Solutions Architect - IAM

Solutions Architect - IAM

Location: Office-Based Burlington, Onterio / Home-Based Canada / Hybrid Quebec city / Burlington, Ontario.

Position Summary:

We are looking for an experienced Solutions Architect to join our Identity and Access Management (IAM) team. The ideal candidate will be responsible for designing and implementing complex systems that deliver a secure and stable IAM platform. They will work closely with other stakeholders and external partners to ensure that the systems are built to the highest standards of quality to ensure that the company's IAM systems are functioning effectively, efficiently, and securely. 

Your Day-to-Day:

• Design and implement complex systems using Ping Identity Suite. 
• Work with other stakeholders to ensure that the systems deliver all of our IAM needs such as user directories, authentication, access control system, single sign-on (SSO) and MFA.  
• Identify security risks and advise on how to mitigate them. 
• Deliver a system which is SOC2 compliant.  
• Create documentation such as design specifications and design rationale to help other members of the team understand the design decision process. 
• Conduct research on emerging technologies that could impact the system being designed. 
• Develop a conceptual model of how users will interact with the system, including how data will be stored and processed. 
• Review existing systems to determine how they can be improved or updated. 
• Determine hardware and software specifications for the system being designed. 
• Work closely with the development teams to ensure they understand the identity and IAM concepts and advise them on how to implement it properly into their products.  

What You Bring to The Team:

• Bachelor’s degree in Computer Science, Information Technology, Software Engineering or a related field. 

• 5+ years of experience architecting, developing, and deploying global enterprise scale Ping Identity Suite environments, particularly focusing on Ping Directory, Directory Proxy, Federate, Access, and Authorize required. 

• 3+ years of experience developing Java based Ping ID adapters and other customizations. 

•  Expert level understanding of Identity Federation & SSO integration protocols (OAuth/OIDC, SAML, WS-Fed, Basic Auth, AAD B2B & B2C)  

• In-depth knowledge of IAM concepts including JIT provisioning, SCIM, PKI, identity lifecycles, and MFA.

• Expert level knowledge of relevant troubleshooting and investigation tools such as Fiddler, SAML Tracer, browser-based network traces, and Burp Suite for example. 

• In-depth knowledge of RESTful API’s. 

• Expert level understanding of security risks, particularly as they relate to the IAM landscape, and the resolution of such risks. 

• Experience with compliance standards such as GDPR and SOC2.

• Excellent ability to translate both technical and non-technical requests, issues, and requirements from both internal and external consumers into secure solutions for implementation. 

• Strong experience with cloud-based infrastructure and services using AWS. 

• Experience with AWS tools such as CloudWatch, EC2, ELB, Route53 and S3.  

•  Ability to explain highly complex ideas in a clear and effective way to other business units and stakeholders. 

What We Offer:

• A great Team and culture – please see our Recruitment Video.

• An exciting career as an integral part of a world-leading software company providing solutions for architecture, engineering, and construction.

• Competitive Salary and benefits.

• The opportunity to work within a global and diversely international team.

• A supportive and collaborative environment.

• Colleague Recognition Awards.

#LI-Remote #LI-RV

About Bentley Systems:

Bentley Systems (Nasdaq: BSY) is the infrastructure engineering software company. We provide innovative software to advance the world’s infrastructure – sustaining both the global economy and environment. Our industry-leading software solutions are used by professionals, and organizations of every size, for the design, construction, and operations of roads and bridges, rail and transit, water and wastewater, public works and utilities, buildings and campuses, mining, and industrial facilities. Our offerings, powered by the iTwin Platform for infrastructure digital twins, include MicroStation and Bentley Open applications for modeling and simulation, Seequent’s software for geoprofessionals, and Bentley Infrastructure Cloud encompassing ProjectWise for project delivery, SYNCHRO for construction management, and AssetWise for asset operations. Bentley Systems’ 5,000 colleagues generate annual revenues of more than $1 billion in 194 countries. 

Equal Opportunity Employer:

Bentley is proud to be an equal opportunity employer and considers for employment all qualified applicants without regard to race, color, gender/gender identity, sexual orientation, disability, marital status, religion/belief, national origin, caste, age, or any other characteristic protected by local law or unrelated to job qualifications.