PingFederate Engineer/Consultant

PingFederate Engineer/Consultant - London/hybrid - 6 - 9 months £485 per day

Experience

  • Typically 4-8+ years in IAM/Access Management/Identity Federation roles.
  • Proven experience working in UK-regulated or compliance-driven environments.
  • Experience working onshore with UK clients or stakeholders.
  • Exposure to cloud or hybrid identity architectures (Azure AD, AWS, GCP) is desirable
  • Desirable (not mandatory):
    • Ping Identity certifications
    • Security or IAM certifications (CISSP, CISM, Security+, etc.)
  • Experience delivering Financial Services or Insurance IAM programmes in the UK.
  • CIAM (Customer Identity) exposure.
  • Migration experience from ADFS, SiteMinder, or other Legacy federation platforms to PingFederate.
  • Familiarity with ServiceNow, JIRA, Confluence, and structured delivery models.

Role

You will eb responsible for the design, implementation, and operational support of enterprise-grade federated identity and single sign-on (SSO) solutions using PingFederate. The role is client-facing, requiring close collaboration with UK-based stakeholders, application teams, and security leadership to deliver secure, compliant authentication services across on-premise, cloud, and hybrid environments.

This role operates within regulated UK environments (eg Financial Services, Insurance, Healthcare), ensuring adherence to UK security standards, data protection requirements, and audit expectations while enabling modern authentication using SAML, OAuth, and OpenID Connect.

Key Responsibilities

UK Onshore Delivery & Stakeholder Engagement

  • Act as a UK onshore technical SME for PingFederate within client IAM programmes.
  • Engage directly with UK business, application, and security stakeholders to gather requirements and explain federation designs in clear, non-vendor language.
  • Participate in design authorities, CABs, and security reviews, representing the identity federation domain.
  • Support UK delivery governance, documentation standards, and change management processes.

Identity Federation & SSO Engineering

  • Design, configure, and support PingFederate as an Identity Provider (IdP) and Service Provider (SP) for internal, partner, and customer applications.
  • Implement and support SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC) authentication flows.
  • Deliver IdP-initiated and SP-initiated SSO integrations for web, mobile, and API-based services.
  • Integrate PingFederate with Active Directory/LDAP and external identity providers.

Platform Administration & Operations

  • Perform installation, configuration, upgrade, and patching of PingFederate in line with UK enterprise standards.
  • Configure high availability, clustering, and load-balanced deployments suitable for regulated production environments.
  • Manage SSL/TLS certificates, key rotation, trust stores, and federation metadata.
  • Provide 3rd-line support, root-cause analysis, and incident resolution for authentication and federation issues.
  • Support change, release, and incident processes aligned to ITIL practices.

Security, Risk & Compliance

  • Ensure solutions comply with UK regulatory and security requirements, including:
    • Data protection and privacy obligations (eg UK GDPR)
    • Internal security policies and audit controls
  • Implement MFA and adaptive authentication integrations (eg PingID or third-party MFA).
  • Apply Zero Trust and least-privilege principles within federation and token designs.
  • Support internal and external audits by providing technical evidence and documentation.

Customisation & Integration

  • Develop or support custom PingFederate adapters, selectors, and token translators (Java-based) where required.
  • Integrate PingFederate with PingAccess, API gateways, CIAM platforms, and cloud identity services.
  • Work with DevOps teams to support automation, environment consistency, and controlled deployments
Apply Now
Apply Now

Job Details

Company
Initialize IT
Location
London, United Kingdom
Employment Type
Contract
Salary
GBP Daily
Posted