Job Requirements
Chantilly, VA
Top Secret/SCI Full Scope Polygraph
Mid Level Career (5+ yrs experience)
Salary not specified
Join Premium to unlock estimated salaries
Job Description
Senior Ping Identity Engineer
Clearance Required: TS/SCI with Full Scope Polygraph
Position Summary
Seeking a Senior Ping Identity Engineer to support the design, deployment, configuration, and sustainment of enterprise identity and access management solutions in a secure federal environment. This role requires deep hands-on experience with PingFederate, strong familiarity with broader Ping Identity technologies, and proven AWS experience supporting secure, scalable identity architectures
The ideal candidate is a senior engineer who can operate as both a technical lead and hands-on implementer across complex IAM initiatives. This person should be comfortable owning architecture decisions, leading deployments, troubleshooting difficult federation and access issues, and advising stakeholders on secure identity design aligned to mission and operational requirements.
Key Responsibilities
Lead the design, deployment, configuration, and maintenance of Ping Identity platforms, with primary emphasis on PingFederate.
Engineer and support federation solutions using SAML, OAuth 2.0, OpenID Connect, and related authentication standards.
Integrate Ping solutions with enterprise applications, cloud services, APIs, directories, and custom applications in AWS-centric environments.
Provide technical leadership for IAM architecture, implementation strategy, upgrades, performance tuning, and operational support.
Troubleshoot complex authentication, authorization, policy, and federation issues across distributed and hybrid environments.
Develop and maintain technical documentation, implementation runbooks, architecture diagrams, and configuration standards.
Partner with security, infrastructure, cloud, and application teams to implement secure access controls and improve resilience and operational maturity.
Mentor junior engineers and provide guidance on identity engineering best practices, automation, and support processes.
Required Qualifications
Active TS/SCI clearance with Full Scope Polygraph.
5+ years of experience in identity and access management, security engineering, or related enterprise IAM roles is a common benchmark for senior identity engineering roles.
Strong hands-on experience deploying and configuring PingFederate in production environments.
Experience with additional Ping technologies such as PingAccess, PingDirectory, PingOne, or related Ping platform components is strongly preferred.
Strong AWS experience, including integration of IAM capabilities with cloud-hosted applications and services.
Deep understanding of SAML 2.0, OAuth 2.0, OpenID Connect, LDAP, SSO, and MFA concepts
Experience supporting secure identity architectures in regulated, federal, or high-security environments
Strong written and verbal communication skills, with the ability to work directly with technical teams, architects, and customer stakeholders
Preferred Qualifications
Experience supporting intelligence community, national security, or other classified customer environments.
Experience automating IAM administration or deployment tasks using PowerShell, Python, or similar scripting languages.
Experience with cloud security monitoring, logging, or audit capabilities in AWS, such as CloudTrail, CloudWatch, or Access Analyzer.
Familiarity with Zero Trust principles, least privilege design, and federal security frameworks
Clearance Required: TS/SCI with Full Scope Polygraph
Position Summary
Seeking a Senior Ping Identity Engineer to support the design, deployment, configuration, and sustainment of enterprise identity and access management solutions in a secure federal environment. This role requires deep hands-on experience with PingFederate, strong familiarity with broader Ping Identity technologies, and proven AWS experience supporting secure, scalable identity architectures
The ideal candidate is a senior engineer who can operate as both a technical lead and hands-on implementer across complex IAM initiatives. This person should be comfortable owning architecture decisions, leading deployments, troubleshooting difficult federation and access issues, and advising stakeholders on secure identity design aligned to mission and operational requirements.
Key Responsibilities
Lead the design, deployment, configuration, and maintenance of Ping Identity platforms, with primary emphasis on PingFederate.
Engineer and support federation solutions using SAML, OAuth 2.0, OpenID Connect, and related authentication standards.
Integrate Ping solutions with enterprise applications, cloud services, APIs, directories, and custom applications in AWS-centric environments.
Provide technical leadership for IAM architecture, implementation strategy, upgrades, performance tuning, and operational support.
Troubleshoot complex authentication, authorization, policy, and federation issues across distributed and hybrid environments.
Develop and maintain technical documentation, implementation runbooks, architecture diagrams, and configuration standards.
Partner with security, infrastructure, cloud, and application teams to implement secure access controls and improve resilience and operational maturity.
Mentor junior engineers and provide guidance on identity engineering best practices, automation, and support processes.
Required Qualifications
Active TS/SCI clearance with Full Scope Polygraph.
5+ years of experience in identity and access management, security engineering, or related enterprise IAM roles is a common benchmark for senior identity engineering roles.
Strong hands-on experience deploying and configuring PingFederate in production environments.
Experience with additional Ping technologies such as PingAccess, PingDirectory, PingOne, or related Ping platform components is strongly preferred.
Strong AWS experience, including integration of IAM capabilities with cloud-hosted applications and services.
Deep understanding of SAML 2.0, OAuth 2.0, OpenID Connect, LDAP, SSO, and MFA concepts
Experience supporting secure identity architectures in regulated, federal, or high-security environments
Strong written and verbal communication skills, with the ability to work directly with technical teams, architects, and customer stakeholders
Preferred Qualifications
Experience supporting intelligence community, national security, or other classified customer environments.
Experience automating IAM administration or deployment tasks using PowerShell, Python, or similar scripting languages.
Experience with cloud security monitoring, logging, or audit capabilities in AWS, such as CloudTrail, CloudWatch, or Access Analyzer.
Familiarity with Zero Trust principles, least privilege design, and federal security frameworks
group id: 10529568