Responsibilities

• Deliver services in a direct capacity on IAM ForgeRock engagements
• Engage in requirements gathering and use case development
• Generate, validate, and justify security solutions and designs consistent with client objectives and best practices
• Develop deployment and implementation methodology and standards consistent with vendor best practices Install, integrate, configure, and deploy IAM solutions and systems to facilitate User Life-Cycle Management, Identity and Access Governance, Automated Provisioning, Single Sign-On, Federation, Privileged Account Management
• Transcribe and present technical information to business / executive levels
• Design and implement solutions using ForgeRock Identity Management (OpenIDM) for user lifecycle management, including provisioning, reconciliation, and synchronization
• Configure and manage ForgeRock Access Management (OpenAM) for authentication, authorization, federation, and single sign-on (SSO) capabilities
• Maintain ForgeRock Directory Services (OpenDJ) for high-performance directory access and storage
• Utilize the ForgeRock Backstage Portal for support, documentation, and community engagement
• Develop custom scripts and connectors for integration with various applications and systems
• Monitor system performance, conduct regular audits, and provide optimization recommendations
• Collaborate with cross-functional teams to understand business requirements and translate them into technical specifications
• Ensure compliance with security policies and standards, including regular updates and patches
• Provide technical support and troubleshooting for ForgeRock-related issues
• Document technical processes, configurations, and procedures for knowledge sharing and compliance

Requirements

• 8+ years of hands-on experience in Identity and Access Management implementation using ForgeRock IAM suite, including OpenIDM, OpenAM, OpenDJ, Master. and SSO Admin
• Ability to troubleshoot support requests with minimal guidance
• Experience with light admin/support for Linux (Redhat), Windows Oss, and Tomcat
• Understanding of and ability to write basic Linux shell and Windows PowerShell scripts
• Enjoys interacting in ITSM environment and using related tools (ServiceNow or similar)
• Hands-on experience working in Controlled Change Management/Deployment environments (supporting SDLC process)
• Strong understanding of identity and access management principles and technologies
• Knowledge of LDAP, SSO, OAuth, SAML, and RESTful APIs
• Familiarity with directory services concepts and protocols

Benefits

• Extended Healthcare with Prescription Drugs, Dental and Vision, and Healthcare Spending Account (Company Paid)
• Life and AD&D Insurance (Company Paid)
• Employee Assistance Program (Company Paid)
• Telehealth (Company Paid)
• Short-term Disability (Company Paid)
• Long-Term Disability
• Paid Time Off (including vacation and sick days)
• Registered Retirement Savings Plan (RRSP) with Company match
• Maternity/Parental/Adoption Leave Top-up
• Employee Stock Purchase Program
• Critical Illness Insurance
• Employee Discounts
• Unlimited access to LinkedIn learning solutions

About EPAM

• EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential