Senior Identity and Access Management (IAM) Engineer

Job Description

Job Details:

Job Title: IAM Engineer

Duration: Long Term Contract

Location: Alpharetta, GA || Onsite

Job Description:

• We are seeking a Senior Identity and Access Management (IAM) Engineer with deep expertise in Ping Identity solutions and AWS architecture.
• This role is a 50/50 mix of design and hands-on development, requiring someone who can lead complex IAM projects, guide the team, and execute independently.
• The primary focus will be Customer Identity and Access Management (CIAM), integrating third-party and B2B applications using Ping as the core infrastructure.

Key Responsibilities

• Design and build IAM solutions leveraging PingFederate, PingDirectory, and PingOne.
• Implement OIDC/OAuth protocols and manage secure token exchange.
• Develop and deploy complex AWS-based architectures, including Lambda, Kafka, OpenSearch, and Terraform for automation.
• Onboard third-party and partner applications into CIAM systems.
• Collaborate on PingOne DaVinci workflows and PingOne MFA integrations.
• Ensure scalability, security, and monitoring of IAM systems using AWS-native tools.
• Work independently to deliver solutions and provide technical leadership to the team.

Required Skills & Experience

• Strong hands-on experience with PingFederate, PingDirectory, and PingOne.
• Familiarity with PingOne DaVinci, PingOne MFA, and risk-based solutions like PingOne Protect.
• Expertise in AWS services (Lambda, Kafka, OpenSearch) and Terraform.
• Deep understanding of OIDC/OAuth and token exchange mechanisms.
• Experience with CIAM implementations and onboarding external apps.
• Ability to design and build complex IAM solutions from scratch.
• Excellent communication and problem-solving skills.

Nice-to-Have

• Experience with PingOne Advanced Services (managed hosting).
• Knowledge of risk evaluation and adaptive authentication.