ForgeRock Identity Engineer / Architect
Role: ForgeRock Identity Engineer / Architect
Location: VA, NJ, TX, Atlanta, Colorado, Tampa
About the Role
Join a high-impact POD building a self-service federated SSO platform. You’ll be the hands-on ForgeRock expert designing and engineering a scalable identity broker integrating with Okta, Microsoft Entra ID, PingIdentity, and more. This is a build-from-scratch, code-heavy role—not admin/config.
Key Responsibilities
- Design multi-tenant ForgeRock AM federation architecture
- Build REST APIs for programmatic SAML SP connection lifecycle (create/validate/activate)
- Implement SAML/OIDC flows, assertion validation, and secure session management across apps
- Develop scripted authentication (Groovy/JS) and automate certificate lifecycle (monitoring & rotation)
- Enable break-glass fallback, ensure high availability, and prepare SCIM-ready architecture
- Migrate existing manual SP connections to automated framework
Must Have
- 4+ years hands-on ForgeRock Access Manager (AM)
- Strong SAML 2.0 (debugging raw assertions), OIDC/OAuth 2.0
- Experience with ForgeRock REST APIs, scripted nodes, and keystore/X.509 management
- API design & integrations, LDAP, secrets management (AWS/Vault)
- Coding: Java/Groovy + CI/CD, API testing, SAML debugging tools
Nice to Have
- ForgeRock IDM, SCIM 2.0, cloud (AWS/Azure/GCP)
- Experience with Okta / Entra / Ping as IDP
- Migration of manual SP setups to programmatic model
Why This Role?
You’ll define the identity architecture powering hundreds of future customers—owning critical decisions, building automation, and solving complex, real-world federation challenges.
Recommended Jobs
Restaurant Operations Director
Description Thank you for your interest at a great career opportunity with Chick-fil-A. Here, you are taking the first step towards a very rewarding career. Every job at Chick-fil-A will prepare y…
Fitness Studio Opener
SPENGA = SP(in) + (str)EN(gth) + (yo)GA Position Summary:Be part of one of the nations fastest growing boutique fitness concepts. Grow with us! We are looking for an outgoing, friendly, and dedicat…
Get paid for taking free surveys with Unlock Surveys
Engage in surveys and discussions to earn rewards! Join Unlock's dynamic community of survey panellists today and begin earning rewards for sharing your valuable opinions. Formerly known as Springbo…
Clinical Data Support Specialist
The Clinical Data Support Specialist is responsible for ensuring the accuracy, integrity, and accessibility of clinical data within our healthcare organization. This position has three primary tasks, …
General Manager
The Duro Hospitality group shows what real Mexican food can be. Through a chef's eyes we reimagine this old world cuisine. This is NOT Tex-Mex. Imagine large format wood fired meats seasoned with chil…
Leak Detection Technician
You could earn between $57,000 to $70,000 based on how well you can sell and get things done. Benefits ~ Paid training ~ Health Insurance ~ Dental/Vision Insurance ~ Paid Time Off ~ Paid…
Administrative Assistant - Tier 3
Administrative Assistant - Tier 3
IP Litigation Associate Attorney (3-6yrs) - Houston
Job Description Job Description IP Litigation Associate Attorney Location: Del Mar, CA or Dallas, TX Direct Counsel represents an Am Law 50 firm Direct Counsel is seeking an IP Litigatio…
Regional Director - Admissions -Miller Motte College
Job Description Job Description Job Summary The primary purpose of the Regional Director of Admissions (RDOA) is to provide leadership and support to Ancora’s ground campuses, Campus Presidents,…
Branch Administrator
The Branch Administrator (BA) is responsible for providing overall administrative support for the Branch, including assisting the Branch Manager in connection with matters affecting the Branch faci…