CISO Technical Lead - SSO Engineer

Location: Jacksonville, FL

Salary: $110,000.00 USD Annually - $115,000.00 USD Annually

Description:

Job Title: CISO Technical Lead - SSO Engineer

Location: Jacksonville, FL

Fulltime

Role Overview

The CISO Technical Lead - SSO Engineer will lead the design, implementation, and operational management of enterprise Single Sign-On (SSO) and identity federation solutions, with a strong emphasis on PingFederate. This role is critical in supporting secure divestiture initiatives, ensuring seamless identity separation, migration, and ongoing secure access across transitioning organizations.

Key Responsibilities

Divestiture Strategy & Execution

• Lead the design and execution of secure identity separation, migration, and integration strategies for divested business units.
• Plan and implement federated identity solutions to enable uninterrupted application access for users transitioning between organizations.
• Manage the full lifecycle of federated trusts, identity providers (IdP), and service providers (SP), including application onboarding and offboarding during divestitures.
  
  

PingFederate Implementation & Management

• Design, deploy, configure, and maintain high-availability PingFederate environments across complex enterprise landscapes.
• Administer PingFederate connections, policies, adapters, selectors, and authentication methods, including SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
• Diagnose and resolve complex authentication, authorization, and federation issues to ensure continuous SSO service availability.
  
  

Identity & Access Integration

• Integrate PingFederate with Active Directory, Azure Active Directory, LDAP, and other enterprise identity stores.
• Partner with application owners to onboard new applications and migrate existing applications to the PingFederate SSO platform.
• Ensure seamless integration with Multi-Factor Authentication (MFA) solutions and enterprise security controls.
  
  

Security & Compliance

• Define and enforce security best practices and architectural standards for SSO and identity federation.
• Ensure compliance with corporate security policies, regulatory requirements, and data governance standards, particularly during divestiture activities.
• Conduct regular security reviews, audits, and vulnerability assessments of the PingFederate environment.
  
  

Operational Support & Documentation

• Provide expert-level support for SSO-related incidents and service requests, collaborating closely with security, infrastructure, and application teams.
• Create and maintain architecture diagrams, technical documentation, runbooks, and standard operating procedures (SOPs) for SSO platforms.
• Act as a subject matter expert (SME) for identity federation and SSO technologies across the organization.
  
  

Key Deliverables

• Secure and compliant divestiture-driven identity and access transitions
• Highly available and resilient PingFederate & SSO platform operations
• Strong security posture, regulatory compliance, and operational excellence
  
  

Required Skills & Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
• 5 years of experience in Identity and Access Management (IAM), with at least 3 years focused on SSO technologies.
• Strong hands-on experience designing and managing PingFederate in large-scale enterprise environments.
• Deep understanding of SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
• Proven experience integrating SSO platforms with Active Directory, Azure AD, LDAP, and diverse enterprise applications.
• Proficiency in scripting and automation using PowerShell and/or Python.
• Excellent analytical, troubleshooting, and communication skills, with the ability to explain complex concepts to both technical and non-technical audiences.
• Fluent in English (written and spoken).
  
  

By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively "Judge") to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes. Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.

Contact:

This job and many more are available through The Judge Group. Please apply with us today!