Sr Security / IAM Engineer (PingOne)

Mindlance

Durham, NC(remote)

JOB DETAILS
SKILLS
Analysis Skills, Application Programming Interface (API), Authentication, Best Practices, Business Skills, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Change Management, Cloud Computing, Communication Skills, CompTIA Security+, Computer Science, Computer Security, Consulting, Cryptography, Customer Relations, Customer Support/Service, Detail Oriented, Distributed Computing, Documentation, Engineering, Enterprise Protection, Environmental Monitoring, Establish Priorities, HTTP (HyperText Transport Protocol), IAM - Information Assurance Management, IPsec (IP Security), Identify Issues, Identity Data Management, Identity Federation, Information/Data Security (InfoSec), Metrics, Network Security, OAuth, Onboarding, Operational Support, Operations Processes, Operations Security (OPSEC), Problem Solving Skills, Risk, SSL-TLS (Secure Socket Layer - Transport Layer Security), Scripting (Scripting Languages), Security Architecture, Security Assertion Markup Language (SAML), Single Sign-On (SSO), Source Code/Configuration Management (SCM), System Integration (SI), System Migration, TCP/IP (Transmission Control Protocol/Internet Protocol), Technical Leadership, Technical Support, Windows PowerShell
LOCATION
Durham, NC(remote)
POSTED
3 days ago
100% Remote in the 28 states - North Carolina, Alabama, Arizona, Arkansas, Colorado, Florida, Georgia, Idaho, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maryland, Michigan, Mississippi, Missouri, Ohio, Oklahoma, Pennsylvania, South Carolina, South Dakota, Tennessee, Texas, Utah, Virginia, Wisconsin, and Wyoming will be allowed to maintain their current residence and work remotely.

Screening questions?
What operational gaps have you seen in PingOne environments (Monitoring, logging, change mangement), and how did you improve them?


Required Skills: Hands on PingOne Cloud Exp - SSO Implementations (SAML, OAuth 2.0, OIDC) Identity Federation and authentication flows. Risk and based authentication and policy config.

Nice to have Skills: AD Exp, takes intiative finds where they need to help and jumps in before being asked
Years of Experience: 5-8 years exp

Breakdown of Duties/Typical Day: Migrating exteneral customer facing portals into a new system. Production migration towards the end of the year. Will be a
SME in PingOne to be able to help with the platform. Will be doing troubleshooting, training, onboarding, and policy design.


Description:
  • Responsible for the design, installation, configuration, integration, and ongoing support of the systems and integrations that comprise strategic IAM program, with primary ownership/support of the PingOne platform.
  • Lead administration and management of PingOne services, including tenant configuration, policy design, and platform optimization.
  • Design and implement SSO, OAuth 2.0, and OIDC integrations for enterprise and customer-facing applications within PingOne.
  • Configure and manage access policies, authentication flows, and risk-based policies within PingOne.
  • Support user lifecycle management (provisioning, deprovisioning, identity synchronization) across PingOne and connected systems.
  • Develop and maintain PingOne reporting, metrics, and monitoring capabilities to support operational visibility and security insights.
  • Troubleshoot and support complex and critical CIAM services within PingOne.
  • Partner closely with business stakeholders, Security Architecture, and IT teams to onboard applications into PingOne and ensure alignment with enterprise security standards.
  • Produce and maintain documentation for PingOne configurations, integrations, and operational procedures.
  • Prioritize and resolve complex technical issues supporting mission-critical CIAM infrastructure.

Hiring Requirements:

  • Bachelor s degree and 5+ years of information security engineering experience OR 6+ years of equivalent experience
  • Hands-on experience administering and supporting PingOne
    • Demonstrated experience with:
    • SSO implementations (SAML, OAuth 2.0, OIDC)Identity federation and authentication flows
    • Risk-based authentication and policy configuration
    • User lifecycle and identity data management
  • Strong understanding of IAM architecture and integration patterns across cloud and on-prem environments
  • Proficiency with security technologies including encryption, network security controls, and system hardening
  • Experience in complex enterprise environments with distributed systems
  • Knowledge of network security in multi-protocol environments (TCP/IP, IPSEC, SSL, HTTP)
  • Experience troubleshooting authentication and identity-related issues across multiple systems
  • Understanding of change management and version control processes


Hiring Preferences:

  • Bachelor s degree in Computer Security, Computer Science, or Engineering
  • Deep expertise with PingOne, including administration, troubleshooting, application onboarding, and policy design
  • Experience implementing or supporting customer IAM (CIAM) or workforce IAM solutions
  • Familiarity with API-based integrations and identity orchestration
  • Experience developing and maintaining automation/scripting solutions (e.g., PowerShell, APIs) to support provisioning, integrations, and operational efficiency.
  • Strong consulting mindset with ability to guide business and technical teams on IAM best practices
  • Excellent analytical and problem-solving skills
  • Strong communication skills with ability to explain complex IAM concepts to varying audiences
  • Proven ability to operate independently and lead technical initiatives
  • Attention to detail and commitment to operational excellence
  • Professional certifications preferred (CISSP, CISM, Security+, or relevant IAM certifications)
EEO:
Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans.

About the Company

M

Mindlance