Back to search
The Standard India Linkedin · Posted 4d ago

Identity and Access Management Engineer II

India

Linkedin
Continue to application Add your email once, then Caio opens the original posting.

Indexed description

The next part of your journey is right around the corner — with The Standard India.

A genuine desire to make a difference in the lives of others is the foundation for everything we do. With a customer-first mindset and an intentional focus on building strong teams across the nation, we uphold our legacy of financial stability while investing in secure, resilient, and innovative technologies that support the needs of our customers. Our high-performance culture, focused on operational excellence, thrives thanks to remarkable people united by compassion and a customer-first commitment. Are you ready to make a difference?

Job Summary

The Identity and Access Mgmt Engineer III brings wide-ranging Customer Identity and Access Management (CIAM) experience to design, implement, automate, and support secure customer-facing identity services for The Standard. This role supports customer authentication, authorization, federation, identity orchestration, identity verification, fraud/risk controls, customer directory and identity data services, API security integrations, operational health, and compliance readiness.

The ideal candidate has broad customer identity engineering experience, strong technical judgment, and practical depth across identity protocols, customer authentication journeys, application integrations, API gateway identity patterns, DevOps-aligned delivery, troubleshooting, and service operations. Experience with the Ping Identity ecosystem and Kong is preferred or ideal to have, but deep transferable experience with the same or similar CIAM, federation, API security, customer identity, or identity orchestration platforms is most important.

  • Ability to work onsite in Bengaluru, India is a requirement of the role.* Skills and Background You'll Need Education
  • Required: Bachelor's degree in Computer Science, Information Systems, Cybersecurity, Engineering, or a related technical field; graduate coursework is desirable for this level.

Experience

Required:

  • 8+ years of related experience in IT, Information Security, Identity and Access Management, Customer IAM, IAM Engineering, API security, cloud identity, application security, or equivalent roles.
  • Broad CIAM engineering experience across customer authentication, federation, authorization, customer identity lifecycle, account recovery, customer profile management, customer directory, consent or preference concepts, identity orchestration, risk-based access, fraud controls, and operational support.
  • Strong understanding of modern identity protocols and patterns such as SAML, OAuth 2.0, OpenID Connect (OIDC), MFA, passwordless, passkeys/FIDO2, token validation, claims/scopes, API authentication, and secure session handling.
  • Experience integrating customer identity platforms with web applications, mobile applications, APIs, partner or vendor identity providers, customer data stores, DevOps workflows, and ITSM/support processes.
  • Experience supporting customer-facing identity services with operational rigor, including troubleshooting, incident/problem support, monitoring, metrics, change discipline, runbooks, evidence, audit/compliance support, and service health reporting.
  • Experience partnering with application architecture, development, security, cloud, infrastructure, vendor, and operations teams to deliver secure and scalable customer identity solutions.
  • Experience working in Agile/SAFe Agile or similar delivery models using Jira, TargetProcess, ServiceNow, or comparable work tracking and intake tools.

Preferred / Ideal To Have

  • Ping Identity product experience such as PingOne, PingOne Directory, PingOne DaVinci, PingOne Verify, PingOne Protect, Ping Sync, PingOne Authorize, PingFederate, PingAccess, or comparable CIAM platforms such as Okta/Auth0, Microsoft Entra External ID, ForgeRock, or similar .
  • API gateway and API security experience with Kong Gateway, Kong Konnect, OIDC plugins, token introspection, OAuth resource/API protection, route and plugin configuration, developer onboarding patterns, or comparable API gateway platforms.
  • Experience with customer identity modernization, customer account migration, account linking/delegated access, cross-IdP SSO, dual-login patterns, profile synchronization, customer directory integration, or large-scale customer identity transformation.
  • Experience using scripting, REST APIs, JSON/JWT, CI/CD pipelines, infrastructure/configuration automation, logs, telemetry, and monitoring to troubleshoot and operationalize identity services.
  • Experience supporting customer identity governance, privacy/compliance, audit evidence, risk monitoring, fraud detection, and control validation.

Technical Skill Areas

  • Customer authentication and access: MFA, passwordless, passkeys/FIDO2, magic links, social login, adaptive access, risk-based authentication, device trust, session controls, and device remembering.
  • Federation and identity protocols: OIDC, OAuth 2.0, SAML, federation trust, social identity providers, token validation, claims, scopes, and SSO certificate awareness.
  • Customer identity management: registration, progressive profiling, invite-based registration, account creation/recovery/deactivation, customer directory, identity attributes, self-service, and profile maintenance.
  • Customer authorization, consent, and preference capabilities: authorization services, policy decisioning, privacy consent, communication preferences, delegated access, and customer entitlements.
  • Customer identity protection: bot/credential-stuffing prevention concepts, fraud prevention, behavioral/risk analysis, user risk scoring, account takeover detection, identity verification, and security alerting.
  • Integration security and API services: identity orchestration, authentication journeys, application onboarding, partner/B2B federation, identity events, customer notifications, API authentication, API governance, API publishing, and OIDC gateway integration.
  • Customer directory and data services: identity synchronization, data replication, profile data quality, duplicate management, segmentation/grouping, and customer lookup/search capabilities.
  • Operations and compliance: incident/problem management, platform maintenance, availability/performance monitoring, authentication analytics, privacy compliance, data governance, audit support, policy management, and compliance risk support.

