Lead Identity Engineer Ping Authorize & DaVinci

• Implement PingOne DaVinci and PingOne Authorize for finegrained consent management and orchestration.
• Define foundational consent data models schemas and fine-grained consent attributes (e.g. permission scopes time-bound access revocation states).
• Support the design and adoption of Web/Mobile consent journeys.
• Design document and implement custom Consent Service APIs.
• Develop authorization logic using PingOne Authorize and API-level policy controls.
• Build custom token processing logic including hierarchical token handling.
• Implement parentchild consent decisioning logic and token inspection rules.
• Apply business rules for downstream/derived token generation.
• Configure PingOne DaVinci orchestration authorization hooks and dynamic forms.
• Integrate DaVinci with PingFederate and PingDirectory (consent store) including indexing retention and storage design.
• Implement integration with DOH Rhapsody for child information verification using secure APIs/events.
• Configure SIEM integration for audit log forwarding from PingOne DaVinci and related components.
• Conduct performance testing on Ping components and Consent APIs; produce performance reports.
• Support security validation and penetration testingincluding data setup remediation guidance environment readiness.
• Follow deployment processes including phasegate reviews documentation and transition to operations.
• Provide technical guidance to engineering teams on IAM & consent architecture.
• Collaborate with Customer Engineering Product Owners and external partners.
• Provide complete and timely status updates to senior leadership.

• 810 years of hands-on Identity & Access Management experience.
• Strong expertise in PingOne DaVinci PingOne Authorize PingFederate and PingDirectory (mandatory).
• Proven experience designing and implementing consent management or finegrained authorization solutions.
• Strong API development experience (REST OAuth JWT custom claims/attributes).
• Deep understanding of OAuth 2.0 OIDC SAML SCIM token flows and policy orchestration.
• Experience building custom token processors and decisioning rules in PingFederate.
• Hands-on experience with directory services and LDAP.
• Strong scripting/programming experience (JavaScript / Groovy preferred).
• Experience with SIEM integrations and audit logging frameworks.
• Familiarity with performance testing security testing and enterprise deployment processes.
• Experience working in large-scale multi-environment IAM ecosystems.
  

• Experience with Delegated Admin UI development (Ping DaVinci forms or IO).
• Exposure to healthcare ecosystems and secure data exchange workflows.
• Experience with fraud detection risk-based access or identity verification frameworks.

Simeio is an equal opportunity employer. If you require assistance with completing this application interviewing completing any pre-employment testing or otherwise participating in the employee selection process please direct your inquiries to any of the recruitment team at or 1 .