Find Jobs
Sr IAM Security Engineer
Eden Prairie, Minnesota  |  Remote
Contract Position
It appears that you have already applied to this job.
Applied on July 30, 2021
Job Id #47636 Posted May 13, 2021

Projects the candidate will be working on:

  • We are waiting for the formal project to be created. "Security enhancement and hardening of IAM Single Sign On and PingFederate services" describes the effort well.
  • This is a security project with oversight by Enterprise Information Security org, to ensure maximum possible compliance with security guidelines and best practices as applicable to the authentication and pingfederate infrastructure, along with improvements to processes and tools where possible.
  • Candidate in this role will specifically work on integrating Hardware Security Module (HSM) with our PingFederate infrastructure.

Ideal Background:

  • Ideal candidate is an Identity management or IT Security professional with experience in Single Sign On implementations, and understand how to integrate Hardware security modules in IAM platforms.


  • - Expertise on PingFederate
  • - Expertise on Thales Luna HSM
  • - Expertise on Venafi.

Top Requirements:

  • - 3 years SAML and OIDC authentication technologies
    - 2 years Hardware Security Modules (HSM)
    - 3 years Public Key Infrastructure (PKI) and Certificate lifecycle management

Team and Team size:

  • IAM SSO, 10 Team members including 8 Identity professionals, 1 Architect and 1 Project Manager.

Top Responsibilities:

  • Integrate and operate Hardware Security Modules on PingFederate and migrate certificate and keys to HSM
  • Deploys SAML partnership configuration and establish certificates renewal processes
  • Develops Identity, Authentication and Federation services, and Deploys highly-scalable applications, applying standard SSO patterns enabling security and privacy at scale.
  • Define and implement technical solutions to meet business needs through Agile process.
  • Foster high-performance, collaborative technical work resulting in high-quality output.
  • Gather and analyze data to aide in informed decision-making while providing detailed, realistic estimates.
  • Interact skillfully with business stakeholders and third-party technical organizations.
  • Solve problems and provide deep technical troubleshooting skills.
  • Train and develop operations and engineering staff to maintain and support Identity and security services.

Software tools/skills:

  • Experience in IAM, SAML/OIDC/OAUTH Federation protocols and Single Sign On implementations
  • Knowledge and experience with Hardware Security Modules (HSM) integration
  • Knowledge and experience with Public Key Infrastructure (PKI), and Digital Certificate lifecycle management functions
  • Understanding of cryptographic protocols and network security protocols (e.g. TCP/IP, TLS, SSL, encryption, OpenSSL, X.509 Certificates)


  • IAM, SAML, Single Sign On
  • Hardware Security Modules (HSM)
  • Public Key Infrastructure (PKI), and Digital Certificates

Nice to have:

  • Highly Prefered experience and expertise on PingFederate, Thales Luna HSM and Venafi
  • Experience with Multi Factor Authentication (MFA) solutions
  • Experience preparing detailed design and angineering documents
  • Experience with DevOps, Continuous Integration and Continuous Delivery
  • Experience working in an Agile environment
  • Expertise with modern programming languages, systems, and architectures
  • Expertise in performance and scalability optimization

Interview Process:

  • a. How many rounds? 2
  • b. Video vs. phone? Phone acceptable, with at least 1 interview on video.
  • c. How technical will the interviews be? Very technical, touching IAM primariy SAML, and also PKI and HSM topics.

Horizontal is proud to be an Equal Opportunity and Affirmative Action Employer. We seek to provide employment opportunities to talented, qualified candidates regardless of race, color, sex/gender including gender identity and/or expression, national origin, religion, sexual orientation, disability, marital status, citizen status, veteran status, or any other protected classification under federal, state or local law.

In addition, Horizontal will provide reasonable accommodations for qualified individuals with disabilities. If you need to request a reasonable accommodation in order to complete the application or interview process, please contact

All applicants applying must be legally authorized to work in the country of employment.

Upload Your Resume

We accept .DOC, .DOCX, .PDF up to 10 MB.

We do not accept scanned documents, images, or resumes containing images and/or icons.

Password must contain:
  • minimum 10 characters

  • 1 uppercase letter

  • 1 lowercase letter

  • 1 numeric character

  • 1 special character (such as !, %, @, #)

  • Passwords match


What is your gender?

What is your ethnicity?

What is your Veteran / U.S. Military Status?

Do you identify with one or more of the classifications of protected veterans below?

If yes, please indicate by checking the appropriate box below

Do you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Horizontal is proud to be an Equal Employment Opportunity/Affirmative Action Employer providing a drug-free workplace.


You have saved your first job! To see all your Saved Jobs, click here. Or continue scrolling through jobs and bookmark openings that catch your eye and apply for those jobs later.

Return to Job Search

We’re sorry!

There are currently no open positions in your location or accepting applications from out of the country

Return to Home
Cookies help us improve your website experience.
By using our website, you agree to our use of cookies.