Information Security Engineer III

Information Security Engineer III (IAM) - W2 Contract Only Role: Information Security Engineer III Contract This individual will be responsible for defining, delivering, and supporting customer identity and access management (IAM) solutions with a focus on Ping Directory and related Ping Identity products. The candidate will collaborate closely with the IT Engineering and Information Security teams to design scalable, secure, and high-performance directory services. They will also contribute to broader IS initiatives and support ongoing operations within the Information Security department. The candidate will be focused on securing identity infrastructure through the implementation and management of Ping Directory and associated tools. Responsibilities include directory architecture, schema design, replication strategies, performance tuning, and integration with authentication and authorization systems. Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined. Accountable for always doing the right thing for customers and colleagues and ensures that actions and behaviors drive a positive customer experience. While operating within the Bank's risk appetite, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types. ESSENTIAL DUTIES & RESPONSIBILITIES Design, implement, and maintain Ping Directory infrastructure to support customer identity services. Define security and performance requirements for directory services and IAM integrations. Serve as a subject matter expert and consultant on identity-related projects. Collaborate with IT and IS teams to integrate Ping Directory with authentication, SSO, and federation solutions. Monitor and optimize directory performance, replication, and availability. Develop and maintain standards, procedures, and guidelines for directory services and IAM operations. Conduct root cause analysis and remediation of identity-related incidents and vulnerabilities. Support audits and compliance efforts by providing technical documentation and evidence of controls. Stay current with identity security threats, technologies, and best practices. Participate in risk assessments and recommend improvements to identity infrastructure. Provide technical leadership and mentoring to junior engineers and offshore teams. MINIMUM KNOWLEDGE, SKILLS & ABILITIES REQUIRED Bachelors degree in computer science, Information Systems, or equivalent experience. Masters degree a plus. 8+ years of IT experience, with at least 4 years focused on Ping Directory or similar LDAP-based directory services. Strong understanding of identity and access management principles, including authentication, authorization, and federation. Experience with Ping Identity suite (PingDirectory, PingFederate, PingAccess, PingOne). Experience consuming and integrating on prem or hybrid cloud to AWS (or similar cloud platform). Proficiency in Unix/Linux. Familiarity with scripting languages (e.g., Shell, Python) for automation and integration. Solid understanding of distributed computing and directory replication strategies. Knowledge of application and data security concepts and common vulnerabilities. Experience working with offshore teams and in regulated industries (e.g., financial services) is a plus. Industry certifications such as CompTIA Security+, CISSP, or Ping Identity certifications preferred. Excellent communication skills, both verbal and written, with the ability to tailor messaging to technical and non-technical audiences. Seniority level Mid-Senior level Employment type Contract Job function Information Technology IT Services and IT Consulting #J-18808-Ljbffr