Bestinfo Systems LLC ยท 19 hours ago
Senior Identity Services Engineer
New York, NY
Full-time
Onsite
Mid, Senior Level
$97K/yr - $145K/yr
5+ years expBestinfo Systems LLC is a company operating in the healthcare and IT sectors, and they are seeking a Senior Identity Services Engineer. The role involves managing identity and access management systems, with a focus on single sign-on and federation, while collaborating across technical teams to enhance security measures.
Staffing & Recruiting
Hiring Manager
Ashok Sachan
Responsibilities
Hands-on experience with the Ping Identity platform, particularly:
PingFederate, PingOne, PingID, PingDirectory
Experience with MFA and Passwordless/FIDO2/WebAuthn authentication strategies
Experience building and configuring enterprise SSO applications in Azure AD / Entra ID
Exposure to IAM orchestration platforms such as PingOne DaVinci or similar tools
Experience supporting cloud identity integrations (Azure, AWS, GCP)
Familiarity with enterprise SSO in hybrid environments (on-prem and cloud-based apps)
Strong documentation and communication skills
Comfortable collaborating across technical and non-technical teams
Ability to lead projects and mentor junior engineers
5+ years of Identity & Access Management experience with a strong focus on SSO and federation
Deep technical knowledge of:
PingFederate, Azure AD, Okta, ADFS
Federation protocols including SAML, OIDC, and OAuth2
LDAP, Active Directory, SCIM
Proficiency in scripting and development with PowerShell, Python, and Java
Experience working with REST APIs for IAM services; familiarity with Postman or similar tools
Familiarity with OGNL expression language for customizing PingFederate policies
Front-end UX design and customization using HTML, CSS, and JavaScript
Basic Linux administration skills for maintaining and managing IAM infrastructure
Working knowledge of certificates and PKI (X.509, certificate chains, signing, encryption, keystore management)
Strong troubleshooting and debugging skills across application, identity, and network layers
Understanding of modern identity concepts such as Zero Trust, adaptive authentication (risk-based, device/user signals), and conditional access
Qualification
Required
5+ years of Identity & Access Management experience with a strong focus on SSO and federation
Deep technical knowledge of: PingFederate, Azure AD, Okta, ADFS
Federation protocols including SAML, OIDC, and OAuth2
LDAP, Active Directory, SCIM
Proficiency in scripting and development with PowerShell, Python, and Java
Experience working with REST APIs for IAM services; familiarity with Postman or similar tools
Familiarity with OGNL expression language for customizing PingFederate policies
Front-end UX design and customization using HTML, CSS, and JavaScript
Basic Linux administration skills for maintaining and managing IAM infrastructure
Working knowledge of certificates and PKI (X.509, certificate chains, signing, encryption, keystore management)
Strong troubleshooting and debugging skills across application, identity, and network layers
Understanding of modern identity concepts such as Zero Trust, adaptive authentication (risk-based, device/user signals), and conditional access
Preferred
Hands-on experience with the Ping Identity platform, particularly: PingFederate, PingOne, PingID, PingDirectory
Experience with MFA and Passwordless/FIDO2/WebAuthn authentication strategies
Experience building and configuring enterprise SSO applications in Azure AD / Entra ID
Exposure to IAM orchestration platforms such as PingOne DaVinci or similar tools
Experience supporting cloud identity integrations (Azure, AWS, GCP)
Familiarity with enterprise SSO in hybrid environments (on-prem and cloud-based apps)
Strong documentation and communication skills
Comfortable collaborating across technical and non-technical teams
Ability to lead projects and mentor junior engineers
Benefits
Best-in-class benefits
Company
Bestinfo Systems LLC
Bestinfo Systems LLC, a name of repute in IT & Telecom sector recruitment & Staffing.
51-200 employees
Funding
Current Stage
Growth StageCompany data provided by crunchbase