Senior Ping Identity Engineer / Architect

Senior Ping Identity Engineer / Architect

Senior Ping Identity Engineer / Architect

Location: Remote. India
Employment Type: Full-Time / Contract
Compensation: Competitive (Based on Experience)

Company Description

BLS360 is a trusted leader in Identity Access Management (IAM), Identity Governance & Administration (IGA), and digital transformation solutions. In an increasingly fast-paced digital world, BLS360 helps organizations ensure robust identity security and manage identities securely and efficiently. By adopting a Security-First Transformation approach, the company integrates security into every phase of digital transformation initiatives. Through advanced security frameworks and streamlined DevSecOps processes, BLS360 protects critical digital assets and empowers organizations to stay ahead of emerging threats. Learn more about BLS360's innovative solutions at www.bls360.com.

Role Description

We are seeking an experienced Senior Ping Identity Engineer / Architect with deep expertise in the Ping Identity Suite, including PingFederate, PingAccess, PingOne, and PingID. The ideal candidate will have strong hands-on experience designing, implementing, integrating, and supporting enterprise Identity and Access Management (IAM) solutions for large-scale environments.

This role requires expertise in authentication protocols, federation technologies, application integrations, and API security while ensuring secure access management across cloud and on-premise applications.

Key Responsibilities

  • Design, implement, configure, and support Ping Identity solutions including:

    • PingFederate

    • PingAccess

    • PingOne

    • PingID

  • Configure and manage authentication and federation protocols:

    • SAML 2.0

    • OAuth 2.0

    • OpenID Connect (OIDC)

    • WS-Federation / WS-Trust

  • Design and implement Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions for enterprise applications.

  • Integrate PingFederate with enterprise applications and web servers using integration kits and adapters including:

    • Microsoft IIS

    • Apache Web Server

    • Apache Tomcat

    • IBM WebSphere

    • Oracle WebLogic

  • Develop and support PingFederate integrations utilizing:

    • .NET

    • Java

    • PHP

    • Perl

    • Python

  • Deploy and administer PingAccess as a centralized policy enforcement point and risk engine to evaluate user access requests according to organizational security policies.

  • Configure and implement access policies based on:

    • Role-Based Access Control (RBAC)

    • Attribute-Based Access Control (ABAC)

    • Network ranges

    • Time-based restrictions

    • Authentication levels

    • Session information

    • OAuth scopes and attributes

  • Design and implement JSON Web Tokens (JWTs) for secure identity and session propagation, enabling stateless authentication mechanisms.

  • Configure and support PingAccess connectors, adapters, and templates for application onboarding and integration.

  • Troubleshoot complex IAM issues involving authentication, authorization, federation, and access management.

  • Perform installation, configuration, patching, and upgrades of Ping Identity products, including deployment of security patches and migration to newer versions.

  • Collaborate with application teams, infrastructure teams, and security stakeholders to ensure secure and seamless user access experiences.

  • Develop technical documentation, deployment guides, and operational runbooks.

Required Qualifications

  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or related field.

  • 8+ years of hands-on experience with Ping Identity solutions.

  • Strong expertise in:

    • PingFederate

    • PingAccess

    • PingOne

    • PingID

  • Deep understanding of IAM concepts including:

    • SSO

    • MFA

    • Federation

    • Access Management

    • API Security

  • Strong experience with authentication and authorization standards:

    • SAML 2.0

    • OAuth 2.0

    • OpenID Connect (OIDC)

    • WS-Fed / WS-Trust

  • Experience integrating applications with:

    • IIS

    • Apache

    • Tomcat

    • WebSphere

    • WebLogic

  • Familiarity with programming/scripting languages:

    • Java

    • Python

    • .NET

    • PHP

    • Perl

  • Experience with:

    • JWT

    • REST APIs

    • LDAP/Active Directory

    • Certificates and PKI

    • SSL/TLS

  • Strong troubleshooting and problem-solving skills.

  • Experience with cloud identity platforms such as:

    • AWS

    • Azure

    • Google Cloud Platform (GCP)

  • Experience with DevOps and automation tools:

    • Jenkins

    • GitHub

    • Ansible

    • Terraform

  • Ping Identity certifications are highly preferred.

Why Join Us?

  • Work on enterprise-scale IAM and Zero Trust initiatives.

  • Collaborate with industry-leading security professionals.

  • Exposure to cutting-edge authentication and federation technologies.

  • Flexible work environment and competitive compensation.

"At BLS360, we believe in empowering talent to innovate and grow. Here, your ideas matter, and every contribution makes an impact. Join us to work on meaningful projects, learn continuously, and be part of a team that shapes the future."

"At BLS360, we believe in empowering talent to innovate and grow. Here, your ideas matter, and every contribution makes an impact. Join us to work on meaningful projects, learn continuously, and be part of a team that shapes the future."

"At BLS360, we believe in empowering talent to innovate and grow. Here, your ideas matter, and every contribution makes an impact. Join us to work on meaningful projects, learn continuously, and be part of a team that shapes the future."