Administrative Skills, Analysis Skills, Application Programming Interface (API), Authentication, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Change Management, Cloud Architecture, Communication Skills, CompTIA Security+, Computer Science, Computer Security, Consulting, Customer Support/Service, Engineering, Enterprise Architecture, Enterprise Protection, HTTP (HyperText Transport Protocol), IPsec (IP Security), Identify Issues, Identity Data Management, Identity Federation, Information/Data Security (InfoSec), Leadership, Metrics, Network Security, OAuth, Onboarding, OpenID, Operations Processes, Problem Solving Skills, Reporting Dashboards, Reporting Skills, Risk, SSL-TLS (Secure Socket Layer - Transport Layer Security), Scripting (Scripting Languages), Security Architecture, Security Assertion Markup Language (SAML), Security Infrastructure, Single Sign-On (SSO), Source Code/Configuration Management (SCM), TCP/IP (Transmission Control Protocol/Internet Protocol), Technical Leadership, Technical Support, Technical Writing, Windows PowerShell
Title: 100% Remote Senior Security Engineer (PingOne IAM)
Contract: 12+
Location: Remote acceptable states, (Alabama, Arizona, Arkansas, Colorado, Florida, Georgia, Idaho, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maryland, Michigan, Mississippi, Missouri, North Carolina, Ohio, Oklahoma, Pennsylvania, South Carolina, South Dakota, Tennessee, Texas, Utah, Virginia, Wisconsin, Wyoming)
Job Description:
Is seeking an experienced Senior Security Engineer to support its strategic Identity and Access Management (IAM) program. This role will serve as the primary technical resource responsible for the administration, design, integration, and ongoing support of the PingOne platform and related IAM solutions.
The ideal candidate will have extensive hands-on experience with PingOne administration, Single Sign-On (SSO), OAuth 2.0, OpenID Connect (OIDC), identity federation, authentication flows, and enterprise IAM architecture. This individual will work closely with Security Architecture, Infrastructure, Application Teams, and Business Stakeholders to implement secure identity solutions across enterprise and customer-facing applications.
Key Responsibilities
- Serve as the primary administrator and technical owner for the PingOne platform.
- Design, configure, and optimize PingOne tenants, authentication policies, and identity services.
- Implement and support Single Sign-On (SSO) integrations using SAML, OAuth 2.0, and OpenID Connect (OIDC).
- Configure authentication flows, identity federation, and risk-based authentication policies.
- Support user lifecycle management, including provisioning, deprovisioning, and identity synchronization.
- Integrate enterprise and customer-facing applications into PingOne.
- Develop reporting, dashboards, monitoring, and operational metrics.
- Troubleshoot complex authentication and identity-related issues.
- Partner with Security Architecture, Infrastructure, Application Teams, and Business Stakeholders to onboard applications into PingOne.
- Produce and maintain technical documentation for integrations, configurations, and operational procedures.
- Lead technical initiatives while supporting change management and production deployments.
Required Qualifications
- Bachelor's degree with 5+ years of Information Security Engineering experience OR 6+ years of equivalent experience.
- Recent hands-on administration and support of PingOne (most important requirement).
- Strong experience implementing and supporting:
- Single Sign-On (SSO)
- SAML
- OAuth 2.0
- OpenID Connect (OIDC)
- Experience configuring:
- Authentication Flows
- Identity Federation
- Risk-Based Authentication
- Experience with:
- User Provisioning
- Deprovisioning
- Identity Synchronization
- Strong understanding of IAM architecture across cloud and on-premise environments.
- Experience supporting enterprise security technologies.
- Strong knowledge of TCP/IP, SSL, IPSEC, and HTTP.
- Experience troubleshooting authentication and identity-related issues.
- Familiarity with change management and version control processes.
Preferred Qualifications
- Bachelor's degree in Computer Science, Computer Security, Engineering, or related field.
- Deep expertise with:
- PingOne Administration
- Application Onboarding
- Policy Design
- Platform Optimization
- Troubleshooting
- Experience supporting Customer IAM (CIAM) or Workforce IAM environments.
- Experience with:
- API Integrations
- Identity Orchestration
- PowerShell
- Automation/Scripting
- Strong consulting mindset with the ability to work directly with business and technical teams.
- Excellent communication, analytical, and problem-solving skills.
- Ability to lead technical initiatives independently.
- Professional certifications preferred:
- CISSP
- CISM
- Security+
- Ping Identity Certifications
Required Technical Skills
- PingOne
- IAM / CIAM
- SSO
- SAML
- OAuth 2.0
- OpenID Connect (OIDC)
- Identity Federation
- Authentication Policies
- Risk-Based Authentication
- User Provisioning
- Identity Synchronization
- API Integrations
- PowerShell
- Enterprise Security
- Network Security
- TCP/IP
- SSL
- IPSEC
- HTTP
- Change Management
- Version Control
Must-Have Skills
- Recent hands-on PingOne administration experience (most important requirement)
- Strong SSO implementation experience (SAML, OAuth 2.0, OIDC)
- IAM/CIAM architecture and integration experience
- Identity federation and authentication policy configuration
- User lifecycle management (Provisioning, Deprovisioning, Identity Synchronization)
- Enterprise security engineering experience
- Strong troubleshooting experience supporting mission-critical IAM infrastructure
- Must reside in one of BCNC's approved 28 states (Virginia, North Carolina, or South Carolina strongly preferred)
- Remote position
Thanks
Gaurav
gaurav@dmsvisions.com
972-645-9280