Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : ForgeRock Identity Management
Good to have skills : NA
Minimum 3 Year(s) Of Experience Is Required
Educational Qualification : 15 years full time education
Summary
As a professional you are expected to be a Mid-to-Senior ForgeRock Engineer who can independently handle application integrations, troubleshoot complex sync issues, and work with DevOps tools.
Key Responsibilities
- Advanced AM & Access Control
Authentication Journeys: Design and implement multi-step Authentication Trees using scripted nodes (JavaScript) for MFA, risk-based access, and self-service registration.
Protocol Expert: Lead the configuration of SAML 2.0 and OpenID Connect (OIDC) for enterprise and third-party service providers.
Session Management: Optimize session handling and cross-domain SSO configurations.
- IDM & Lifecycle Management
Connector Development: Configure and troubleshoot ICF (Identity Connector Framework) to link IDM with Active Directory, Databases, and CSV flat files.
Workflow Automation: Write and maintain Groovy scripts for custom synchronization logic and situational scripts during reconciliation.
Data Privacy: Manage user privacy and consent preferences within the IDM portal.
- Performance & Directory Services
DS Tuning: Monitor and tune Directory Services (DS) performance, including indexing, VLV (Virtual List View), and replication monitoring.
Troubleshooting: Perform root-cause analysis on logs from Tomcat, AM, and DS to resolve authentication failures or performance lags.
- Modern Infrastructure (ForgeOps)
Containerization: Deploy and manage ForgeRock components using Docker and Kubernetes.
Automation: Contribute to CI/CD pipelines for promoting ForgeRock configurations from Dev to Production environments.
Professional & Technical Skills
- Experience in CI/CD tools including Jenkins, Nexus, GitHub, and Code Commit
- Hands-on experience with AWS services such as S3 bucket replication, Managing EC2 Instances, SNS ,Lambda, and CloudWatch for debugging.
- Skilled in working within Agile development environments
- Familiar with using Linux command-line tools
- Familiar with the basics of MySQL databases
- Scripting: Strong proficiency in JavaScript (for AM) and Groovy (for IDM).
- Linux: Solid understanding of Linux command line, SSL/TLS certificate management, and keytool.
- Web Technologies: Experience with REST APIs, JSON, and Web Servers (Apache/Nginx)
Additional Information:
- Bachelors and above degree in Computer Science, Information Technology, MIS, Engineering / Bachelor or college degree in related field or equivalent work experience (Full time).
- The candidate should have minimum 2 years of experience in ForgeRock Identity Management & overall 6 years overall IT experience, 15 years full time education
