Security Architect

 About The Role  

Project Role :Security Architect

Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Ping Identity

Good to have skills :NA
Minimum 5 year(s) of experience is required

Educational Qualification :15 years full time education
Summary:We are seeking a skilled and proactive Single Sign-On (SSO) Engineer with expertise in both Microsoft Azure SSO and Ping Identity platforms (PingOne, PingFederate, PingAccess). The ideal candidate will be responsible for designing, implementing, and supporting secure authentication and authorization solutions across enterprise and customer-facing applications Roles & Responsibilities:-SSO Integration & Onboarding:-Lead the onboarding of applications into Azure AD SSO and Ping SSO environments using SAML, OAuth 2.0, and OIDC protocols.-Configure and maintain authentication flows, federation settings, and access policies.-Support application teams with integration requirements and troubleshooting.-Platform Operations & Support:-Provide L1/L2 support for PingOne CIAM and Azure SSO platforms, including user provisioning, MFA, and directory syncs.-Monitor system health, respond to alerts, and perform root cause analysis for incidents 1.-Maintain runbooks, SOPs, and knowledge base articles for operational excellence.-Security & Compliance:-Implement and enforce access control policies aligned with SOX and other compliance requirements 2 3.-Conduct periodic access reviews, audit log analysis, and vulnerability remediation 3.-Collaboration & Governance:-Work closely with IAM architects, security teams, and business stakeholders to align solutions with enterprise standards.-Participate in change management and incident response processes.Professional & Technical
Skills:

-Experience in Identity and Access Management (IAM), with hands-on expertise in:-Microsoft Azure AD SSO and Conditional Access Policies.-Ping Identity suite:PingOne, PingFederate, PingAccess, PingID 1 4.-Strong understanding of authentication protocols:SAML, OAuth 2.0, OIDC.-Experience with directory services (e.g., Active Directory, PingDirectory).-Familiarity with API tools (e.g., Postman), scripting (Shell, Python), and DevOps pipelines.-Exposure to ITIL processes (Incident, Change, Problem Management).-Preferred Certifications:Ping Identity Certified Professional PingOne or PingFederate,Microsoft Certified:Identity and Access Administrator Associate,CompTIA Security+ or equivalent.
Additional Information:- The candidate should have minimum 5 years of experience in Ping Identity.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education