FS Technology Consulting – Systems Engineer – Authentication Controls – Day Rate Contract - Dublin

General Information:

Location: Dublin

Available for VISA Sponsorship: No

Business Area: AI & Data Analytics

Contract Type: Day Rate Contract

Due to substantial growth within their business; our client, a leading Financial Services provider is seeking to recruit a Systems Engineer on a day rate contract basis.

The Role:

The Senior Systems Engineer will join our clients’ Authentication Controls team.
As a Senior Systems Engineer within an Enterprise Cybersecurity team, you will be part of the Authentication Controls group responsible for delivering secure and scalable Single Sign-On (SSO) and Multi-Factor Authentication (MFA) solutions across hundreds of internal applications. This is a hands-on engineering role focused on integrating, managing, and modernizing authentication controls in a fast-paced, distributed environment.

This contract will run for 12-18 months.

Key Responsibilities:

• Relevant experience with SSO Integration & Support.
• Work with application owners to integrate and support SSO using PingFederate and Microsoft Entra ID, applying protocols like SAML, OpenID Connect, and OAuth
• Hands on experience of supporting Single Sign On (SSO) authentication standards, such as one or more of the following: SAML, OpenID Connect or OAuth.
• Hands on experience of integrating applications with Single Sign On using one or more of these applications: PingFederate or Entra ID SSO.
• Application Engagement: Collaborate with owners of 15+ applications to assess current authentication setups, define migration scope, enhance user experience, and guide secure design decisions
• Authentication Protocols: Implement and troubleshoot authentication flows including client credentials, authorization code, and token-based access for APIs
• Security Modernization: Advise on modern access control strategies, including MFA injection points, token lifecycle management, and serverless authentication scenarios
• Testing & Validation: Conduct security testing, validate integration flows, and ensure compliance with internal standards
• Operational Execution: Deliver repeatable, scalable solutions with minimal supervision, supporting app owners, resolving issues, and moving swiftly to the next integration

Key Requirements:

• 3+ years’ experience with SSO Integration & Support.

• Full stack software development experience (front end and back end).

• Experience with working on one or preferably more of the following: Python, C++, Java/J2EE.
• Experience of working in a cloud environment such as Azure and / or AWS.

• A cyber security certification, such as CISSP.PingFederate Expertise: Deep experience with PingFederate and PingAccess, including adaptor configuration, access token management, and client credential reviews
• Protocol Knowledge: Strong understanding of SAML, OpenID Connect, OAuth, REST, and SOAP for API access and identity federation
• Authentication Flows: Clear grasp of client authentication vs. credential flows, and how to handle authentication in serverless or script-based environments
• MFA Implementation: Practical experience injecting MFA into authentication flows, understanding where and how it fits within multi-leg processes
• Cloud & Directory Services: Experience with Microsoft Entra ID (Azure AD), Active Directory, and cloud platforms like Azure/AWS
• Networking & OS: Solid foundation in TCP/IP, Windows/Linux systems, and network infrastructure
• Development & DevOps: Familiarity with Python, Java, Git, CI/CD pipelines, and agile methodologies
• Security Testing: Exposure to security testing frameworks and tools

Successful applicants will also require experience with:

• Version Control tools like Git.
• Continuous Integration/Continuous Deployment (CI/CD).
• Agile methodologies.

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

IMPORTANT: Where Agency assistance is required, our Talent Team will engage directly with suppliers. CVs / Profiles should not be shared directly with Hiring Managers. Unsolicited CVs / Profiles supplied to EY by Recruitment Agencies will not be accepted for this role.