Bestinfo Systems LLC
Senior Identity Services Engineer
Bestinfo Systems LLC, New York, New York, United States, 10261
Senior Identity Services Engineer_ New York City, NY,
PA, CT, NJ _Full-Time (FTE)_Direct Hire
Position:
Senior Identity Services Engineer Job Type:
Full-Time (FTE) Location:
New York City-NY Office space available at location listed The candidate would need to live in the following states NY, PA, CT, NJ Industry:
Healthcare / Health Services - Medical Records / IT / Informatics Job Category:
Information Technology - Security Base Salary:
$97,000 to $145,000 +Best-in-class benefits
Preferred Qualifications:
* Hands-on experience with the Ping Identity platform, particularly: * PingFederate, PingOne, PingID, PingDirectory * Experience with MFA and Passwordless/FIDO2/WebAuthn authentication strategies * Experience building and configuring enterprise SSO applications in Azure AD / Entra ID * Exposure to IAM orchestration platforms such as PingOne DaVinci or similar tools * Experience supporting cloud identity integrations (Azure, AWS, GCP) * Familiarity with enterprise SSO in hybrid environments (on-prem and cloud-based apps) * Strong documentation and communication skills * Comfortable collaborating across technical and non-technical teams * Ability to lead projects and mentor junior engineers Required Qualifications: * 5+ years of Identity & Access Management experience with a strong focus on SSO and federation
Deep technical knowledge of: * PingFederate, Azure AD, Okta, ADFS * Federation protocols including SAML, OIDC, and OAuth2 * LDAP, Active Directory, SCIM * Proficiency in scripting and development with PowerShell, Python, and Java * Experience working with REST APIs for IAM services; familiarity with Postman or similar tools * Familiarity with OGNL expression language for customizing PingFederate policies * Front-end UX design and customization using HTML, CSS, and JavaScript * Basic Linux administration skills for maintaining and managing IAM infrastructure * Working knowledge of certificates and PKI (X.509, certificate chains, signing, encryption, keystore management) * Strong troubleshooting and debugging skills across application, identity, and network layersx * Understanding of modern identity concepts such as Zero Trust, adaptive authentication (risk-based, device/user signals), and conditional access
Candidate Details: *5+ to 7 years experience *Seniority Level - Mid-Senior *Minimum Education - High School Diploma or Equivalent *Willingness to Travel - Occasionally
PA, CT, NJ _Full-Time (FTE)_Direct Hire
Position:
Senior Identity Services Engineer Job Type:
Full-Time (FTE) Location:
New York City-NY Office space available at location listed The candidate would need to live in the following states NY, PA, CT, NJ Industry:
Healthcare / Health Services - Medical Records / IT / Informatics Job Category:
Information Technology - Security Base Salary:
$97,000 to $145,000 +Best-in-class benefits
Preferred Qualifications:
* Hands-on experience with the Ping Identity platform, particularly: * PingFederate, PingOne, PingID, PingDirectory * Experience with MFA and Passwordless/FIDO2/WebAuthn authentication strategies * Experience building and configuring enterprise SSO applications in Azure AD / Entra ID * Exposure to IAM orchestration platforms such as PingOne DaVinci or similar tools * Experience supporting cloud identity integrations (Azure, AWS, GCP) * Familiarity with enterprise SSO in hybrid environments (on-prem and cloud-based apps) * Strong documentation and communication skills * Comfortable collaborating across technical and non-technical teams * Ability to lead projects and mentor junior engineers Required Qualifications: * 5+ years of Identity & Access Management experience with a strong focus on SSO and federation
Deep technical knowledge of: * PingFederate, Azure AD, Okta, ADFS * Federation protocols including SAML, OIDC, and OAuth2 * LDAP, Active Directory, SCIM * Proficiency in scripting and development with PowerShell, Python, and Java * Experience working with REST APIs for IAM services; familiarity with Postman or similar tools * Familiarity with OGNL expression language for customizing PingFederate policies * Front-end UX design and customization using HTML, CSS, and JavaScript * Basic Linux administration skills for maintaining and managing IAM infrastructure * Working knowledge of certificates and PKI (X.509, certificate chains, signing, encryption, keystore management) * Strong troubleshooting and debugging skills across application, identity, and network layersx * Understanding of modern identity concepts such as Zero Trust, adaptive authentication (risk-based, device/user signals), and conditional access
Candidate Details: *5+ to 7 years experience *Seniority Level - Mid-Senior *Minimum Education - High School Diploma or Equivalent *Willingness to Travel - Occasionally