Role: ForgeRock IAM Engineer
Location: East Princeton, NJ
Role Descriptions: ForgeRock IAM Engineer Hands-on support and engineering for ForgeRock stack (AMIDMDS)| including enhancements| integrations| and production support.Own vulnerability remediation across ForgeRock componentsanalyze findings| apply patches| and implement secure configurations.Design and maintain authentication flows| access policies| identities| and provisioning workflows aligned to business needs.Troubleshoot L2L3 IAM issues (login failures| performance| sync issues) and drive root-cause resolution.Manage upgrades| certificatesecrets rotation| and environment stability with minimal downtime.Collaborate with application| infra| and security teams provide audit evidence| documentation| and runbooks.
Essential Skills: ForgeRock IAM Engineer Hands-on support and engineering for ForgeRock stack (AMIDMDS)| including enhancements| integrations| and production support.Own vulnerability remediation across ForgeRock componentsanalyze findings| apply patches| and implement secure configurations.Design and maintain authentication flows| access policies| identities| and provisioning workflows aligned to business needs.Troubleshoot L2L3 IAM issues (login failures| performance| sync issues) and drive root-cause resolution.Manage upgrades| certificatesecrets rotation| and environment stability with minimal downtime.Collaborate with application| infra| and security teams provide audit evidence| documentation| and runbooks.
Skills: Forgerock Identity Management~Forgerock Access Management Experience Required: 8-10
Role Summary
The ForgeRock Engineer will design, configure, and support ForgeRock within a complex workforce IAM environment. The role is critical for enabling federation with Microsoft Entra ID, supporting legacy and modern application authentication, and enabling a phased migration toward Entra ID as the single workforce entry point.
________________________________________
Key Responsibilities
• Engineer and support ForgeRock Access Management (AM) for workforce authentication.
• Configure and manage authentication flows, federation, and application integrations.
• Implement and support ForgeRock ↔ Microsoft Entra ID federation (POC and production).
• Support integrations with RSA, ADFS, and legacy identity systems.
• Assess applications tightly integrated with ForgeRock and define migration or coexistence strategies.
• Troubleshoot complex SSO, federation, and authentication issues.
• Support remediation of legacy or non standard authentication patterns.
________________________________________
Mandatory Skills & Experience
• Strong hands on experience with ForgeRock AM (authentication trees, federation, access policies).
• Deep understanding of SAML 2.0, OAuth 2.0, OpenID Connect (OIDC).
• Experience integrating ForgeRock with Microsoft Entra ID / Azure AD.
• Experience in multi IDP enterprise environments.
• Strong troubleshooting skills across authentication, claims, certificates, and federation flows.
________________________________________
Preferred Experience
• Experience supporting Identity Provider consolidation programs.
• Familiarity with MFA integration and authentication hardening.
• Experience working with applications that do not support SAML/OIDC.
—
