Identity and Access Mgt (IAM)Lead Analyst

Job Description

Key Skill Set Requirements: Strong troubleshooting and problem-solving abilities in an operational setting Experience in enterprise-level identity and access management operations Excellent communication and collaboration skills to work effectively within the team Proficiency with Ping (ForgeRock) AIC and related IAM technologies including: 1. Ping (ForgeRock) Advanced Identity Cloud (AIC) Experience in configuring and managing authentication and authorization services in ForgeRock AIC. Understanding of Identity and Access Management (IAM) best practices. Hands-on experience in customizing authentication journeys and implementing MFA solutions. 2. Remote Connector Server (RCS) Expertise in setting up and managing ForgeRock Remote Connector Server (RCS). Ability to integrate external data sources with ForgeRock Identity Cloud. Experience troubleshooting RCS connectivity and performance issues. 3. Custom Connectors Development of custom connectors to integrate non-standard identity sources with ForgeRock IDM. Experience with Groovy, Java, or JavaScript for writing custom connector logic. Ability to create connectors that sync data with databases, REST APIs, or other identity providers. Performance tuning and error handling in custom connectors. 4. Schema Creation and Attribute Mapping Strong understanding of schema design and attribute mapping in ForgeRock IDM. Experience in defining object classes, attributes, and transformations for identity synchronization. Configuring mapping rules for user attributes between identity providers and target systems. Hands-on experience in schema extensions and handling custom identity attributes. 5. Authentication Journeys Strong understanding of ForgeRock Authentication Trees and their configuration. Experience in designing custom authentication flows using scripted nodes. Implementing risk-based authentication. 6. Multi-Factor Authentication (MFA) Implementation and configuration of ForgeRock MFA solutions. Experience integrating Push Notification, SMS, WebAuthn (FIDO2), and TOTP-based authentication. Understanding adaptive authentication and configuring MFA policies. 7. Scripted Nodes Development of custom scripted nodes using JavaScript. Hands-on experience in processing user attributes, making API calls, and modifying authentication flow logic. Debugging and optimizing scripted nodes for better performance. 8. DevOps Pipelines Experience with CI/CD pipelines for deploying ForgeRock components. Working knowledge of Azure DevOps, or similar DevOps tools. Automating deployments, backups, and rollback strategies for identity services. 9. Kubernetes & Containers Hands-on experience in deploying and managing ForgeRock components in a Kubernetes environment. Understanding of ArgoCD, and Kubernetes networking. Managing containerized IAM solutions for high availability and scalability. 10. OAuth 2.0 & Identity Federation Strong knowledge of OAuth 2.0, OpenID Connect (OIDC), and SAML. Experience configuring and managing OAuth 2.0 clients, access tokens, and token lifecycles in ForgeRock. Implementing token exchange, single sign-on (SSO), and identity federation scenarios. Skills: DevOps English Kubernetes SQLite