Security Architect

Project Role : Security Architect

Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Must have skills : ForgeRock Identity Management

Good to have skills : ForgeRock Access Management

Minimum 7.5 Year(s) Of Experience Is Required

Educational Qualification : 15 years full time education

Summary

As a Security Architect, you will be leader who designs enterprise-scale identity ecosystems .You will lead the design of secure, scalable, and resilient identity solutions for millions of users. This role requires a deep blend of technical mastery in the ForgeRock stack and the business acumen to lead cross-functional security initiatives.. You will document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all aspects of security are thoroughly addressed and optimized for efficiency and effectiveness.

Key Responsibilities

• Lead end-to-end architecture and design of Customer Identity and Access Management (CIAM) solutions using ForgeRock
• Define CIAM solution architecture aligned with business, security, and enterprise standards
• Design and govern:
• Authentication journeys / trees
• Authorization models
• Federation and SSO architectures
• Architect integrations with:
• Web, mobile, and API-based applications
• External identity providers (social, enterprise IdPs)
• Drive non-functional requirements:
• Scalability, performance, high availability, DR
• Define and enforce security best practices:
• MFA, adaptive authentication, risk-based access
• Data privacy, consent, and regulatory compliance
• Provide technical leadership and governance to delivery teams
• Review designs, code, and configurations for quality and compliance
• Mentor and guide CIAM developers and leads
  
  

10 Work closely with:

• Client stakeholders
• Security and infrastructure teams
• Program and delivery leadership
• Support pre-sales activities including solutioning, estimations, and RFP responses (where applicable).
• Familiarity with risk assessment methodologies and security compliance frameworks.
  
  

Professional & Technical Skills

ForgeRock & CIAM :-

Strong hands-on and architectural experience with:

• ForgeRock Access Management (AM)
• ForgeRock Identity Management (IDM)
• ForgeRock Directory Services (DS)
• Expertise in CIAM architectures for large-scale consumer platforms
• Authentication Trees / Intelligent Access (mandatory)
  
  

Identity & Security:-

• OAuth 2.0
• OpenID Connect (OIDC)
• SAML 2.0
• JWT, REST APIs
• LDAP / directory services
  
  

Scripting :-

• Java, JavaScript / Groovy (ForgeRock scripting)
• API security patterns
• Linux / Unix environments
• CI/CD and DevSecOps exposure
  
  

Additional functional experience :-

• ForgeRock Identity Gateway (IG)
• Cloud platforms (AWS / Azure / GCP)
• Docker, Kubernetes
• ForgeRock or IAM certifications
• Experience with CIAM migrations (Ping, Okta, custom IAM)
  
  

Additional Information:

• Bachelors and above degree in Computer Science, Information Technology, MIS, Engineering / Bachelor or college degree in related field or equivalent work experience (Full time).
• The candidate should have minimum 7.5 years of experience in ForgeRock Identity Management & overall 15+ years overall IT experience
  
  

Certifications

ForgeRock FRX-AM-CSE Certified

ForgeRock FRX-IDM-CSE Certified