Preferred / Ideal Tooling Exposure

  • PingOne / PingOne SSO for customer identity provider services and customer-facing authentication use cases.
  • PingOne Directory or comparable customer directory technology for customer identity repository, user attributes, groups, application service accounts, and administrative access concepts.
  • PingOne DaVinci or comparable identity orchestration platform for customer authentication journeys, workflow orchestration, routing logic, account linking, and integration flows.
  • PingOne Verify or comparable identity verification platform for onboarding, step-up verification, transaction verification, or high-risk interaction support.
  • PingOne Protect or comparable fraud/risk platform for risk-based threat and fraud detection signals that influence customer access decisions.
  • Ping Sync or comparable identity synchronization tooling for replicating customer identity data across systems such as SQL, Oracle, application databases, or downstream platforms.
  • Kong Gateway / Kong Konnect or comparable API gateway for OIDC plugins, API authentication, token validation, CI/CD-aligned gateway configuration, reference patterns, and application team consulting.

Certifications

  • Preferred: Ping Identity, Okta/Auth0, Microsoft identity/security, API security, cloud security, or comparable IAM/CIAM platform certifications
  • Preferred: CISSP, SSCP, Security+, or equivalent security certification
  • Preferred: SC-900 Microsoft Security, Compliance, and Identity Fundamentals or equivalent
  • Preferred: AZ-900 Microsoft Azure Fundamentals or equivalent

Key Responsibilities

  • Engineer, support, and improve CIAM capabilities across customer authentication, federation, identity orchestration, identity verification, fraud/risk controls, customer directory, identity synchronization, API security, operations, and compliance.
  • Design, configure, troubleshoot, and operationalize secure customer identity flows that support seamless customer access while aligning with authentication, authorization, privacy, security, and compliance expectations.
  • Partner with application architecture and development teams to onboard applications, define reference configurations, support SSO/OIDC/SAML patterns, and enable secure customer authentication and authorization integrations.
  • Support API identity enforcement patterns through gateway configurations, OIDC plugins, token validation, API authentication, CI/CD-aligned changes, and developer onboarding guidance.
  • Support customer identity lifecycle use cases such as registration, account recovery, profile management, identity synchronization, delegated access, cross-IdP SSO, dual-login patterns, and account migration readiness.
  • Operationalize CIAM services through runbooks, monitoring, service health metrics, incident/problem support, change discipline, audit evidence, compliance reporting, and operational handoff.
  • Develop and maintain automation, scripts, API-based integrations, dashboards, documentation, and evidence processes that reduce manual work and improve service resilience.
  • Analyze complex customer identity, federation, API security, fraud/risk, synchronization, and authentication issues; identify root cause; recommend corrective actions; and implement durable remediation.
  • Collaborate with service owners, architects, application teams, cloud/infrastructure teams, Security Operations, GRC, vendors, and managed service partners to deliver secure, scalable, and supportable CIAM outcomes.
  • Provide guidance to other engineers and operations resources on technical procedures, troubleshooting, service adoption, operational readiness, and continuous improvement.

Key Behavioral Attributes And Soft Skills

  • Customer and Service Mindset: Balances secure access, customer experience, operational continuity, and business enablement in customer-facing identity decisions.
  • Ownership & Accountability: Takes responsibility for outcomes, follows through on assigned work, documents decisions, and drives issues to closure.
  • Operational Discipline: Uses runbooks, change discipline, peer review, evidence capture, monitoring, and metrics to make CIAM services reliable and supportable.
  • Security-First Judgment: Applies risk-based thinking, strong authentication, fraud-aware controls, privacy considerations, governance, and compliance awareness when designing customer identity solutions.
  • Analytical Problem Solving: Breaks down complex authentication, federation, orchestration, API security, synchronization, and customer identity issues; evaluates options; identifies root cause; and recommends durable remediation.
  • Communication & Transparency: Communicates status, risks, dependencies, decisions, and customer-impacting issues clearly to technical teams, service owners, operations, and leadership stakeholders.
  • Collaboration & Influence: Works effectively across CIAM engineering, application teams, architecture, infrastructure, cloud, Security Operations, GRC, vendors, and managed service partners.
  • Learning Agility: Adapts quickly to new identity products, security standards, customer access patterns, fraud/risk capabilities, API patterns, and integration models.
  • Mentorship & Knowledge Transfer: Shares knowledge through documentation, walkthroughs, troubleshooting guidance, reference patterns, and practical coaching.
  • Calm Execution Under Pressure: Maintains composure during incidents, authentication outages, migration issues, customer-impacting defects, escalations, and audit requests; prioritizes clearly and communicates next steps.

Why Join The Standard India?

You Can Expect

  • A rich benefits package supporting health, well-being, and financial goals
  • Annual incentive bonus tied to personal and organizational performance
  • Competitive paid time off aligned with India policy
  • Management that empowers growth and development
  • A culture where your voice matters and ideas shape the future
  • Purpose-driven work that makes a meaningful impact

Incentive program eligibility is subject to program rules and performance.

StanCorp Global Services India Private Limited is an equal opportunity employer.

Free. 20 seconds. No password. See every match in this search.

Create a free Caio profile to unlock more results and save your role and location preferences.

Unlock free search
Want help applying to roles like this? Search Caio for free. If repetitive applications get heavy, Managed Job Search adds supervised execution for $99/month.
View Managed Job Search