Responsibilities
- Manage full lifecycle integration of CIAM and workforce IAM solutions for enterprise and custom applications, emphasizing Ping Identity platforms, Okta, and DaVinci workflow orchestration for advanced identity and authentication pathways.
- Develop and sustain authentication mechanisms for customers and employees using SAML, OIDC/OAuth 2.0, and API integrations, including secure token management, claims processing, scope definition, and attribute mapping.
- Create and manage DaVinci-driven identity workflows to coordinate authentication, user registration, step-up multi-factor authentication, risk assessment, identity validation, and integrations across Ping, Okta, and external services.
- Lead the migration and onboarding of applications to Azure Entra ID for workforce identity, ensuring compliance with enterprise IAM standards, Conditional Access rules, and audit obligations.
- Design and implement multi-factor and adaptive authentication policies across CIAM and workforce environments, including conditional logic, exception handling, and issue resolution for global user bases.
- Collaborate with application owners, product teams, and developers to standardize authentication frameworks, reduce custom identity solutions, and align systems with approved CIAM and IAM architectures.
- Integrate CIAM systems with identity lifecycle and governance platforms such as SailPoint and HR data sources to enable event-driven provisioning and support access governance and compliance.
- Engineer solutions for non-human identities, including service accounts, API clients, secrets, certificates, and token-based access for application-to-application communication.
- Build automation tools, monitoring systems, and reporting dashboards for IAM/CIAM operations to enhance visibility, minimize manual processes, and meet compliance standards like SOX, SOC2, and GDPR.
- Act as a senior technical resource for resolving complex IAM/CIAM incidents, conducting root-cause analysis across identity providers, federation layers, token issuance, and application integrations.
- Support IAM and CIAM governance by establishing enforceable standards, design patterns, and operational controls that reflect organizational security policies.
- Engage in cross-functional projects such as application modernization, platform unification, CIAM architecture development, and improvements to identity service reliability.
- Produce detailed technical documentation, operational runbooks, and reference architectures, and conduct knowledge sharing to enhance team resilience and reduce dependency on individual contributors.
- Maintain equilibrium between project delivery and ongoing operational support to ensure continuous availability and reliability of IAM and CIAM services while advancing platform capabilities.
