Cloud Security Services is hiring a
ForgeRock Identity Manager Architect/Engineer, Remote - Worldwide

Summary

The job is for a remote ForgeRock Identity Management Engineer Lead position that requires 8+ years of experience. The role involves deploying ForgeRock's Autonomous Identity technology platform, developing IAM strategies, analyzing access patterns, and more. The opportunity is for 6 months with the possibility of going full-time.

Requirements

• Bachelor's degree in the field of computer science, information science, management information systems, or business administration or equivalent experience relevant to this position
• Minimum of 8 years related work experience required
• Working hands on knowledge of ForgeRock’s identity solutions. Familiarity with other vendor solutions would be a bonus
• Exposure to other identity management technologies such as Okta, Microsoft Active Directory, Microsoft Identity Manager, Azure AD, Azure AD Privileged Identity Management, & Amazon based Authentication such as Cognito
• At least 6+ Years of expert-level hands-on experience in IAM & related technologies, including Active Directory, Directory Services, Single Sign-On, LDAP, PKI, Cloud Directory Services, Authorization & Authentication Technologies, User Provisioning, Privileged Access Management, Role-Based Access Control (RBAC), etc
• Hands-On experience with one or more IAM tools - Sailpoint, Okta, or Quest One
• Thorough familiarity with standards such as SAML, WS-Sec; SOAP; REST, OATH; OAuth2.0; Digest, XML, JSON, REST, etc
• Excellent written and verbal communication skills
• Ability to work as liaison between business and information security/information technology
• Flexibility to accommodate working across different time zones
• Excellent interpersonal communication skills with strong spoken and written English
• Organizational skills with attention to detail
• Business outcomes mindset
• Solid balance of strategic thinking with detail orientation
• Collaborative team worker – both in person and virtually using MS Teams or similar
• Self-starter, ability to take initiative

Responsibilities

• Enterprise and application role owners and analysts can quickly identify and understand the role composition of low-, medium-, and high-confidence roles and entitlements
• Leverage AI/ML techniques to enable role engineers to review, evaluate, and visualize existing roles and role models
• Help the organization optimize the existing role model and create fewer, but higher quality roles over time
• Identify overprivileged entitlements and role access patterns and automatically remove unnecessary entitlements and roles
• Enable the provisioning of appropriate access to applications, systems, and data with advanced and modern authentication through business rule definition of roles to feed the Identity Management Systems (IDMS)
• Integrate with privileged access management services
• Identify and evaluate complex business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement for role-based access control
• Evaluate and support complex IAM and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
• Communicate the IAM aspects of both the production support and maintenance at the technical and functional level to maintain or resolve a technical situation
• Facilitate use of technology-based tools or methodologies to review, design and/or implement products
• Onboard roles onto the ForgeRock platform by engaging with the app teams, understanding their workloads, and incorporating those requirements for app role onboarding
• Provide technical workflow, oversight and management application onboarding activities driving the needs assessment, requirements definition, and collaboration across the functional, technical and project management teams
• Manage technical SDLC documentation such as business, compliance and technical

Preferred Qualifications

CISSP, CISM, or equivalent certification a plus