IAM Architect

Overview

Senior Manager – Identity and Access Management (IAM) Architect. Design, implement and govern enterprise‑wide IAM solutions to ensure secure, compliant identity services across client organizations.

• Define and implement IAM architecture strategies aligned with business and security objectives of clients.
• Design scalable and secure identity solutions, including authentication, authorization, identity lifecycle management, Customer Identity and Access Management (CIAM) and Privileged Access Management (PAM).
• Serve as the technical authority for IAM tools and platforms (e.g., Azure AD, ADFS, SailPoint, Saviynt, Okta, Cyber Ark, Forgerock).
• Lead client projects for integrating legacy and modern identity providers into a unified IAM framework.
• Develop architecture principles and guidelines focused on scalability, resilience, modularity and security‑by‑design.
• Lead the deployment and configuration of IAM solutions across cloud and on‑premises environments.
• Provide IAM integration designs and architectural guidelines for new applications and services, including APIs, SSO and federation protocols (SAML, OAuth, OpenID Connect).
• Conduct reviews of IAM systems for performance, availability and security.
• Drive adoption of authentication and authorization reference architectures for existing, new and emerging IAM technologies.
• Develop and enforce IAM policies, standards and best practices.
• Help clients achieve compliance with regulatory requirements (e.g., GDPR, SOX, HIPAA) and internal security policies.
• Participate in enterprise architecture governance and contribute to strategic planning.

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Engineering or related field.
• 8+ years of experience in IAM architecture and implementation.
• Proven experience with IAM platforms such as SailPoint, Forge Rock, Okta, Cyber Ark or similar.
• Strong understanding of directory services (Active Directory, LDAP), PKI and identity federation.
• In‐depth knowledge of IAM protocols and standards (SAML, OAuth2, OpenID Connect, SCIM).
• Familiarity with cloud platforms (Azure, AWS, GCP) and hybrid identity models.
• Knowledge of Zero Trust Architecture and modern security frameworks.
• Experience with CI/CD pipelines and Dev Sec Ops  practices (plus).
• Strong analytical and problem‑solving skills.
• Excellent communication and stakeholder management abilities.
• Ability to work independently and lead cross‑functional teams.
• High attention to detail and commitment to quality.
• CISSP, CISM or relevant product vendor certifications preferred.