AF
Identity & Access Management Engineer
Accepting applicationsAmeriprise Financial Services, LLC · Noida, Uttar Pradesh, India
Full-Time Mid_senior PerlPythonaiaterf
Posted
4d ago
Category
Test
Experience
Mid_senior
Country
India
About Our Company
Ameriprise India LLP has been providing client based financial solutions to help clients plan and achieve their financial objectives for 20 years. We are part of Ameriprise Financial Inc., a US financial planning company headquartered in Minneapolis with a global presence and diversified financial services leader with more than $1.5 trillion in assets under management, administration and advisement as of year-end 2024. The firm’s focus areas include Asset Management and Advice, Retirement Planning and Insurance Protection.
Be part of an inclusive, collaborative culture that rewards you for your contributions, and work with other talented individuals who share your passion for doing great work. You’ll also have plenty of opportunities to make your mark at the office and a difference in your community. So, if you're talented, driven and want to work for a strong, ethical company that cares, take the next step and create a career at Ameriprise India LLP.
Job Description
We are seeking a hands-on engineer with strong expertise in Identity & Access Management (IAM), specializing in Ping Identity solutions, SiteMinder-to-Ping migration, and Terraform-based automation. The candidate should demonstrate strong analytical and problem-solving skills and be capable of driving design, development, and migration initiatives.
In addition to engineering responsibilities, the role includes supporting ongoing operational activities and incident management to ensure platform availability for end users and applications. The individual will also be responsible for platform optimization, enhancing logging and auditing capabilities, and implementing new IAM solutions, along with driving automation initiatives across the environment.
Key ResponsibilitiesIAM Engineering & MigrationDesign and implement IAM solutions using Ping Identity suite (PingFederate, PingAccess, PingDirectory, PingID)
Participate in and support migration from CA SiteMinder to Ping Identity, including: Policy and agent migration Application onboarding and SSO integration Authentication and authorization flow redesign
Develop and manage Infrastructure as Code (IaC) using Terraform for IAM deployments
Integrate applications using SAML, OAuth2, and OIDC protocols
IAM Operations & SupportWork in rotational shifts Provide end-to-end L2/L3 production support for IAM platforms ensuring availability and stability
Handle incidents, problem tickets, and service requests in line with SLAs
Monitor IAM systems, perform health checks, and ensure proactive issue resolution
Troubleshoot IAM issues, perform root cause analysis (RCA), and ensure timely remediation
Support 24x7 operational model including rotational shifts
Platform Management & OptimizationAdminister and maintain IAM components including: Broadcom/CA SiteMinder, Directory, Identity Manager, Advanced Authentication, API Gateway Active Directory and Azure AD
Enhance platform performance, logging, monitoring, and auditing capabilities
Participate in certificate management, DR activities, and identity governance initiatives
Identify opportunities and implement automation for operational tasks
Solutioning & GovernanceAnalyze production issues and provide technical solutions
Review IT artifacts and ensure adherence to security and IAM best practices
Work closely with architects and stakeholders to translate business requirements into technical solutions
Ensure compliance with enterprise security policies and audit requirements
Contribute to documentation, runbooks, and process improvements
Collaboration & LeadershipCoordinate with infrastructure, application, and security teams for issue resolution
Provide technical guidance to team members and support delivery execution
Actively participate in change management, incident calls, and stakeholder communication
Work in onsite-offshore model and collaborate across distributed teams
Required Skills & Experience4+ years of experience in Identity & Access Management (IAM)
Hands-on experience with: Ping Identity tools (PingFederate, PingAccess, PingDirectory, PingID) Broadcom/CA SiteMinder and IAM product suite
Strong Experience In SiteMinder → Ping Migration (highly Preferred)
Solid understanding of: SSO, Federation SAML, OAuth2, OpenID Connect (OIDC)
Experience in IAM troubleshooting, production support, and flow analysis
Knowledge of Active Directory and Azure AD (Entra ID)
Scripting knowledge (Unix/Shell/Perl/Python)
Preferred SkillsExperience With Terraform And Automation Frameworks
Exposure to CI/CD tools: Jenkins, Bitbucket, Ansible, Jira, Confluence
Experience with cloud platforms: Azure / AWS
Knowledge of containers: Kubernetes, Docker
Experience with monitoring tools such as Dynatrace, CA APM (Wily), Sumo Logic, SiteScope, ScienceLogic
Understanding of web/app servers (Tomcat, IIS)
Soft SkillsStrong analytical and problem-solving mindset
Ability to work under pressure and handle production incidents
Good communication and stakeholder management skills
Ability to work independently and collaboratively
Key CompetenciesOwnership & accountability
Problem-solving & troubleshooting
Adaptability in dynamic environments
Continuous learning mindset
EducationBachelor’s degree in Computer Science, Information Technology, Engineering, or equivalent
Work Model24x7 operational support environment
Rotational shifts including night shifts required
Ability to work in onsite/offshore collaboration model
In-Office Collaboration
We are a client-centric, relationship-based business. Working together, in-person, is foundational to how we achieve results. By fostering a culture of face-to-face collaboration, idea sharing, productivity and personal connection, we deliver for our stakeholders — clients, advisors, employees and shareholders. Our employees work in the office at least three (3) days per week, with flexibility to work from home two (2) days per week. Some roles may require additional in-office time or different in-office expectations, and specific requirements will be discussed during the hiring process.
Full-Time/Part-Time
Full time
Timings
(2:00p-10:30p)
India Business Unit
AWMPO AWMP&S President's Office
Job Family Group
Technology
Ameriprise India LLP is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, genetic information, age, sexual orientation, gender identity, disability, military status, veteran status, marital status, pregnancy, family status or any other basis prohibited by law.
