We are seeking a skilled ForgeRock Access Management Consultant with 5 to 9 years of experience to design, implement, and support ForgeRock Access Management (AM) solutions. The ideal candidate will have deep expertise in access control, authentication, and identity federation to secure enterprise applications and data.
Key Responsibilities:
- Design, develop, and implement ForgeRock Access Management (AM) solutions to meet business and security requirements.
- Configure authentication modules, policies, authorization trees, and session management in ForgeRock AM.
- Integrate ForgeRock AM with enterprise applications, APIs, and identity providers (IdPs) using standards like SAML, OAuth, OpenID Connect.
- Customize access management workflows using scripting and ForgeRock Identity Gateway (IG).
- Troubleshoot and resolve issues related to access management, performance, and security.
- Collaborate with security architects, developers, and infrastructure teams to ensure seamless identity and access management.
- Participate in code reviews, security audits, and compliance assessments.
- Document solution designs, configurations, and operational procedures.
- Provide knowledge transfer and training to clients and internal teams.
Required Skills and Qualifications:
- 59 years of experience working with ForgeRock Access Management and related components.
- Strong knowledge of identity and access management concepts, including authentication, authorization, federation, and single sign-on (SSO).
- Experience configuring ForgeRock AM components such as Realms, Authentication Trees, Policies, OAuth2 providers, and Federation.
- Familiarity with identity standards: SAML 2.0, OAuth 2.0, OpenID Connect, SCIM.
- Hands-on experience with ForgeRock Identity Gateway (IG) and Directory Services (DS) is a plus.
- Ability to write scripts in JavaScript, Groovy, or other relevant languages for AM customization.
- Strong troubleshooting and debugging skills.
- Excellent communication and collaboration skills.
Preferred Skills (Nice to Have):
- ForgeRock certification (AM Specialist or similar).
- Experience with cloud identity management and integrations (AWS, Azure AD, etc.).
- Knowledge of other IAM platforms (Okta, Ping Identity, CyberArk).
- Understanding of DevOps practices and CI/CD pipelines.
- Experience with LDAP directories and database integration.