Job Description

Job Title: IAM Developer Analyst Location: Hyderabad / IND - Virtual

ROLE DESCRIPTION

Delivery of exceptional Technical Services. Responsible for analyzing, resolving, and maintaining different layers of IDAM applications, including but not limited to SSO/Authentication, Authorization, Identity Governance.

IDAM is a tightknit group, with many overlapping areas of responsibility.

PRINCIPAL DUTIES AND RESPONSIBILITIES:

• Designing and implementing identity and access management solution.
• Development and implementation of one or more Access management and federation products such as Ping Federate/Okta/Microsoft Azure B2C or equivalent solutions.
• Complete end to end understanding of the SingleSignOn/Authentication+Authorization workflows, development of custom Authentication Module, Authentication Trees Nodes, Account Mappers and Adapters based on outlined customer requirements and use cases.
• Hands on experience in designing and modifying UI (HTML/CSS/JavaScript) to enhance user experience, updating MFA requirements based on user flow, modifying claims in tokens, and configuring session settings.
• Support onboarding of new customers (Inbound or Outbound SSO) following the defined process and timelines.
• Managing Ping Identity solution deployments through the complete system development life cycle, including analysis of solution requirements, solution design, architecture and supporting business processes, configuring, and customizing IAM software products using Java/JavaScripts, and testing (unit, system integration, performance and UAT testing).
• Contribute to IAM security service delivery through monitoring, controlling, and supporting the execution of security service delivery.
• Collaborate and liaise with other Alight teams and customer stakeholders/ end users in the SSO implementation lifecycle.
• Provide technology assessments in support of automation and technology migration initiatives.
• Support onboarding of new customers following the defined process and timelines.
• Working with External Client Technical and Business contacts to demonstrate Alight IAM capabilities and best practices while documenting the solution to be implemented.
• Creating applicable Support Documentation and Processes.
• Diagnose and resolve software application issues accordingly to available procedures and methodology.
• Capacity to understand / analyze a problem and propose resolutions paths.
• Provide on-call technical support as required.

• Bachelor's degree Graduation (Mandatory)
• At least 5 years job experience in the IT industry with minimum 3 year in IAM technology.
• Professional Certifications such as SC 900, SC 300, AZ 500, AZ 900, SSCP, etc. are a plus but not mandatory.

• Solid oral and written communication skills in English.
• Clear understanding of Team's role in meeting Organizational objectives.
• Average Business knowledge.
• Ability to organize work and priorities to meet deadlines with limited supervision.
• Strong problem solving and analytical skills.
• Be proactive, dynamic, and flexible.
• Incumbents at this level should be familiar with all aspects of Information Technologies including Hardware, Operating Systems, Network protocols, Clustering, Load-balancing, High Availability, Cloud Computing, IAM, SSO, DB etc.

• Step into assist with every aspect of Cybersecurity as needed.
• Good knowledge on cloud computing.
• Average Presentation skills and working experience with Office productivity tools such as OS365, Word, Excel, PowerPoint. Working knowledge in MS Project, Visual Source Code, Git and Visio would be a plus.
• Candidate should be able to learn and gain proficiency in new Technologies quickly as well as be able to work independently towards well defined goals.
• Required Skills:
  • Ability to install and configure PingFederate servers, configure node-to-node clustering for high availability, and understand PingFederate architecture.
  • Familiarity with key identity federation protocols such as SAML (Security Assertion Markup Language), OAuth, OpenID Connect, and WS-Federation.
  • Configuring Single Sign-On (SSO) for various applications, including web, mobile, and enterprise apps.
  • Managing and configuring PingFederate to act as an Identity Provider (IdP) or Service Provider (SP) in federated environments. Setting up and managing external federation (partners, cloud services, etc.), including Identity Federation (IDP-initiated SSO) and SP-initiated SSO.
  • Integrating and configuring multi-factor authentication solutions in PingFederate.
  • Experience with custom authentication modules in PingFederate, such as integrating external authentication methods or custom workflows.
  • Configuring user attribute mapping and claims transformation for passing necessary data between IdPs and SPs.
  • Understanding how to set up and manage IdP Adapters, authentication policies, including context-based policies (e.g., based on device, location, or network).
  • Knowledge of securing communications (e.g., SSL/TLS), configuring token signing and encryption for SAML assertions and OAuth tokens.
  • Experience with creating and managing access control policies in PingFederate to ensure the right level of authorization is granted to users.
  • Integrating PingFederate with LDAP directories, Active Directory (AD), or other identity stores to authenticate and retrieve user information.
  • Experience with identity synchronization and maintaining accurate user identities across federated systems.
  • Knowledge of integrating PingFederate with other Ping Identity products like PingDirectory and PingOne for advanced identity management and cloud-based SSO solutions.
  • Familiarity with XML, JSON, Java, JavaScript, ASP.net, J2EE

• Supplemental Skill's:
  • Familiarity with DevOps tools (GitHub)
  • Familiarity with Python scripting
  • Understanding of GraphAPI, REST, etc.
  • Experience with PowerShell, PowerShell Workflow, and troubleshooting PowerShell ISE or AWS CLI.