We are committed to fostering an inclusive and accessible recruitment process for individuals with disabilities. If you require a reasonable accommodation to participate in the application or interview process, speak to your recruiter to discuss how we can support you.
Show more Show less
Ameriprise India LLP has been providing client based financial solutions to help clients plan and achieve their financial objectives for 20 years. We are part of Ameriprise Financial Inc., a US financial planning company headquartered in Minneapolis with a global presence and diversified financial services leader with more than $1.5 trillion in assets under management, administration and advisement as of year-end 2024. The firm’s focus areas include Asset Management and Advice, Retirement Planning and Insurance Protection.
Be part of an inclusive, collaborative culture that rewards you for your contributions, and work with other talented individuals who share your passion for doing great work. You’ll also have plenty of opportunities to make your mark at the office and a difference in your community. So, if you're talented, driven and want to work for a strong, ethical company that cares, take the next step and create a career at Ameriprise India LLP.
Job Description
We are seeking a hands-on engineer with strong expertise in Identity & Access Management (IAM), specializing in Ping Identity solutions, SiteMinder-to-Ping migration, and Terraform-based automation. The candidate should demonstrate strong analytical and problem-solving skills and be capable of driving design, development, and migration initiatives.
In addition to engineering responsibilities, the role includes supporting ongoing operational activities and incident management to ensure platform availability for end users and applications. The individual will also be responsible for platform optimization, enhancing logging and auditing capabilities, and implementing new IAM solutions, along with driving automation initiatives across the environment.
Key ResponsibilitiesIAM Engineering & MigrationDesign and implement IAM solutions using Ping Identity suite (PingFederate, PingAccess, PingDirectory, PingID)
Participate in and support migration from CA SiteMinder to Ping Identity, including: Policy and agent migration Application onboarding and SSO integration Authentication and authorization flow redesign
Develop and manage Infrastructure as Code (IaC) using Terraform for IAM deployments
Integrate applications using SAML, OAuth2, and OIDC protocols
IAM Operations & SupportWork in rotational shifts Provide end-to-end L2/L3 production support for IAM platforms ensuring availability and stability
Handle incidents, problem tickets, and service requests in line with SLAs
Monitor IAM systems, perform health checks, and ensure proactive issue resolution
Troubleshoot IAM issues, perform root cause analysis (RCA), and ensure timely remediation
Support 24x7 operational model including rotational shifts
Platform Management & OptimizationAdminister and maintain IAM components including: Broadcom/CA SiteMinder, Directory, Identity Manager, Advanced Authentication, API Gateway Active Directory and Azure AD
Enhance platform performance, logging, monitoring, and auditing capabilities
Participate in certificate management, DR activities, and identity governance initiatives
Identify opportunities and implement automation for operational tasks
Solutioning & GovernanceAnalyze production issues and provide technical solutions
Review IT artifacts and ensure adherence to security and IAM best practices
Work closely with architects and stakeholders to translate business requirements into technical solutions
Ensure compliance with enterprise security policies and audit requirements
Contribute to documentation, runbooks, and process improvements
Collaboration & LeadershipCoordinate with infrastructure, application, and security teams for issue resolution
Provide technical guidance to team members and support delivery execution
Actively participate in change management, incident calls, and stakeholder communication
Work in onsite-offshore model and collaborate across distributed teams
Required Skills & Experience4+ years of experience in Identity & Access Management (IAM)
Hands-on experience with: Ping Identity tools (PingFederate, PingAccess, PingDirectory, PingID) Broadcom/CA SiteMinder and IAM product suite
Strong Experience In SiteMinder → Ping Migration (highly Preferred)
Solid understanding of: SSO, Federation SAML, OAuth2, OpenID Connect (OIDC)
Experience in IAM troubleshooting, production support, and flow analysis
Knowledge of Active Directory and Azure AD (Entra ID)
Scripting knowledge (Unix/Shell/Perl/Python)
Preferred SkillsExperience With Terraform And Automation Frameworks
Exposure to CI/CD tools: Jenkins, Bitbucket, Ansible, Jira, Confluence
Experience with cloud platforms: Azure / AWS
Knowledge of containers: Kubernetes, Docker
Experience with monitoring tools such as Dynatrace, CA APM (Wily), Sumo Logic, SiteScope, ScienceLogic
Understanding of web/app servers (Tomcat, IIS)
Soft SkillsStrong analytical and problem-solving mindset
Ability to work under pressure and handle production incidents
Good communication and stakeholder management skills
Ability to work independently and collaboratively
Key CompetenciesOwnership & accountability
Problem-solving & troubleshooting
Adaptability in dynamic environments
Continuous learning mindset
EducationBachelor’s degree in Computer Science, Information Technology, Engineering, or equivalent
Work Model24x7 operational support environment
Rotational shifts including night shifts required
Ability to work in onsite/offshore collaboration model
In-Office Collaboration
We are a client-centric, relationship-based business. Working together, in-person, is foundational to how we achieve results. By fostering a culture of face-to-face collaboration, idea sharing, productivity and personal connection, we deliver for our stakeholders — clients, advisors, employees and shareholders. Our employees work in the office at least three (3) days per week, with flexibility to work from home two (2) days per week. Some roles may require additional in-office time or different in-office expectations, and specific requirements will be discussed during the hiring process.
Full-Time/Part-Time
Full time
Timings
(2:00p-10:30p)
India Business Unit
AWMPO AWMP&S President's Office
Job Family Group
Technology
Ameriprise India LLP is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, genetic information, age, sexual orientation, gender identity, disability, military status, veteran status, marital status, pregnancy, family status or any other basis prohibited by law.
We are committed to fostering an inclusive and accessible recruitment process for individuals with disabilities. If you require a reasonable accommodation to participate in the application or interview process, speak to your recruiter to discuss how we can support you.
Show more Show less