Sr Solution Architect - Identity and Access Management; IAM

Job Overview

We are seeking an experienced Identity and Access Management (IAM) Solution Architect to join an exciting team within Global Information Security (GIS). The role focuses on designing, strengthening, and securing the Bank’s Identity & Access Management systems and overall security posture. Collaboration across all lines of business, CIO teams, and security teams is essential.

• Design and manage all aspects of delivery for solution design, including capturing security requirements, identifying risks and opportunities, and aligning to information security policy.
• Create portfolio level, high‑level and low‑level design (PLD/HLD/LLD) documentation for IAM architectures, integrations, and solution components.
• Perform IAM-focused threat modeling to assess security risks, identify attack vectors, and define mitigation strategies across identity platforms and authentication workflows.
• Research and maintain thought leadership role in identity and access technology; stay up to date on offerings of various service providers and emerging IAM technologies.
• Consult and serve as a technical security design resource through the Systems Development Life Cycle; provide expert level guidance on design decisions, standards, and operational practices.
• Support creation of new and leverage existing secure patterns to optimize an identity and access design that aligns to business requirements.
• Act as an active member of the Identity center of excellence to define and govern best practices in identity and access platforms engineering, operations, application development, and governance.
• Drive discussions in the architecture review board, develop platform architecture artifacts, and influence architectural decisions.
• Communicate problems, risks, challenges, and evangelize IAM best practices to key stakeholders – engineering, operations, developers, and senior leadership.

• 5+ years of hands‑on experience in identity and authentication fields within a large and complex organization.
• Deep knowledge of identity and authentication methodologies, techniques, and technologies.
• Experience with PING products is a plus.
• Experience with Linux, Windows, Cloud Identity, Access Management design and architecture of authentication services or Identity Store.
• Security knowledge covering core technology infrastructure (account management, servers, databases, etc.), identity management and application security practice.
• Knowledge of IAM IGA-related tools, vaulting, and integration with service management tools.
• Proficient in articulating facts and data‑driven plans; ability to partner with stakeholders to implement solutions to drive risk reductions.
• Knowledge and understanding of identity and access management laws, rules, regulations, and guidelines such as SOX, OCC, NIST, ISO/EC, FFIEC.
• Possession of CISSP certification would be an advantage.

• Analytical Thinking
• Architecture
• Result Orientation
• Solution Design
• Technical Strategy Development
• Application Development
• Collaboration
• Data Management
• Dev Ops Practices
• Risk Management
• Agile Practices
• Automation
• Influence
• Solution Delivery Process
• Test Engineering

1st shift (United States of America). Hours per week: 40.

Annualized salary range: $ - $. Incentive: eligible for annual discretionary plan based on overall performance. Eligible for benefits. Pay transparency details: