Security Architect

Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : ForgeRock Access Management
Good to have skills : NA
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary:
We are seeking an Associate Manager Access Management with strong hands-on and delivery experience in ForgeRock and Ping Identity platforms. This role is responsible for operational ownership, technical oversight, and team coordination of Access Management (AM) and Federation services supporting workforce and customer identity use cases.

Roles & Responsibilities:
- Access Management Operations
-Manage day to day operations of ForgeRock (AM, IDM, DS) and Ping Identity platforms (PingFederate, PingAccess, PingOne).
-Ensure stable and secure SSO, federation, and authentication services across enterprise applications.
-Act as an escalation point for complex authentication and access-related incidents.
-Federation, SSO & MFA
-Support and govern SAML, OAuth2, OpenID Connect (OIDC) integrations.
-Manage MFA, adaptive authentication, and risk-based access policies.
-Support API security and token-based authentication use cases.
-Service Delivery and Governance
-Own end-to-end service delivery for Access Management services in line with SLAs and OLAs.
-Participate in service reviews, governance forums, and operational calls.
-Coordinate platform upgrades, patches, and lifecycle management.
-Team and Stakeholder Coordination
-Guide and support a team of Access Management engineers and analysts.
-Work closely with application, IAM, security, and infrastructure teams.
-Support onboarding of new applications and partners onto ForgeRock and Ping platforms.
-Security, Risk and Compliance
-Ensure access controls align with organizational security policies and compliance requirements.
-Support audits, access reviews, and remediation activities.
-Maintain SOPs, runbooks, architecture diagrams, and operational documentation.
-Change, Automation and Improvement
-Review and approve configuration changes and integrations.
-Drive automation using REST APIs, scripts, and IAM workflows.
-Identify opportunities for service optimization and platform standardization.

Professional and Technical Skills:
- 7 to 10 years of experience in Access Management / Identity & Access Management (IAM).
-Strong hands-on experience with:
-ForgeRock (AM, IDM, DS)
-Ping Identity (PingFederate, PingAccess, PingOne)
-Solid understanding of IAM protocols: SAML, OAuth2, OIDC, LDAP.
-Experience supporting enterprise-scale AM platforms.
-Experience with CIAM or customer identity platforms.
-Exposure to Entra ID (Azure AD) federation and hybrid IAM.
-IAM certifications (Ping, ForgeRock, or equivalent).
-Experience in managed services or large enterprise environments.
-Strong incident management and troubleshooting skills.
-Ability to balance hands-on technical work with coordination responsibilities.
-Good communication and stakeholder management skills.

Additional Information:
- The candidate should have minimum 8 plus years of experience in ForgeRock Access Management.
- This position is based at our Bengaluru office.
- A 15 years full time education is required.