels).

Responsibilities:

  • Drives future strategies for enterprise MIAM systems and processes by collaborating with internal business units, external partners & vendors to enhance member experience and ensure flexible and scalable architecture.
  • Provides forward-looking industry perspectives, established and emerging product and technology reviews, and sets best practices across Member IAM solutions.
  • Serve as Subject Matter Experts (SME) in Member/Customer Identity & Access Management (CIAM) and fraud prevention via multiple member-facing channels including ATMBranchContact CenterDigital (Online & Mobile App).
  • Drives the modernization and implementation of Multi-Factor Authentication (MFA, Passwordless, and other emerging Technologies and methodologies.
  • Ability to administer and provide support for IAM applications such as ForgeRock,  RSA, Daon, Ping, Azure, and SiteMinder components (e.g., Policy Servers, Databases, and Directories).
  • Design, develop, and maintain Java-based custom-developed authentication journeys using the ForgeRock IAM platform to ensure secure and seamless user authentication and access control. 
  • Collaborate with the DevOps team to deploy and manage ForgeRock IAM instances in production and non-production environments. 
  • Participate in code reviews and provide constructive feedback to team members to maintain code quality and consistency. 
  • Experience in setup, configuration, and management of Policy servers, Web agents, Secure Proxy Servers, and Federation.
  • Develop and support federations with internal systems and external organizations.
  • Implement changes through multiple environments utilizing the Change Management process.
  • Develop project plans, scope, schedule, and clear and concise communications.
  • Apply engineering principles to the design and enhancement of new and existing systems.
  • Document new system components or modifications to existing components.
  • Ensure the security and integrity of system and product solutions, including compliance with client, industry engineering, and Information Security principles and practices.
  • Present clear, organized, and concise information to all audiences through a variety of media to enable effective business decisions.
  • Perform engineering tasks and assignments in support of business needs.
  • Perform engineering technology research, procurement, deployment, and configuration for new and modified systems.
  • Perform other duties as assigned. 

Qualifications (all required unless otherwise noted):

  • Experience that demonstrates a strong knowledge and skill of information security technology focusing on IAM Applications (e.g., ForgeRock, RSA, Daon, PingFederate, Azure, SiteMinder, etc.).
  • Experience and expert knowledge of PingFederate OAuth and OIDC protocols. 
  • Experience and expert knowledge utilizing PingFederate authorization and dynamic client registration DCR to protect APIs.
  • Experience supporting, maintaining, and upgrading the PingFederate authorization cluster.
  • Experience deploying ForgeRock on Azure Kubernetes Service (AKS).
  • Experience supporting multiple IAM environments. Must be confident in implementing, configuring, managing, and deploying IAM products.
  • Experience and expert knowledge of information security analysis and design techniques.
  • Effective understanding of data security practices and procedures, including systems analysis, authentication technologies, and access controls. Priorities will be given to those with expert knowledge and skill in UNIX/Linux system administration and scripting, Identity Federations, SAML, JBoss, and Directory Services/LDAP.
  • Effective experience in project planning and time management skills.
  • Strong planning and organization skills.
  • Strong research, analytical, and problem-solving skills.
  • Strong verbal, written, and interpersonal communication skills, including proficiency in negotiating and persuading others.
  • Ability to present findings and conclusions clearly and concisely.

Desired:

  • Bachelor's Degree in business, information technology, or related fields.
  • CISSP, CISA, CCSP, or other related Information Security certifications.
  • MBA, Master's Degree, PMP, MSCE/MCITP, Linux certifications.
  • Experience with Agile methodologies (e.g., SAFe).
  • Experience with multiple authentication protocols, including SAML, OAuth, and OpenID. 
  • Experience with CA SiteMinder components, policy servers, databases, and directories.
  • Experience with Ping Identity products.
  • Experience with Azure Active Directory Federation.
  • Experience with Kubernetes and Docker services.
  • Knowledge of the financial services industry.
  • Experience with the Daon IdentityX Platform.
  • Experience with Ansible, Splunk, and RHEL.
  • Strong experience with automated testing for Azure DevOps (ADO) pipelines using Java.
  • Experience leveraging several libraries and frameworks with tools such as NeoLoad, Selenium, or RestAssured

Hours: Monday – Friday; 8:00 am – 4:30 pm EST
 
Our benefits package includes: 

  • Comprehensive medical benefits
  • Competitive pay 
  • 401(k) retirement plan
  • …and much more!

About INSPYR Solutions
Technology is our focus and quality is our commitment. As a national expert in delivering flexible technology and talent solutions, we strategically align industry and technical expertise with our clients’ business objectives and cultural needs. Our solutions are tailored to each client and include a wide variety of professional services, project, and talent solutions. By always striving for excellence and focusing on the human aspect of our business, we work seamlessly with our talent and clients to match the right solutions to the right opportunities. Learn more about us at inspyrsolutions.com.
 
INSPYR Solutions provides Equal Employment Opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, INSPYR Solutions complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities.
 

24-02327

MORE OPPORTUNITIES

APPLY NOW

TAKE THE NEXT STEP.