Senior IAM Engineer

Senior Identity and Access Management Engineer Location: Hybrid in the United States.We are seeking a highly skilled and motivated Senior Customer Identity and Access Management (CIAM) Engineer to join our dynamic and fast-paced team. The ideal candidate will have a deep understanding of Identity and Access Management (IAM) principles and extensive hands-on experience with the Ping Identity suite. You will play a crucial role in designing, implementing, and maintaining our CIAM solutions, ensuring a secure and seamless experience for our customers. As a senior member of the team, you will also be responsible for mentoring junior engineers and driving best practices.Key ResponsibilitiesIdentity and Access Management:Manage and administer the full Ping Identity suite, including Ping Federate, Ping Access, Ping Directory, Ping Data Proxy, Ping Data Sync, and Ping Data Governance (now Ping Authorize).Create, manage, and troubleshoot common Ping Components, including, but not limited to, PF IdP & SP adapters & connections, selectors, authentication policies, PA rules, data product CLI tools, topology management, sync pipes, and much moreDeploy, configure, and troubleshoot modern authentication protocols, including OAuth, OIDC, and SAML. Ensure guidelines are being followed through referencing relevant RFC’s.Configure and deploy Multi-Factor Authentication (MFA) solutions to enhance security.Manage the full lifecycle of digital certificates.Engineering and Development:Develop and maintain clean, efficient, and well-documented code and scripts (Java & TypeScript are preferred).Configure and deploy APIs to extend and integrate our CIAM solutions.Work within a DevOps model, contributing to our CI/CD pipelines and automation efforts.Infrastructure and Operations:Operate within a cloud-based infrastructure, with a preference for AWS.Manage and maintain containerized environments.Perform JVM tuning for optimal performance.Ensure high availability and disaster recovery readiness of our CIAM platform.Manage and analyze logs using our logging and monitoring tools.Team and Project Leadership:Work independently, taking ownership of tasks and resolving complex issues.Communicate effectively with internal teams and external customers.Mentor and guide junior engineers, fostering a culture of growth and knowledge sharing.Collaborate with your team in an Agile work environment.Required QualificationsMinimum of 5 years of hands-on experience with the Ping Identity suite.Thorough understanding of Identity and Access Management (IAM) for both enterprise and customer-facing applications.Strong coding and scripting abilities (Java & TypeScript are preferred).Knowledge of System for Cross-domain Identity Management (SCIM).In-depth knowledge of OAuth, OIDC, and SAML.Experience with API configuration and deployment.Strong experience with Linux environments (navigating, tuning, etc.).Excellent problem-solving and communication skills.This position does not require travel.Requires sitting or standing at will while performing work on a computer (or any other physical requirements)Preferred QualificationsSolid understanding of cloud infrastructure (AWS preferred).Experience with containerized environments (e.g., Docker, Kubernetes).Experience with load testing methodologies and tools.Experience with JVM tuning.Any experience with intaking security reports and creating solutions to address those reportsUnderstanding data privacy laws and regulations (e.g., GDPR, CCPA).Experience working in a DevOps culture.Familiarity with Agile methodologies.