Security Architect - Accenture - Bengaluru

Accenture is seeking a highly skilled Security Architect to join our team in Bengaluru. This role is crucial for defining and implementing robust cloud security frameworks and architectures that align with business requirements and performance goals. You will be responsible for documenting the deployment of cloud security controls and ensuring a smooth transition to managed cloud security operations.

About the Role

Project Role: Security Architect

Project Role Description: Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.

Key Responsibilities

• Design, configure, and deploy enterprise-grade authentication, authorization, and federation solutions using the Ping Identity suite (PingFederate, PingAccess, PingOne, PingID).
• Implement adaptive authentication, Multi-Factor Authentication (MFA) workflows, and identity federation for internal and external applications.
• Configure Single Sign-On (SSO) integrations using SAML 2.0, OAuth 2.0, OpenID Connect, and WS-Fed.
• Define authentication/authorization policies, application access rules, and session management settings.
• Set up and maintain PingFederate identity provider (IdP) and service provider (SP) configurations.
• Configure PingAccess for policy enforcement, reverse proxying, and fine-grained access control.
• Implement PingID MFA integration with various enterprise applications.
• Customize Ping flows using scripts, templates, integration kits, and API connectors.
• Collaborate with application teams to onboard applications onto PingAccess/PingFederate.
• Analyze application authentication needs and map them to appropriate identity protocols.
• Integrate Ping with Active Directory / Azure AD, LDAP directories, REST APIs / SCIM provisioning, and cloud applications (AWS, SaaS apps, internal apps).
• Ensure secure implementation of access management configurations using industry standards and apply Zero Trust principles to access control and API protection.
• Review authentication logs, troubleshoot federation issues, and optimize Ping platform health.
• Support internal and external audits related to identity and access management.
• Provide L3 support for access-related incidents, authentication failures, policy errors, and MFA issues.
• Monitor Ping platform performance, availability, and logs.
• Work with security teams to respond to access-related threats and anomalies.
• Maintain detailed documentation for Ping configurations, SSO integrations, and access policies.
• Enhance and automate onboarding processes using Ping APIs, PowerShell, or Python.
• Stay updated with Ping product roadmap and access management trends.

Required Skills and Qualifications

• Minimum 7.5 years of experience in IAM/Access Management.
• Minimum 2 years of hands-on experience with the Ping Identity suite.
• Strong hands-on knowledge of PingFederate (IdP/SP), PingAccess, PingID / PingOne MFA.
• Proficiency in SAML / OIDC / OAuth / JWT.
• Solid understanding of authentication & authorization flows, federation & SSO architecture, and identity directories (AD, Azure AD, LDAP).
• Familiarity with SSL/TLS, certificates, and encryption.
• Experience integrating applications with Ping for SSO and MFA.
• 15 years of full-time education.

Good to Have Skills

• Ping Identity certifications (PingFederate, PingAccess, PingOne).
• Experience with API security and reverse-proxy access policies.
• Experience with cloud identity models (Azure AD, AWS IAM).
• Experience with DevOps & CI/CD for identity deployments.
• Scripting knowledge (Python, PowerShell, JavaScript) for automation.

This position is based at our Bengaluru office.