Tata Consultancy Services

CISO Technical Lead SSO Engineer

Tata Consultancy Services$100K — $130K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in computer science, Information Security, or related field, or equivalent experience.
  • 5+ years in Identity and Access Management (IAM), with 3+ years specializing in SSO technologies.
  • Experience designing and managing PingFederate in large-scale enterprise settings.
  • Familiarity with identity federation protocols (SAML 2.0, OAuth 2.0, OIDC).
  • Ability to integrate SSO solutions with applications and identity stores like Active Directory and Azure AD.
  • Proficient in scripting languages (PowerShell, Python) for automation tasks.
  • Strong analytical and communication skills, capable of explaining technical concepts clearly.

Responsibilities

  • Drive strategies for secure separation and integration of PingFederate instances during divestitures.
  • Plan and implement identity federation solutions to ensure smooth transitions between organizations.
  • Manage lifecycle of federated trusts and identity connections for onboarding and offboarding applications.
  • Design, deploy, and maintain high-availability PingFederate environments.
  • Administer governance of PingFederate connections, policies, and authentication methods.
  • Troubleshoot SSO authentication and federation issues to ensure service availability.
  • Develop documentation and standard operating procedures for the SSO infrastructure.

Benefits

  • Comprehensive health insurance coverage.
  • Opportunities for professional development and continuous learning.
  • Flexible working arrangements promoting work-life balance.
  • Access to cutting-edge technology and tools in the field.
Full Job Description
1) CISO Technical Lead SSO Engineer

Services:
• Divestiture Strategy & Execution:

o Drive development and execution strategies for the secure separation, migration, and integration of PingFederate instances, configurations, and associated identity stores for divested business units.

o Plan and implement identity federation solutions to support application access for users transitioning between organizations, ensuring minimal disruption.

o Manage the lifecycle of federated trusts, connections, and identity providers/service providers in the context of divestiture, including onboarding and offboarding applications.
• PingFederate Implementation & Management:

o Design, deploy, configure, and maintain high-availability PingFederate environments across various enterprise landscapes.

o Administer PingFederate connections, policies, adapters, selectors, and authentication methods (e.g., SAML, OAuth, OIDC).

o Troubleshoot complex SSO authentication, authorization, and federation issues to ensure continuous service availability.
• Identity & Access Integration:

o Integrate PingFederate with various identity stores such as Active Directory, Azure Active Directory, and LDAP directories.

o Collaborate with application owners to onboard new applications and migrate existing ones to the PingFederate SSO platform.

o Ensure seamless integration with Multi-Factor Authentication (MFA) solutions.
• Security & Compliance:

o Implement and enforce security best practices and architectural guidelines for identity federation and SSO solutions.

o Ensure that SSO configurations comply with corporate security policies, regulatory requirements, and data governance standards during the divestiture process.

o Conduct regular security reviews and vulnerability assessments of the PingFederate environment.
• Operational Support & Documentation:

o Provide expert-level support for SSO-related incidents and requests, often collaborating with cross-functional IT and security teams.

o Develop and maintain comprehensive documentation, architectural diagrams, runbooks, and standard operating procedures (SOPs) for the SSO infrastructure.

Deliverables:
• Secure Divestiture & Federated Identity Transition
• Resilient PingFederate & SSO Platform Operations
• Security, Compliance & Operational Excellence

Required Skills/Expertise:
• Bachelors degree in computer science, Information Security, or a related technical fi eld, or equivalent practical experience.
• 5+ years of dedicated experience in Identity and Access Management (IAM), with at least 3 years focused specifically on SSO technologies.
• Proficiency in designing, implementing, and managing PingFederate in large-scale enterprise environments.
• Understanding and hands-on experience with identity federation protocols such as SAML 2.0, OAuth 2.0, and OpenID Connect (OIDC).
• Experience integrating SSO solutions with various applications and identity stores (e.g., Active Directory, Azure AD, LDAP).
• Proficiency in scripting languages (e.g., PowerShell, Python) for automation and administration tasks.
• Excellent analytical, problem-solving, and communication skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.
• Required: English fluency (oral and written).

Salary Range: $100,000 to $130,000 per year

Salary Range: $100,000 to $130,000 per year

About Tata Consultancy Services

Tata Consultancy Services (TCS) is an Indian multinational information technology (IT) services and consulting company, headquartered in Mumbai, Maharashtra, India. It is a subsidiary of Tata Group and operates in 149 locations across 46 countries. TCS is the largest Indian company by market capitalization and is ranked 11th on the Forbes Global 2000 list of the world's biggest public companies. TCS is also the second-largest IT services company in the world by revenue and the largest employer of women in India. The company provides services in areas including IT, consulting, and business solutions.
Learn more about Tata Consultancy Services
Size
469,261 employees
Industry

Similar Jobs

More Jobs at Tata Consultancy Services

More Information Technology Jobs

Find similar CISO Technical Lead SSO Engineer jobs: