Sr IAM Engineer

Job Description:

Key Responsibilities/Deliverables:

• On-Premise Applications: Audit and analyze the current authentication and authorization mechanisms for on-premise applications and recommend changes and enhancements for on-premise applications to integrate with IAM platforms.
• Design and Build On-Premise IDP: Architect and implement a reliable on-prem IDP solution to ensure continuity for on-prem applications during internet or cloud IAM outages.
• Cloud and On-Premise Integration: Collaborate with Azure AD and SailPoint development teams to integrate the on-prem IDP and legacy on-premise applications into our existing IAM infrastructure.
• Failover Mechanism: Develop and test failover mechanisms to seamlessly switch from Azure AD to the on-premise IDP.
• Configuration and Customization: Configure the on-prem IDP with custom authentication flows to support multiple use cases and environments.
• CI/CD Pipelines: Set up CI/CD pipelines for deployment and updates to ensure smooth and automated rollouts.
• Deployment in Kubernetes (K8s): Deploy and manage the on-prem IDP solution in a Kubernetes environment.
• Security: Work with security to make sure on-premise IAM deployment is hardened and meets all security requirements.
• Documentation and Communication: Produce clear and comprehensive documentation of the architecture, processes, and systems, and communicate effectively with cross-functional teams and stakeholders.

Skills & Experiences:

• Architecture Design: Ability to architect and design scalable and resilient systems, focusing on both on-premises and cloud environments.
• IAM Expertise: Deep understanding of IAM principles such as Single Sign-On (SSO), OAuth 2.0, SAML, and OpenID Connect. Strong experience with Identity and Access Management platforms such as Keycloak, Azure AD, ForgeRock, and SailPoint.
• Cloud and On-Prem Experience: Deep understanding of cloud-based IAM platforms and experience building on-premise alternatives.
• Java Development: Proficiency in Java for customizing and extending IAM functionality.
• Configuration and Customization: Experience configuring IAM systems and customizing authentication and authorization flows.
• CI/CD Knowledge: Hands-on experience with CI/CD tools and processes for automating deployments and updates.
• Kubernetes (K8s): Proficiency in deploying and managing applications in a Kubernetes environment.
• Strong Communication Skills: Ability to communicate complex technical concepts to both technical and non-technical stakeholders.