SSO Architect (Ping and Radiant Logic)

GLT is seeking a self-motivated candidate for SSO Architect. The successful candidate will work with clients to ensure deliverables fall within the applicable scope and budget. He or she will coordinate with other departments to ensure all aspects of each project are compatible. We are looking for a creative and dedicated individual who will fit with our collaborative culture. The job may require some overtime hours to deadlines. If you enjoy working with other professionals who believe in creating innovative solutions to problems, we encourage you to apply. This is a remote position. 

Need a seasoned engineers in Ping Access, Ping Identity, Ping Federate (in that order of expertise). If they happen to be architects working in ICAM, even better. Need them to be able to write processes, issue logs, root cause analysis. 

***** The Key to the hire, here is what we need****

SSO Senior Architect.

We are looking for two of these resources. This level of resource should be able to translate client requirements into deployments of major systems like Ping and Radiant Logic. This would include articulating all components needed, architecting the infrastructure environment, and installing/configuring these systems. Subsequently, they should be able to work with client’s applications to fully integrate them into ICAM services. This includes working with vendors to overcome challenges and implementing any work arounds needed to ensure success. They should also be able to guide the work of the engineering team as a subject matter expert. At this level, they provide all technical guidance for solutioning, deployment, and operational oversight. Typically, these folks are identifiable as the go to member on their team when there are significant challenges.

RESPONSIBILITIES

• Ensure success of IAM implementations and meet the client’s needs.
• Install and upgrade identity and access management applications.
• Gather user input to understand scenarios and develop detailed technical requirement documents to setup SSO connections via the IAM product
• Work closely with clients during deployments, upgrades, and changes to ensure requirements are being met;
• Ensure the IAM product integrates successfully with various systems (such as Unix/Linux servers, Web Applications, IIS, Tomcat, Apache, Active Directory, single sign on (SSO), and relational databases
• Create technically oriented materials including internal and external tech notes, whitepapers, how-to procedures and user-facing technical presentations.

Qualifications and Education Requirements

• Extensive work experience with Ping Federate and PingAccess
• Experience with Centrify, Okta is a plus
• Experience with Single Sign-on technologies including Federation (SAML/WSFed) configuration / development / implementation
• Experience integrating Access management tools with third party and custom applications and troubleshooting relevant integrating issues
• Experienced with deploying and configuring IDP and SP initiated connections
• Experienced in information security technologies and industry best practices
• Experience with technologies such as SAML 2.0, OAuth 2.0, OpenID Connect, Role-Based Active Control (RBAC) and Active Based Access Control (ABAC). Additional experience with Active Directory, LDAP and Experience with platforms like OpenAM, and Okta is preferred, but not required
• Experience with deploying, configuring and managing Oracle Access Manager (OAM), Oracle Identity Manager (OID) and Oracle Internet Directory (OID) is preferred, but not required.
• Experience with SQL and either MS-SQL or Oracle databases
• Hands on experience in working with workflows and customizing workflows to meet business requirements
• Experience with PKI, SSL Protocols and Online Certificate Status Protocol (OCSP)
• Good communication skills
• Experience with compliance standards such as NIST 800-63-2 and 800-63-3, GDPR, HIPAA, PCI, FedRAMP, and FISMA.
• Experience designing and implementing a significant enterprise solution for a variety of systems, particularly cloud hosted services is preferred, but not required.
• Experience with cloud-based architectures running on AWS, Azure, or similar platforms is preferred, but not required.
• Ability to work in team-oriented environment where collaboration is encouraged and valued
• Experience with federal government projects
• Experience creating detail design documents for solutions being implemented in Identity and Access management applications.
• Experience installing, upgrading and configuring identity and access management applications
• Experience with Active Directory (AD) in conjunction with Windows 10 and Server 2012
• Minimum 5 years of applicable experience
• Must be a US Citizen or permanent resident

About Grant Leading Technology:  

Grant Leading Technology (GLT) is a verified Service-Disabled Veteran Owned Small Business (SDVOSB) government contracting firm. GLT provides expert knowledge and skills to deliver agile enterprise solutions and innovative technologies to our clients at the Federal Aviation Administration (FAA), Internal Revenue Service (IRS), Federal Emergency Management Agency (FEMA), National Aeronautics and Space Administration (NASA), and other federal and state agencies. We possess exceptional capabilities including, but not limited to, project management, cyber security, construction management, design, and management technology. GLT has been recognized for three consecutive years by Inc. 5000 as one of the fastest-growing private companies in America.   

Our employees are at the heart of GLT’s success. We value and fully embrace the diversity of individuals and ideas within our workforce. GLT provides a competitive compensation package with benefits that are immediately available. Our base healthcare plan is 100% employer paid and our 401k plan is immediately vested. We also offer paid time off, 11 federal holidays, short/long-term disability, 401k matching, and opportunities for professional development. 

www.grantleadingtechnology.com 

*Grant Leading Technology is an “equal opportunity employer”. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Reasonable accommodations will be provided to those who are unable to utilize our online application system due to a disability. Please email [email protected] with the subject line “Accommodation”