View all jobs
CIAM POD Technical Lead
Toronto, OntarioCIAM POD Technical Lead
Location: Toronto, ON
Work Model: Hybrid (2–3 days onsite)
Contract Length: 9 Months (High possibility of extension)
Role Summary
We are seeking a highly skilled CIAM POD Technical Lead to lead the end-to-end technical delivery of a Customer Identity and Access Management (CIAM) Agile POD. This individual will be responsible for designing and delivering scalable, secure, and reusable identity capabilities leveraging PingAM and PingDS technologies.
The successful candidate will act as the primary technical lead within the POD, bridging architecture, engineering, and delivery execution to ensure predictable, high-quality outcomes aligned with enterprise standards and security best practices.
Key Responsibilities
- Lead technical execution for PingAM and PingDS onboarding and modernization initiatives
- Design and implement authentication journeys, MFA solutions, and OIDC/OAuth2/SAML integrations
- Develop and enhance session and token management capabilities
- Build reusable onboarding components, Java-based integrations, and modular CIAM frameworks
- Ensure adherence to engineering standards, secure coding practices, and reusable design principles
- Collaborate closely with architects, product owners, business analysts, and application teams to translate requirements into scalable solutions
- Support sprint planning, technical estimation, dependency management, and defect resolution activities
- Mentor developers and conduct technical reviews across POD deliverables
- Contribute to CIAM factory model acceleration through automation, reusable assets, and onboarding optimization initiatives
Required Skills & Experience
- 10+ years of software engineering and integration experience
- 5+ years of hands-on Ping Identity experience, including strong expertise with PingAM
- Strong knowledge of OAuth2, OIDC, SAML, MFA, and session/token management
- Strong Java and Spring Boot development experience
- Experience developing custom Ping nodes, authentication scripts, APIs, and connectors
- Strong understanding of CIAM architecture patterns and enterprise integration design
- Experience delivering large-scale IAM/CIAM programs within regulated environments (banking industry experience preferred)
Preferred Qualifications
- Experience with PingDS and ForgeRock technologies
- Experience with passkeys/WebAuthn and adaptive authentication
- Exposure to Kubernetes/OpenShift, Terraform, Ansible, and CI/CD automation
- Experience working within POD-based Agile delivery models and factory onboarding environments