Forgerock IAM Engineer

Job Description

Job Description

We are seeking a highly skilled& ForgeRock IAM Engineer& with hands-on expertise in implementing, configuring, and managing ForgeRock Identity Access Management solutions. The ideal candidate will have experience with Client Identity and Access Management (CIAM), Fraud Prevention, and integration technologies in a secure, scalable enterprise environment. This role involves engineering, deploying, and supporting IAM solutions to strengthen digital identity and fraud prevention capabilities across various digital platforms.

Key Responsibilities:

• Design, deploy, configure, and support& ForgeRock IAM components& including AM, IDM, DS, and IG in AKS (Azure Kubernetes Service) environments

• Manage and maintain policy servers, web agents, secure proxy servers, and federation setups

• Support federations using& SAML, OAuth2, OpenID Connect& with internal and external systems

• Lead implementation of IAM-related changes through dev/test/prod environments using formal& Change Management processes

• Apply IAM engineering best practices to ensure robust access control, authentication, and authorization mechanismProvide technical leadership for IAM integration with enterprise applications and fraud prevention tools (e.g., Daon, Twilio, Guardian/FeatureSpace)

• Troubleshoot IAM issues and deliver timely support to internal and external teams

• Ensure compliance with enterprise security standards, regulatory requirements, and risk management best practices

• Maintain thorough documentation of design, processes, and configurations

• Collaborate with cross-functional teams (Security, DevOps, Business, Infrastructure) for solution planning and delivery

Required Qualifications:

• 5+ years of experience in Identity Access Management (IAM)

• Strong experience deploying and supporting ForgeRock (AM, IDM, DS, IG)& in containerized environments (e.g., Docker, Kubernetes, AKS)

• Proficient in scripting languages (e.g.,& Groovy, JavaScript, Shell, Java) for customization and automation

• In-depth knowledge of& Directory Services / LDAP, federation protocols (SAML, OAuth2, OIDC), and authentication strategies

• Hands-on experience with& fraud prevention integrations& such as Daon, Twilio, or similar

• Experience working in Agile/Scrum or SAFe environments

• Strong troubleshooting, analytical, and documentation skills

• Excellent communication and interpersonal skills

Preferred Qualifications:

• ForgeRock& Certified Identity Access Management Specialist

• Experience with& Ping Identity,& Azure Active Directory, and& SiteMinder

• Security certifications such as& CISSP, CISA, CCSP

• Experience integrating IAM with cloud-native apps on& Azure,& AWS, or& GCP

• Experience with& Daon IdentityX Platform

• Knowledge of& Zero Trust Architecture& and& CIEM& principles

• Familiarity with risk-based authentication and fraud analytics

• Financial services or regulated industry experience

• Experience with Docker, Helm, and Kubernetes management

• Bachelor’s or Master’s degree in Computer Science, Engineering, or related field