Description

This role will be onsite at our Easton office in Columbus, OH (or in Minnetonka, MN or Dallas, TX or within Huntington Footprint)

Summary:

The Senior Infrastructure Manager (SSO Engineering Manager) is responsible for leading the engineering, delivery, and ongoing operational support of the enterprise Single Sign‑On (SSO) platforms supporting both Colleague (Workforce) and Customer (CIAM) authentication. This role manages a team of highly skilled SSO engineers and serves as the technical owner for centralized authentication, federation, and access management services across Azure Entra ID (Azure AD) and Ping Identity platforms. The manager ensures identity services are secure, scalable, resilient, and aligned with enterprise security, Zero Trust, and business strategies for cloud and on‑prem applications

Key Responsibilities:

• Lead, mentor, and develop the SSO Engineering team, fostering a culture of technical excellence, accountability, and continuous learning.
• Own end‑to‑end design, implementation, and support of enterprise SSO services, including SAML, OAuth, OIDC, MFA, RADIUS, and application federation patterns.
• Oversee migration initiatives transitioning legacy platforms (e.g., IBM TFIM/WebSEAL, App Proxy) to modern architectures leveraging Azure Entra ID and PingFederate, PingDirectory, and PingOne.
• Establish reusable templates, standards, and patterns for integrating new applications into SSO platforms and improving onboarding efficiency.
• Partner closely with Cybersecurity, Azure Engineering, CIAM teams, and application owners to align identity solutions with regulatory, security, and Zero Trust requirements.
• Direct troubleshooting and resolution of complex authentication issues across multi‑environment architectures.
• Drive automation and modernization initiatives (e.g., Power Automate/Logic Apps, infrastructure improvements, federation onboarding workflows).
• Ensure compliance with enterprise controls, audit standards, and change management procedures.
• Perform other leadership and technical responsibilities as assigned.

Basic Qualifications:

• Bachelor's Degree or 4+ additional years of equivalent experience
• 10+ years of related experience in Identity & Access Management or Information Security.
• 3-5+ years of hands on experience with Ping Identity technologies (PingFederate, PingAccess, PingDirectory, PingOne MFA).
• 3+ years of experience integrating SSO and MFA solutions with enterprise applications using SAML, OAuth, and OIDC.
• 3+ years of experience managing or leading technical engineering teams.

Preferred Qualifications:

• Strong understanding of workforce authentication flows, federation patterns, and identity lifecycle processes.
• Practical experience troubleshooting complex authentication failures in highly regulated or enterprise environments.
• Experience with Azure AD/Entra ID, Conditional Access, App Registrations, and hybrid identity models.
• Familiarity with PingOne DaVinci, PingAuthorize, or orchestration frameworks.
• Experience with CI/CD pipelines, automation, and infrastructure‑as‑code (e.g., Terraform).
• Knowledge of RADIUS authentication flows, NPS integrations, and MFA extensions.
• Strong scripting or development skills (PowerShell, Python, Java, .NET).
• Experience supporting environments undergoing modernization or legacy identity decommissioning initiatives.
• Relevant certifications such as Ping Identity, CISSP, CISM, or equivalent.

Exempt Status: (Yes = not eligible for overtime pay) (No = eligible for overtime pay)

Yes

Workplace Type:

Office

Our Approach to Office Workplace Type

Certain positions outside our branch network may be eligible for a flexible work arrangement. We’re combining the best of both worlds:  in-office and work from home. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. Remote roles will also have the opportunity to come together in our offices for moments that matter. Specific work arrangements will be provided by the hiring team.

Compensation Range:

$93,000 - $189,000 Annual Salary

The compensation range represents the anticipated low and high end of the base compensation range for this position. Actual compensation will vary based on various factors including but not limited to location, experience, and education.  Colleagues in this position are also eligible to participate in an applicable incentive compensation plan.  In addition, Huntington provides a variety of benefits to colleagues, including health insurance coverage, wellness program, life and disability insurance, retirement savings plan, paid leave programs, paid holidays and paid time off (PTO). 

Huntington is an Equal Opportunity Employer.

Tobacco-Free Hiring Practice: Visit Huntington's Career Web Site for more details.

Note to Agency Recruiters:  Huntington will not pay a fee for any placement resulting from the receipt of an unsolicited resume.  All unsolicited resumes sent to any Huntington colleagues, directly or indirectly, will be considered Huntington property. Recruiting agencies must have a valid, written and fully executed Master Service Agreement and Statement of Work for consideration.