NO(C2C, Sponsorship, OPT), W-2 ONLY - Pay $60 - $69 per hour 6-12 Month Contract, REMOTE
CBTS is seeking an experienced Security Engineer with deep expertise in identity and access management to lead a critical migration project from Auth0 to PingFederate and PingDirectory. This role will focus on designing and executing a secure, scalable, and stable identity platform migration, collaborating with engineering teams to refactor existing authentication logic and modernize the organization’s identity stack.
Responsibilities:
- Lead the end-to-end migration of identity services from Auth0 to PingFederate and PingDirectory.
- Reverse-engineer existing Auth0 implementation and refactor code for compatibility with Ping.
- Collaborate with development teams to design and implement secure authentication and authorization flows.
- Integrate with existing user directories and SSO solutions.
- Establish best practices for identity provisioning, token management, and application onboarding.
- Support testing, cutover planning, and go-live execution.
- Provide documentation and knowledge transfer to internal teams.
Requirements:
- 5+ years of hands-on experience in identity and access management (IAM).
- Proven experience leading migrations involving Auth0 and PingFederate.
- Strong understanding of authentication protocols (SAML, OAuth2, OpenID Connect, SCIM).
- Experience with Okta, Ping, and Auth0 identity ecosystems.
- Ability to reverse-engineer legacy authentication code and implement refactored solutions.
- Strong security mindset and ability to drive IAM best practices.
- Excellent communication skills and ability to lead migration efforts across multiple teams.
- Experience with enterprise directory integrations and federation.
- Exposure to complex, large-scale IAM environments.
- Familiarity with CI/CD pipelines and cloud security integrations.
CBTS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a protected veteran in accordance with applicable federal, state and local laws.
