About the Role

The Senior Identity Engineer will lead the design and implementation of Customer Identity and Access Management (CIAM) solutions for a large-scale banking transformation program.
This role focuses on delivering secure, scalable, and regulatory-compliant digital identity platforms supporting customer identities, digital banking channels, and API ecosystems. The engineer will drive end-to-end CIAM solution delivery, including architecture, design, build, integration, and deployment using PingOne Advanced Identity Cloud and ForgeRock platforms.
The role requires strong expertise in modern identity protocols, customer journey design, Zero Trust principles, and banking security frameworks.

What You’ll Do

1. Design and implement end-to-end CIAM solutions using PingOne Advanced Identity Cloud and ForgeRock (AM, IDM, DS, IG).
2. Translate business, security, and regulatory requirements into scalable IAM solution designs.
3. Define and implement authentication, authorization, and federation strategies (OAuth2, OIDC, SAML).

1. Design and configure customer onboarding and authentication journeys, including digital onboarding, KYC integration, MFA, passwordless, and adaptive authentication.
2. Implement progressive profiling, consent management, and secure customer experience flows.

1. Integrate CIAM with banking applications, mobile/web platforms, APIs, and third-party services.
2. Develop secure integrations using REST APIs and modern identity standards (OAuth2, OIDC, SAML, SCIM).
3. Implement API security and token-based access control mechanisms.

1. Design and implement customer identity lifecycle processes including registration, provisioning, and profile management.
2. Integrate with directory services such as Ping Directory, OpenDJ, and LDAP.
3. Define identity data models, roles, and entitlement structures.

1. Develop custom authentication logic, scripts, and extensions using Java / JavaScript.
2. Build microservices and reusable components supporting CIAM architecture.
3. Automate workflows and integrations using APIs and scripting.

1. Implement IAM solutions using CI/CD pipelines and Infrastructure as Code (IaC).
2. Deploy solutions in containerized environments (Docker, Kubernetes).
3. Manage multi-environment deployments (Dev, QA, Prod) with secure configuration practices.
4. Align implementations with Zero Trust and cloud-native architecture principles.

1. Ensure compliance with banking security and regulatory standards, including data privacy and strong customer authentication.
2. Implement risk-based authentication and fraud prevention controls.

• 6–8 years of IAM experience with strong CIAM focus
• 5+ years of hands-on experience with PingOne AIC / ForgeRock IAM

• OAuth 2.0, OpenID Connect (OIDC), SAML 2.0
• API security and identity federation
• Customer authentication journeys and CIAM workflows
• Identity lifecycle management and provisioning

• LDAP / directory services (Ping Directory, OpenDJ, AD)
• Java and scripting (JavaScript, Groovy)
• Cloud platforms: AWS / Azure / GCP
• DevOps tools: CI/CD, Git, Jenkins, ArgoCD
• Containers: Docker, Kubernetes

• Knowledge on MFA, SSO, adaptive authentication
• Knowledge on Zero Trust architecture
• Knowledge on Banking security and compliance frameworks

• Ping Identity / ForgeRock certifications
• Experience in digital banking or Customer 360 programs
• Exposure to fraud detection, behavioral analytics, and consent frameworks
• Experience with large-scale CIAM platforms and microservices architectures

 About Simeio and What We Do

Simeio has over 650 talented employees across the globe. We have offices in USA (Atlanta HQ and Texas), India, Canada, Costa Rica and UK.

Founded in 2007, and now backed by private equity company ZMC, Simeio is recognized as a top IAM provider by industry analysts.
Alongside Simeio’s identity orchestration tool ‘Simeio IO’ - Simeio also partners with industry leading IAM software vendors to provide access management, identity governance and administration, privileged access management and risk intelligence services across on-premise, cloud, and hybrid technology environments.
Simeio provides services to numerous Fortune 1000 companies across all industries including financial services, technology, healthcare, media, retail, public sector, utilities and education.

Diversity & Inclusion

Simeio is an equal opportunity employer. If you require assistance with completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to our recruitment team - [email protected].


About Your Application

We carefully review every application we receive. If your skills and experience match our needs, we’ll be in touch. If you don’t hear from us within 10 days, please don’t be discouraged—we may retain your application for future opportunities. We also encourage you to check our careers page for other openings

Simeio is an equal opportunity employer. If you require assistance with completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to any of the recruitment team at recruitment@simeio.com or +1 404-882-3700.