Solutions Architect - IAM

Solutions Architect - IAM

Location: Home-Based US

Position Summary:

We are looking for an experienced Solutions Architect to join our Identity and Access Management (IAM) team. The ideal candidate will be responsible for designing and implementing complex systems that deliver a secure and stable IAM platform. They will work closely with other stakeholders and external partners to ensure that the systems are built to the highest standards of quality to ensure that the company's IAM systems are functioning effectively, efficiently, and securely. 

Your Day-to-Day:

• Design and implement complex systems using Ping Identity Suite. 
• Work with other stakeholders to ensure that the systems deliver all of our IAM needs such as user directories, authentication, access control system, single sign-on (SSO) and MFA.  
• Identify security risks and advise on how to mitigate them. 
• Deliver a system which is SOC2 compliant.  
• Create documentation such as design specifications and design rationale to help other members of the team understand the design decision process. 
• Conduct research on emerging technologies that could impact the system being designed. 
• Develop a conceptual model of how users will interact with the system, including how data will be stored and processed. 

• This role requires communication with Managers, peers and other colleagues of the company in person, and/or by utilizing Microsoft Teams chat, calling and meeting functions.

• This role requires requires infrequent travel to a Bentley office location (5%).

• Requires sitting or standing at will while performing work on a computer (or any other physical requirements).

What You Bring to The Team:

• Bachelor’s degree in Computer Science, Information Technology, Software Engineering or a related field. 

• 5+ years of experience architecting, developing, and deploying global enterprise scale Ping Identity Suite environments, particularly focusing on Ping Directory, Directory Proxy, Federate, Access, and Authorize required. 

• 3+ years of experience developing Java based Ping ID adapters and other customizations. 

•  Expert level understanding of Identity Federation & SSO integration protocols (OAuth/OIDC, SAML, WS-Fed, Basic Auth, AAD B2B & B2C)  

• In-depth knowledge of IAM concepts including JIT provisioning, SCIM, PKI, identity lifecycles, and MFA.

• Expert level knowledge of relevant troubleshooting and investigation tools such as Fiddler, SAML Tracer, browser-based network traces, and Burp Suite for example. 

• In-depth knowledge of RESTful API’s. 

• Expert level understanding of security risks, particularly as they relate to the IAM landscape, and the resolution of such risks. 

• Experience with compliance standards such as GDPR and SOC2.

• Excellent ability to translate both technical and non-technical requests, issues, and requirements from both internal and external consumers into secure solutions for implementation. 

• Strong experience with cloud-based infrastructure and services using AWS. 

• Experience with AWS tools such as CloudWatch, EC2, ELB, Route53 and S3.  

•  Ability to explain highly complex ideas in a clear and effective way to other business units and stakeholders. 

What We Offer:

• A great Team and culture – please see our Recruitment Video.

• An exciting career as an integral part of a world-leading software company providing solutions for architecture, engineering, and construction.

• Competitive Salary and benefits.

• The opportunity to work within a global and diversely international team.

• A supportive and collaborative environment.

• Colleague Recognition Awards.

#LI-Remote #LI-RV

About Bentley Systems:

Bentley Systems (Nasdaq: BSY) is the infrastructure engineering software company. We provide innovative software to advance the world’s infrastructure – sustaining both the global economy and environment. Our industry-leading software solutions are used by professionals, and organizations of every size, for the design, construction, and operations of roads and bridges, rail and transit, water and wastewater, public works and utilities, buildings and campuses, mining, and industrial facilities. Our offerings, powered by the iTwin Platform for infrastructure digital twins, include MicroStation and Bentley Open applications for modeling and simulation, Seequent’s software for geoprofessionals, and Bentley Infrastructure Cloud encompassing ProjectWise for project delivery, SYNCHRO for construction management, and AssetWise for asset operations. Bentley Systems’ 5,000 colleagues generate annual revenues of more than $1 billion in 194 countries. www.bentley.com

Equal Opportunity Employer:

Bentley is an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, sex, sexual orientation, gender identity, disability, protected veteran status, religion, national origin, age, or any other protected characteristic.  This commitment extends to all aspects of employment, including, but not limited to, hiring, placement, promotion, compensation, and training. EEO is the Law and EEO is the Law Supplement documents provide additional information about your rights as an applicant under the law.

Bentley Policy on EEO, Affirmative Action and Pay Transparency Non-Discrimination

Bentley participates in e-Verify / Bentley participate in e-Verify / Right to Work Notice

Request an Accommodation:

As an Equal Opportunity Employer, Bentley is committed to providing reasonable accommodations to applicants with disabilities. We encourage you to request a reasonable accommodation if you are not able to fully use or access our online application system.   You can make an accommodation request by calling 610-458-5000 or sending us an email at disabilityrequest@bentley.com