OneMain Financial Jobs

Job#: 3021587

Job Description:

Job Title: InfoSec Engineer IV

Location: Remote (EST Hours)

Pay: $84-$92

Length: 10 Months

Job Description

The individual in this role will define, deliver, and support customer identity and access management (IAM) solutions, with a primary focus on Ping Federate, Ping Directory, and Auth0 (Okta) technologies. This position works closely with IT Engineering and Information Security teams to design scalable, secure, and high-performance identity services. The role also contributes to broader enterprise modernization initiatives and ongoing operational support.

The position is responsible for securing identity infrastructure through the implementation and management of Ping Identity, Auth0, and related tools. Responsibilities include general IAM functions, support of the Auth0 platform, and participation in migration efforts between Ping Identity and Auth0 product stacks.

The individual is expected to adhere to organizational risk management practices by raising concerns, following established policies and procedures, and ensuring actions support a positive customer and colleague experience. Within the organization's risk appetite, the role requires consistent identification, assessment, management, monitoring, and reporting of risks.

Essential Duties & Responsibilities

• Design, implement, and maintain Ping Identity and Auth0 infrastructure supporting customer and commercial identity services.
• Define security, performance, and integration requirements for directory services and IAM solutions.
• Serve as a subject matter expert and consultant for identity-related initiatives.
• Collaborate with IT and Information Security teams to integrate Ping Directory with authentication, SSO, and federation services.
• Monitor, optimize, and ensure availability of directory performance and replication.
• Develop and maintain standards, procedures, and guidelines for directory services and IAM operations.
• Conduct root cause analysis and remediation of identity-related incidents and vulnerabilities.
• Support audit and compliance activities by providing technical documentation and evidence of controls.
• Stay current with identity security trends, emerging technologies, and best practices.
• Participate in risk assessments and recommend improvements to identity infrastructure.
• Provide technical leadership and mentorship to junior engineers and offshore teams.

Minimum Knowledge, Skills & Abilities

• Bachelor's degree in Computer Science, Information Systems, or equivalent experience; Master's degree preferred.
• 8+ years of IT experience, including at least 4 years working with Ping Directory or similar LDAP-based directory services.
• Strong understanding of IAM principles, including authentication, authorization, and federation.
• Experience with the Ping Identity suite (PingDirectory, PingFederate, PingAccess, PingOne).
• Experience integrating on-premises or hybrid environments with AWS or similar cloud platforms.
• Proficiency with Unix/Linux operating systems.
• Familiarity with scripting languages such as Shell or Python for automation and integration.
• Solid understanding of distributed computing and directory replication strategies.
• Knowledge of application and data security concepts and common vulnerabilities.
• Experience working with offshore teams and in regulated industries (e.g., financial services) is advantageous.
• Industry certifications such as CompTIA Security+, CISSP, or Ping Identity certifications are preferred.

• Strong verbal and written communication skills, with the ability to convey technical information to diverse audiences.

   

EEO Em