Job Description

Role : Sr.ForgeRock IAM Engineer/ SME

Location : PAN India

Job Summary :

We are seeking a skilled Technical Operations Engineer to manage and support ForgeRock Identity Platform and associated systems.

This role involves deploying, configuring, monitoring, and ensuring system availability, security, and compliance while providing technical support and automation expertise.

Years of experience needed 8+ Years of relevant experience.

Technical Skills :

- ForgeRock Identity Platform AM, IDM, IG (Identity Gateway), DS (Directory Services)

- Single Sign-On (SSO) Protocols OAuth 2.0, SAML, OIDC, Kerberos, WS-Federation

- Password Management Automation Self-service password reset (SSPR), vaulting solutions

- IAM Integration Active Directory, LDAP, Azure AD, Okta, CyberArk, Ping Identity

- Multi-Factor Authentication (MFA) OTP, biometric, certificate-based authentication

- Scripting & Automation Java, Groovy, PowerShell, Python for IAM workflows

- Database Management SQL queries and performance optimization in IAM systems

- REST API Development integrating ForgeRock with cloud and enterprise applications

- Troubleshooting & Monitoring Splunk, ELK Stack, ForgeRock logs analysis

- Security & Compliance Zero-trust models, GDPR, HIPAA, NIST frameworks

Key Responsibilities :

- Install, configure, and maintain ForgeRock Identity & Access Management (IAM) solutions

- Ability to design scalable IAM architectures for enterprise environments

- Develop and customize identity provisioning workflows using scripting

- Configure authentication services including ForgeRock Access Management (AM) and Identity Management (IDM)

- Implement role-based access control (RBAC), attribute-based access control (ABAC) policies

- Integrate ForgeRock IAM with enterprise applications, directories, and cloud environments

- Ensure 24/7 system availability, monitor performance, and proactively address issues

- Perform health checks and diagnostics for ForgeRock IAM infrastructure

- Utilize monitoring tools such as Splunk, ELK Stack, ServiceNow for log analysis and alerts

- Troubleshoot authentication failures, authorization errors, and system access issues

- Manage identity lifecycle processes (user provisioning, deprovisioning, certification campaigns)

- Perform access reviews and compliance audits to ensure IAM security standards are met

- Define and implement fine-grained authorization policies in ForgeRock AM

- Generate reports on user access, entitlement changes, and policy violations

- Develop custom connectors and integrations using Java, Groovy, REST APIs

- Automate IAM processes to reduce manual interventions and improve efficiency

- Write scripts to automate access request workflows and account provisioning

- Implement API-based integrations with third-party applications and cloud platforms

- Ensure compliance with GDPR, HIPAA, NIST, SOX, ISO 27001 security frameworks

- Implement multi-factor authentication (MFA) and adaptive authentication policies

- Monitor and manage privileged accounts and access control mechanisms

- Investigate and remediate security incidents and IAM vulnerabilities

- Diagnose and resolve user access issues, authentication failures, and system errors

- Provide technical support to end-users and administrators for IAM-related queries

- Conduct root cause analysis and develop preventive solutions for IAM security risks

- Maintain detailed documentation on IAM processes, configurations, and troubleshooting guides