The Identity and Access Management (IAM) Security Architect's primary responsibility is to design, implement, and maintain robust IAM solutions within the organization. This is a crucial role within the organization's cybersecurity team. The IAM architect will be responsible for developing IAM strategies, implementing IAM solutions, and ensuring the security and integrity of IAM systems.

The IAM Security Architect is responsible for leading cross-functional teams and effectively communicating best practices related to Identity Security. They will also act as an individual contributor team leader. The IAM Security Architect ensures that web applications, APIs, and cloud services are planned, designed, developed, implemented, and monitored to comply with security policies and regulations. To stay up-to-date on emerging security trends and practices, the IAM Security Architect participates in available educational opportunities, reads professional publications, and engages in professional organizations.

Job Duties and Responsibilities:

Develop and implement IAM strategies aligned with business objectives and security requirements

Evaluate existing IAM systems, processes, and policies and propose improvements

Stay updated with emerging IAM technologies and industry best practices

Design IAM architectures and solutions based on business requirements, security policies, and regulatory compliance

Define identity lifecycle management processes, including provisioning, de-provisioning, and access review

Architect single sign-on (SSO), multi-factor authentication (MFA), and other authentication mechanisms

Lead the implementation of IAM solutions, ensuring seamless integration with existing systems and applications

Collaborate with cross-functional teams to deploy IAM controls across cloud and on-premises environments

Configure IAM components such as identity stores, directories, access policies, Conditional and Role-Based Access Controls (RBAC)

Ensure the security and integrity of IAM systems by implementing encryption, strong authentication, and access controls

Conduct regular security assessments and audits of authentication and authorization services

Ensure compliance with data protection regulations (e.g. SOX, PCI, GLBA) and industry standards (e.g. NIST, OWASP, ISO 27001)

Create technical documentation, architectural diagrams, and operational procedures for IAM systems

Ability to manage multiple projects simultaneously

Subject matter expert on IAM Security initiatives

Prioritize multiple projects and deliver results within defined timelines

Identify gaps in current standards and services

Review and present solutions to the Architecture Review Board representing the Line of Business

Work with vendors to develop proofs of concept and develop solutions from conception to implementation

Expert understanding of current industry and risk technology trends

Mentors and develops security staff, business, and IT staff in adopting security techniques and security standards

Education/Experience:

BS in Information Security, Computer Science, Information Technology or a related degree strongly preferred

CISSP or similar industry-related certifications

Proven experience (7 years) as an IAM Architect or similar role in a large enterprise environment

In-depth knowledge of IAM concepts, protocols, and standards (e.g. SAML, OAuth, OpenID Connect)

Hands-on experience with IAM technologies such as Microsoft Identity Manager, Ping Identity, Okta, CyberArk, Entra, or similar platforms