




Job Summary: We are seeking an Identity and Access Engineer to design, implement, and manage IAM solutions and ensure secure, scalable access controls. Key Highlights: 1. Experience in IAM and cybersecurity with mastery of key protocols. 2. Administration of identity solutions such as Ping Identity. 3. Collaboration with security, infrastructure, and development teams. Capital Empresarial Horizonte, a Mexican company specializing in Human Resources and Information Technologies, is seeking: Identity and Access Engineer (IAM) **Conversational English required** **Hybrid work model in Guadalajara (2 days on-site, 3 days remote)** **Requirements** * Proven experience in IAM or cybersecurity roles. * Proficiency in protocols: * **OAuth2** * **OpenID Connect (OIDC)** * **SAML 2\.0** * **SCIM** * Hands-on experience with **Ping Identity** solutions. * Knowledge of integration with SaaS applications, APIs, and corporate directories (LDAP/Active Directory). * Experience working in cloud environments (AWS, Azure, or GCP). * Familiarity with security standards and Zero Trust principles. * Ability to automate processes using scripting (PowerShell, Python, Bash, etc.). * Advanced English proficiency. **Key Responsibilities** * Design, implement, and manage **Identity & Access Management (IAM)** solutions for cloud, hybrid, and on-premise applications. * Configure and maintain authentication and Single Sign-On (SSO) integrations using **OAuth2**, **OpenID Connect (OIDC)**, and **SAML 2\.0**. * Implement and automate user provisioning and deprovisioning processes via **SCIM**. * Administer identity platforms such as **Ping Identity** (PingFederate, PingAccess, PingOne, etc.). * Collaborate with security, infrastructure, and development teams to ensure secure and scalable access controls. * Define policies for multi-factor authentication (MFA), access control, and session management. * Resolve incidents and issues related to authentication, federation, and identity management. * Participate in security audits and regulatory compliance reviews. * Document architectures, authentication flows, and security best practices. **Desirable** * Certifications related to IAM or cybersecurity. * Experience with MFA, CIAM, or PAM. * Knowledge of DevSecOps and CI/CD automation. **We Offer:** * Office hours with a **hybrid work model** * **100% payroll-based employment** * Competitive salary based on experience * Statutory and enhanced benefits: Family SGMM, Life Insurance ($1,000,000), Grocery Vouchers, 30-day Christmas Bonus, Profit Sharing (PTU)


