Chabez Tech
Senior IAM Engineer (Identity Services / SSO / PingFederate) || Full Time
Chabez Tech, New York
Company Description
Job Description
Job Title: Senior Identity Services Engineer
Location: New York, NY 10065, USA
Occasional on-site presence required
Job Type: Full Time
Position Summary:
Responsible for operating and maintaining the Information Security team's portfolio of Identity products. Involves application integration, access control systems implementation, data analytics, incident remediation, server administration, and architectural planning for new technologies and policies.
Essential Job Duties
Thanks & Kind Regards
Akash Goyal // US IT Technical Recruiter
ChabezTech LLC
4 Lemoyne Dr #102, Lemoyne, PA 17043, USA
LinkedIn ID:
GSA Multiple Award Schedule (MAS) / E-Verify
Qualifications
Additional Information
All your information will be kept confidential according to EEO guidelines.
Job Description
Job Title: Senior Identity Services Engineer
Location: New York, NY 10065, USA
Occasional on-site presence required
Job Type: Full Time
Position Summary:
Responsible for operating and maintaining the Information Security team's portfolio of Identity products. Involves application integration, access control systems implementation, data analytics, incident remediation, server administration, and architectural planning for new technologies and policies.
Essential Job Duties
- Design, implement, and support enterprise SSO solutions (PingFederate, Azure AD, Okta).
- Maintain and enhance access management platforms and federation infrastructure.
- Lead application integrations into existing SSO frameworks using SAML, OAuth2, OIDC.
- Implement and support Role-Based Access Control (RBAC) and modern authentication methods.
- Support and improve authentication strategies across the organization.
- Collaborate with security, application owners, and infrastructure teams to deliver secure identity solutions.
- Troubleshoot complex authentication/federation issues across multiple environments.
- Participate in IAM roadmap planning and architectural decision-making.
- Provide mentorship and guidance to IAM engineers.
- Support governance for authentication, authorization, and access control standards.
- 5+ years of IAM experience focused on SSO and federation.
- Expertise in PingFederate, Azure AD, Okta, ADFS.
- Strong knowledge of SAML, OIDC, OAuth2.
- Experience with LDAP, Active Directory, SCIM.
- Proficiency in PowerShell, Python, Java scripting/development.
- Experience working with REST APIs and tools like Postman.
- Knowledge of OGNL expression language for PingFederate policy customization.
- Front-end customization skills (HTML, CSS, JavaScript).
- Basic Linux administration for IAM infrastructure.
- Understanding of certificates & PKI (X.509, signing, encryption).
- Strong troubleshooting skills across application, identity, and network layers.
- Understanding of Zero Trust, adaptive authentication, and conditional access concepts.
- Hands-on experience with Ping Identity platform: PingFederate, PingOne, PingID, PingDirectory.
- MFA and Passwordless/FIDO2/WebAuthn authentication strategies.
- Experience configuring enterprise SSO apps in Azure AD / Entra ID.
- Exposure to IAM orchestration (PingOne DaVinci or similar).
- Experience with cloud identity integrations (Azure, AWS, GCP).
- Experience in hybrid (on-prem + cloud) SSO environments.
- Strong documentation, communication, and cross-team collaboration skills.
- Ability to lead projects and mentor junior engineers.
Thanks & Kind Regards
Akash Goyal // US IT Technical Recruiter
ChabezTech LLC
4 Lemoyne Dr #102, Lemoyne, PA 17043, USA
LinkedIn ID:
GSA Multiple Award Schedule (MAS) / E-Verify
Qualifications
Additional Information
All your information will be kept confidential according to EEO guidelines.