SSO Engineer - SSOE25-23032


IT - NY - New York, NY
New York, New York
Locations: New York, Albany, Buffalo, Rochester
Posted On: May 07, 2025
Last Day to Apply: May 22, 2025
Pay: $85.00 to $90.00 per hour

Job Title: SSO Engineer (OIDC, SAML2, Duo MFA)
Location: Hybrid – New York, NY
Duration: 3 Months
Type: Contract

Overview:
We are seeking a highly skilled SSO Engineer to join the Identity Solutions team for a 3-month contract. This role focuses on configuring and managing Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions using SAML2, OpenID Connect (OIDC), and Duo, working closely with application teams and external vendors. The ideal candidate will bring deep technical expertise in identity federation and authentication technologies, and play a key role in supporting application onboarding and migrations within a hybrid identity ecosystem.

Key Responsibilities:

  • Configure and manage Shibboleth (SAML2) as a central Identity Provider (IdP) for client applications

  • Configure OpenID Connect (OIDC) via WSO2 Identity Server for SSO integration

  • Provide and manage application-specific attributes, using regex and mapping techniques to meet application requirements

  • Support the configuration of Microsoft Entra ID (Azure AD) for SAML2 or OIDC-based applications

  • Assist in the migration of applications from legacy systems (Shibboleth and WSO2 OIDC) into the Entra ID SSO ecosystem

  • Maintain thorough documentation on installation, configuration, and troubleshooting procedures

  • Collaborate with application owners and external vendors to facilitate seamless integrations

  • Ensure robust MFA implementation using Duo and identity federation tools

  • Troubleshoot and resolve complex identity management and access control issues

Required Skills and Experience:

  • 5+ years of experience with SSO technologies including SAML2, OIDC, and OAuth2

  • Hands-on experience with Shibboleth, WSO2 Identity Server, and Microsoft Entra ID (Azure AD)

  • Proven ability to implement and support multi-factor authentication (Duo preferred)

  • Experience with identity federation frameworks such as REFEDS, CirrusIdentity, and federation proxy/bridge solutions

  • Strong scripting and attribute mapping skills, including the use of regular expressions

  • Excellent troubleshooting, documentation, and problem-solving capabilities

  • Strong communication and interpersonal skills, with a collaborative team-oriented approach

© 2025 Powered by TalentNest | Privacy Policy
Skip to the main content