Security Architect

Project Role : Security Architect
Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills : ForgeRock Identity Management
Good to have skills : ForgeRock Access Management
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education

Summary
As a Security Architect, you will be leader who designs enterprise-scale identity ecosystems .You will lead the design of secure, scalable, and resilient identity solutions for millions of users. This role requires a deep blend of technical mastery in the ForgeRock stack and the business acumen to lead cross-functional security initiatives.. You will document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all aspects of security are thoroughly addressed and optimized for efficiency and effectiveness.

Key Responsibilities
1. Lead end-to-end architecture and design of Customer Identity and Access Management (CIAM) solutions using ForgeRock
2. Define CIAM solution architecture aligned with business, security, and enterprise standards
3. Design and govern:
o Authentication journeys / trees
o Authorization models
o Federation and SSO architectures
4. Architect integrations with:
o Web, mobile, and API-based applications
o External identity providers (social, enterprise IdPs)
5. Drive non-functional requirements:
o Scalability, performance, high availability, DR
6. Define and enforce security best practices:
o MFA, adaptive authentication, risk-based access
o Data privacy, consent, and regulatory compliance
7. Provide technical leadership and governance to delivery teams
8. Review designs, code, and configurations for quality and compliance
9. Mentor and guide CIAM developers and leads
10 Work closely with:
o Client stakeholders
o Security and infrastructure teams
o Program and delivery leadership
11. Support pre-sales activities including solutioning, estimations, and RFP responses (where applicable).
12. Familiarity with risk assessment methodologies and security compliance frameworks.
Professional & Technical Skills
ForgeRock & CIAM :-
Strong hands-on and architectural experience with:
1. ForgeRock Access Management (AM)
2. ForgeRock Identity Management (IDM)
3. ForgeRock Directory Services (DS)
4. Expertise in CIAM architectures for large-scale consumer platforms
5. Authentication Trees / Intelligent Access (mandatory)

Identity & Security:-
1. OAuth 2.0
2. OpenID Connect (OIDC)
3. SAML 2.0
4. JWT, REST APIs
5. LDAP / directory services

Scripting :-
1. Java, JavaScript / Groovy (ForgeRock scripting)
2. API security patterns
3. Linux / Unix environments
4. CI/CD and DevSecOps exposure

Additional functional experience :-
1. ForgeRock Identity Gateway (IG)
2. Cloud platforms (AWS / Azure / GCP)
3. Docker, Kubernetes
4. ForgeRock or IAM certifications
5. Experience with CIAM migrations (Ping, Okta, custom IAM)
Additional Information:
1.Bachelors and above degree in Computer Science, Information Technology, MIS, Engineering / Bachelor or college degree in related field or equivalent work experience (Full time).
2.The candidate should have minimum 7.5 years of experience in ForgeRock Identity Management & overall 15+ years overall IT experience

Certifications
ForgeRock FRX-AM-CSE Certified
ForgeRock FRX-IDM-CSE Certified