TekJobs - Easiest way to find your next right candidate

3 Days Ago

Offered Rate 100000-115000 per Annum + Benefits

Tax Type Yearly

Work location Jacksonville Beach-FL

Experience 7-40 Years

Note: This role is not open for C2C/C2H/1099 or any contract arrangements

Job Description

CISO Technical Lead – SSO Engineer

Services:

Drive development and execution strategies for the secure separation, migration, and integration of PingFederate instances, configurations, and associated identity stores for divested business units.
Plan and implement identity federation solutions to support application access for users transitioning between organizations, ensuring minimal disruption.
Manage the lifecycle of federated trusts, connections, and identity providers/service providers in the context of divestiture, including onboarding and offboarding applications.

Design, deploy, configure, and maintain high-availability PingFederate environments across various enterprise landscapes.
Administer PingFederate connections, policies, adapters, selectors, and authentication methods (e.g., SAML, OAuth, OIDC).
Troubleshoot complex SSO authentication, authorization, and federation issues to ensure continuous service availability.

Integrate PingFederate with various identity stores such as Active Directory, Azure Active Directory, and LDAP directories.
Collaborate with application owners to onboard new applications and migrate existing ones to the PingFederate SSO platform.
Ensure seamless integration with Multi-Factor Authentication (MFA) solutions.

Implement and enforce security best practices and architectural guidelines for identity federation and SSO solutions.
Ensure that SSO configurations comply with corporate security policies, regulatory requirements, and data governance standards during the divestiture process.
Conduct regular security reviews and vulnerability assessments of the PingFederate environment.

Provide expert-level support for SSO-related incidents and requests, often collaborating with cross-functional IT and security teams.
Develop and maintain comprehensive documentation, architectural diagrams, runbooks, and standard operating procedures (SOPs) for the SSO infrastructure.

Deliverables:

Required Skills/Expertise:

Bachelor’s degree in computer science, Information Security, or a related technical field, or equivalent practical experience.
5+ years of dedicated experience in Identity and Access Management (IAM), with at least 3 years focused specifically on SSO technologies.
Proficiency in designing, implementing, and managing PingFederate in large-scale enterprise environments.
Understanding and hands-on experience with identity federation protocols such as SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
Experience integrating SSO solutions with various applications and identity stores (e.g., Active Directory, Azure AD, LDAP).
Proficiency in scripting languages (e.g., PowerShell, Python) for automation and administration tasks.
Excellent analytical, problem-solving, and communication skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.
Required: English fluency (oral and written).

Benefits Overview

Discretionary Annual Incentive.
Comprehensive Medical Coverage: Medical & Health, Dental & Vision, Disability Planning & Insurance, Pet Insurance Plans.
Family Support: Maternal & Parental Leaves.
Insurance Options: Auto & Home Insurance, Identity Theft Protection.
Convenience & Professional Growth: Commuter Benefits & Certification & Training Reimbursement.
Time Off: Vacation, Time Off, Sick Leave & Holidays.
Legal & Financial Assistance: Legal Assistance, 401K Plan, Performance Bonus, College Fund, Student Loan Refinancing