Overview
Remote
On Site
$98 - $105 hourly
Contract - W2
Contract - Temp
Skills
Strategy
Multi-factor authentication
Optimization
Training
Collaboration
Design
Flowchart
Onboarding
Regulatory Compliance
FOCUS
SailPoint
Governance
Directory Services
Microsoft Azure
LDAP
Oracle
SSO
Identity management
SAML
OAuth
OIDC
Problem solving
Documentation
Artificial intelligence
Messaging
Data
Job Details
RESPONSIBILITIES:
Kforce has a client in Cincinnati, OH that is seeking an Advanced Security Architect to join their team on a 12-month contract to hire basis. This person must have experience with PingOne. In order to be considered for the future FTE opportunity, candidates must be local to Cincinnati or another hub location (o Boca Raton, FL, Blue Ash, OH, Charlotte, NC, Portland, OR, San Jose, CA, Deerfield, IL).
Summary:
The Advanced Security Architect will be a key contributor to the IAM Architecture and Governance team, responsible for the strategy, design, developing, and implementing enterprise IAM program. This role will focus on governance of the IAM program in the Access Management (SSO/MFA), Directory Services, IAM Governance, and Privileged access management areas. This role contributes to security best practices by developing modern IAM solutions that improve access processes, reducing friction, and ensure the organization's accounts have the appropriate access at the right time.
Responsibilities:
* Design and optimization of IAM solutions, strategies, and technologies including In-house developed solutions, PingOne, Entra, Radiant Logic, SailPoint, Saviynt, etc.
* Design and maintain software systems that protect sensitive information
* Identify, evaluate, and mitigate complex IAM and technology risks
* Provide technical guidance and training to implementation teams
* Collaborate with cross-functional teams to gather requirements and design tailored IAM solutions that align with security best practices
* Document and maintain IAM architectures, including creating flow charts, diagrams, and related documentation
* Analyze and optimize the IAM environment, identifying areas for automation and streamlining access processes, such as onboarding and offboarding
* Enhance security posture through automation in access reviews and compliance, reducing friction in IAM processes to enable secure, timely access across accounts
REQUIREMENTS:
* Minimum 3 years of experience in identity and access management, with a focus on PingOne and privileged access management
* Proficiency in PingOne, Ping Access, and Ping Federate, including DaVinci
* Strong knowledge of Entra and identity governance solutions
* Experience with directory services and familiarity with IGA providers (e.g., SailPoint, Saviynt, Radiant, AD, LDAP, Entra)
* Expertise in at least two IAM areas, such as Identity Governance & Administration (IGA), Directory Services (Azure, AD, LDAP Oracle), Access Management (SSO, Federations), and Privileged Access Management (PAM)
* Subject Matter Expert in SAML, OAuth, and OIDC
* Collaborative approach, with strong problem-solving and documentation skills to support various stakeholders and expertise levels
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.
Kforce has a client in Cincinnati, OH that is seeking an Advanced Security Architect to join their team on a 12-month contract to hire basis. This person must have experience with PingOne. In order to be considered for the future FTE opportunity, candidates must be local to Cincinnati or another hub location (o Boca Raton, FL, Blue Ash, OH, Charlotte, NC, Portland, OR, San Jose, CA, Deerfield, IL).
Summary:
The Advanced Security Architect will be a key contributor to the IAM Architecture and Governance team, responsible for the strategy, design, developing, and implementing enterprise IAM program. This role will focus on governance of the IAM program in the Access Management (SSO/MFA), Directory Services, IAM Governance, and Privileged access management areas. This role contributes to security best practices by developing modern IAM solutions that improve access processes, reducing friction, and ensure the organization's accounts have the appropriate access at the right time.
Responsibilities:
* Design and optimization of IAM solutions, strategies, and technologies including In-house developed solutions, PingOne, Entra, Radiant Logic, SailPoint, Saviynt, etc.
* Design and maintain software systems that protect sensitive information
* Identify, evaluate, and mitigate complex IAM and technology risks
* Provide technical guidance and training to implementation teams
* Collaborate with cross-functional teams to gather requirements and design tailored IAM solutions that align with security best practices
* Document and maintain IAM architectures, including creating flow charts, diagrams, and related documentation
* Analyze and optimize the IAM environment, identifying areas for automation and streamlining access processes, such as onboarding and offboarding
* Enhance security posture through automation in access reviews and compliance, reducing friction in IAM processes to enable secure, timely access across accounts
REQUIREMENTS:
* Minimum 3 years of experience in identity and access management, with a focus on PingOne and privileged access management
* Proficiency in PingOne, Ping Access, and Ping Federate, including DaVinci
* Strong knowledge of Entra and identity governance solutions
* Experience with directory services and familiarity with IGA providers (e.g., SailPoint, Saviynt, Radiant, AD, LDAP, Entra)
* Expertise in at least two IAM areas, such as Identity Governance & Administration (IGA), Directory Services (Azure, AD, LDAP Oracle), Access Management (SSO, Federations), and Privileged Access Management (PAM)
* Subject Matter Expert in SAML, OAuth, and OIDC
* Collaborative approach, with strong problem-solving and documentation skills to support various stakeholders and expertise levels
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
By clicking ?Apply Today? you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.