Business Security Architect

Summary

The job is for a remote 6-month xIAM architect position with the possibility of going full-time. The role involves assisting in the development of an xIAM program, reducing ramp-up time for new hires, and providing business architecture support.

Requirements

• 7-10 years’ experience working in the Identity and Access management (IAM) information security space in an architecture and engineering capacity
• 5-7 years’ experience with the following: Global Workforce IAM, Global Consumer IAM (CIAM), Federation and single sign-on (B2B and B2C), NIST 800- 53, NIST 800- 63, NIST Cybersecurity Framework (CSF), Experience creating high and low level IAM architecture patterns, Experience developing and implementing IAM strategies and roadmaps, Experience with major IAM platforms including Microsoft Active Directory, One Identity Manager, Ping Federate
• Experience building roles and responsibilities (e.g., RACI matrices), Experience with process control design, Ability to work as liaison between business and information security/information technology, Ability to clearly explain IAM & xIAM concepts to audiences of various levels

Responsibilities

• XIAM program architecture support
• Support to advance product roadmap milestones, as needed
• Develop RACI or related framework that outlines the resource roles and responsibilities in alignment with client objectives
• Facilitate and develop new hire (resource) onboarding processes
• Facilitate and develop new hire (resource) training content and processes
• Facilitate playbook creation and maintenance protocol
• Develop method to assess efficiency and effectiveness of onboarding processes
• Define and document continuous improvement recommendations

Preferred Qualifications

• Experience with App Gateways, App Proxies, Live Chat, Chat Bots, Contact Centers, IVRs and Web Portals for CIAM, Good understanding of MFA, PAM and Risk Based Authentication, Deep technical experience with two or more xIAM technologies including Okta, Janrain / Akamai, Forgerock, Microsoft Azure B2C, Amazon AWS Cognito
• Strong familiarity with adjacent technologies such as PingFederate/PingOne, IGA (e.g.: OneIM, Sailpoint), virtual directory (e.g.: Radiant), API management (e.g.: Apigee, Mulesoft)
• Understanding of industry and leading practices including industry standards such as the National Institute for Standards and Technology (NIST) Special Publication (SP) 800-63; Digital Authentication, NIST Cybersecurity Framework (CSF) and NIST SP 800-53; Security and Privacy Controls
• Business process engineering experience, Strong project management skills, A deep overall understanding of business & technology transformation around digital identity both within and across enterprises, identity providers, and other entities
• Excellent interpersonal communication skills with strong spoken and written English. Business outcomes mindset
• Understanding of global regulations and compliance frameworks including NY DFS, CCPA, GDPR
• Solid balance of strategic thinking with detail orientation. Collaborative team worker – both in person and virtually using MS Teams or similar. Flexibility to accommodate working across different time zones
• CISSP, CISM, or equivalent certification a plus
• Cybersecurity certifications such as CISSP, CISM, etc